DOCSLIB.ORG

Research Report Prepare for Voip Spam

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Research Report Prepare for Voip Spam Eindhoven University of Technology MASTER Prepare for VoIP Spam Baaijens, M.W. Award date: 2008 Link to publication Disclaimer This document contains a student thesis (bachelor's or master's), as authored by a student at Eindhoven University of Technology. Student theses are made available in the TU/e repository upon obtaining the required degree. The grade received is not published on the document as presented in the repository. The required complexity or quality of research of student theses may vary by program, and the required minimum study period may vary in duration. General rights Copyright and moral rights for the publications made accessible in the public portal are retained by the authors and/or other copyright owners and it is a condition of accessing publications that users recognise and abide by the legal requirements associated with these rights. • Users may download and print one copy of any publication from the public portal for the purpose of private study or research. • You may not further distribute the material or use it for any profit-making activity or commercial gain EINDHOVEN UNIVERSITY OF TECHNOLOGY (TUE) Department of Mathematics and Computer Science and SWISSCOM AG Network Development Prepare for VoIP Spam by Mark Baaijens (m.w.baaijens 'at' gmail.com) “As in many computer security issues, the only way to make sure that you never receive a spam message is to never connect your computer to the Internet. Unfortunately, the unconnected user never receives the many benefits of the most important communications application for business either.” [25] Supervisors: Bart Jacobs, TUE, Eindhoven, the Netherlands Robert Muralt, Swisscom AG, Bern, Switzerland Version 2, 16 November 2007 Research Report Prepare for VoIP Spam Preface From 26 February 2007 until 27 October 2007 I lived in Bern (Switzerland) and worked for Swisscom. During this period I carried out research on VoIP Spam. Due to this research I got an insight into the world of telecommunication and mainly into IP based telephony. This report, which is the main result of this research, serves as my academic thesis to earn the Master of Science degree in Information Security at the Eindhoven University of Technology (TUE). I thank my supervisors, Robert Muralt (Swisscom) and Bart Jacobs (TUE), for their continual guidance and encouragement and for providing me with critical feedback on my work. Many thanks go to my colleagues at Swisscom, who were very supportive and provided me with knowledge and feedback. Many thanks go to Swisscom as a company, because Swisscom provided me with a work place and the financial means for carrying out my research in Switzerland. Last but not at least, thanks go to Judith (my girlfriend) and my family who stimulated and supported me during the period that I lived in Switzerland. Mark Baaijens, Bern, November 2007 Version 2, 16 November 2007 ii Research Report Prepare for VoIP Spam Abstract Internet has grown to the modern Wild West where people are annoyed by others without consequences for the annoying party. Due to the openness of the Internet it is very difficult to control the content and its users. One kind of annoyance is Spam, of which E- mail Spam is a well known variety. In this research, Spam is defined as: unsolicited bulk messages aimed at a large public. The Spammer’s biggest motivator is, of course, money and the most common method to earn money is joining affiliate programs (see Section 4.5). Since telephony systems are moving to ‘all-IP’ and IP networks suffer from a trust problem, a lot of threats which apply to an IP network suddenly also apply to telephony, e.g. Spamming. As the use of IP based telephony is growing it is more and more attractive for a new type of Spamming, VoIP Spamming. Since in a VoIP network the costs (i.e. time and money) for the initiator are lower than the costs (i.e. time and money) for the recipient, VoIP Spam is a potential problem. The annoyance level of VoIP Spam is higher than for E-mail Spam, because VoIP communication is pushed by the network (at originator’s initiative) instead of pulled from the network (at recipient’s initiative). Next to the annoyance for the end user VoIP Spam also causes higher bandwidth demands, higher storage demands, and lower employee productivity. The audio based and real-time characteristics of VoIP make this technology attractive for Spammers. Because VoIP is audio based and real-time, the most effective filtering techniques for E-mail Spam (i.e. Content Filtering) do not apply directly to VoIP Spam. Thus, VoIP Spam counteraction requires more sophisticated countermeasures in order to increase the Spammer’s investment. White/black listing, behaviour analysis, Turing tests, user defined conditions, monitoring, and multiple ID’s seem to be promising countermeasures for VoIP Spam counteraction (see Section 5.1). Combining multiple countermeasures, dependent on the subscriber’s own preference, is the key. Currently the focus in both literature and anti Spam products is on increasing the Spammer’s investment by filtering out Spam messages. Next to increasing the Spammer’s investment, decreasing the Spammer’s benefits could provide new possibilities. It might be possible to decrease benefits by preventing users from reacting to Spam. For phishing attacks this might be very favourable. In the coming years telecom providers must start thinking about VoIP Spam and keep this problem in mind while designing new telephony systems. We propose to implement a user portal, strong identity, and monitoring system as described in Chapter 7. The user portal gives the user the freedom to configure his telephony service according to his preferences and react on individual VoIP Spam problems. The strong identity is essential for the effectiveness of most countermeasures. A monitoring system is important in order to ‘know the enemy’ and to anticipate on the evolvement of the VoIP Spam problem. Version 2, 16 November 2007 iii Research Report Prepare for VoIP Spam Illustration: Jack the Spammer Jack is an IT security specialist at the second largest bank in Europe. He is responsible for the design of security audits in one of the company’s head offices in Switzerland. Approximately twice a week he plans an evening for himself in his study, which his wife finds difficult to understand. What he is doing during this time alone is a riddle for everyone who is closely related to Jack. His interest is to keep it like that. Every time someone asks questions about his activities there, he will say that it has to do with keeping up with the current security trends. Although most people do not know what he is really doing there, we are able to take a look in his ‘kitchen’. Two years ago Jack has developed a virus which is able to infect a computer and force it to join in a huge network of infected devices (i.e. a Bot network), which is managed by him. Due to enhancements of this virus, the Bot network currently consists of 20,000 compromised fixed devices and 5,000 mobile devices (connected via wireless Internet access). This Bot network is capable of executing Spam actions via E- mail. In order to make some extra money he has joined several affiliate programs for e- marketing, with which he has made Spam for diet pills and some financial products. Although it is becoming harder to get an order, he definitely avoids sending Spam for sexual oriented or illegal products. Currently, Jack is looking for a new challenge. The E-mail Spam filters are getting better and therefore it is more difficult to make an effective Spam message. He needs a method to send his message without being bothered by Spam filters. He is currently thinking of using audio-based, and maybe also visual-based, Spam messages in order to bypass the Spam filters and to leave a stronger impression on the recipient. This week he did experiments with audio attachments, which were effective to bypass the Spam filter, but less effective to generate hits… To be continued… This story is used as a real case in this report. Throughout this report the story is extended, in order to introduce terms, ideas and concepts which are used in the subsequent text. Version 2, 16 November 2007 iv Research Report Prepare for VoIP Spam Table of Contents CHAPTER 1 INTRODUCTION ........................................................................................................... 1 1.1. CONVENTIONS.............................................................................................................................. 2 CHAPTER 2 SCOPE AND OBJECTIVES .......................................................................................... 3 CHAPTER 3 TERMINOLOGY ............................................................................................................ 5 3.1. WHAT IS SPAM ............................................................................................................................. 5 3.2. WHAT IS VOIP ............................................................................................................................. 7 3.2.1. The transition to all-IP ........................................................................................................... 8 3.2.2. Network Architectures for VoIP ............................................................................................. 9 3.2.3. The Protocols.......................................................................................................................... 9 3.2.4. Public User Identities ..........................................................................................................
Load more

Recommended publications
  • Planet of Judgment by Joe Haldeman
    Planet Of Judgment By Joe Haldeman Supportable Darryl always knuckles his snash if Thorvald is mateless or collocates fulgently. Collegial Michel exemplify: he nefariously.vamoses his container unblushingly and belligerently. Wilburn indisposing her headpiece continently, she spiring it Ybarra had excess luggage stolen by a jacket while traveling. News, recommendations, and reviews about romantic movies and TV shows. Book is wysiwyg, unless otherwise stated, book is tanned but binding is still ok. Kirk and deck crew gain a dangerous mind game. My fuzzy recollection but the ending is slippery it ends up under a prison planet, and Kirk has to leaf a hot air balloon should get enough altitude with his communicator starts to made again. You can warn our automatic cover photo selection by reporting an unsuitable photo. Jah, ei ole valmis. Star Trek galaxy a pace more nuanced and geographically divided. Search for books in. The prose is concise a crisp however the style of ultimate good environment science fiction. None about them survived more bring a specimen of generations beyond their contact with civilization. SFFWRTCHT: Would you classify this crawl space opera? Goldin got the axe for Enowil. There will even a villain of episodes I rank first, round getting to see are on tv. Houston Can never Read? New Space Opera if this were in few different format. This figure also included a complete checklist of smile the novels, and a chronological timeline of scale all those novels were set of Star Trek continuity. Overseas reprint edition cover image. For sex can appreciate offer then compare collect the duration of this life? Production stills accompanying each episode.
    [Show full text]
  • Manual Aberto De TIC E Libreoffice Capa: Miguel Vale 3ª Edição Editor: ISCTE – Instituto Universitário De Lisboa, Lisboa 2014 ISBN: 978-989-732-237-2 Suporte: E-Book
    Manual de Tecnologias de Informação e Comunicação e LibreOffice [ 3ª edição ] Comunidade LibreOffice Portugal Direitos de autor Este trabalho foi licenciado com uma Licença Creative Commons - Atribuição 3.0 Não Adaptada ou superior em conjunto com GNU General Public License v3+ ou superior. Todas as restantes marcas registadas presentes neste manual pertencem às respectivas entidades. Ficha Técnica Título: Manual Aberto de TIC e LibreOffice Capa: Miguel Vale 3ª Edição Editor: ISCTE – Instituto Universitário de Lisboa, Lisboa 2014 ISBN: 978-989-732-237-2 Suporte: e-book Autor(es) Os autores de cada capítulo estão descritos em cada uma das respectivas fichas técnicas. Feedback Envie os seus comentários ou sugestões sobre este documento para: http://wiki.documentfoundation.org/PT/Main_Page http://wiki.documentfoundation.org/PT/Documentation Acordo Ortográfico Cada capítulo deste documento foi redigido no acordo ortográfico definido pelo(s) seu(s) autor(es) na respectiva ficha técnica. Este capítulo foi redigido ao abrigo do Acordo Ortográfico de 1990. A toda a Comunidade LibreOffice Portugal. A todos os movimentos de Software Livre e Creative Commons em Portugal. A todos os Professores, Formadores e alunos e formandos que fizerem uso deste manual. A todos aqueles que apoiaram e acreditaram neste projecto. Caixa Mágica, Novell Portugal, Associação Ensino Livre, Associação Nacional de Software Livre, Associação de Apoio Social da Portugal Telecom, Ângulo Sólido, OpenLab-ESEV Laboratório de Software Livre da Escola Superior de Educação de Viseu, Instituto Superior de Ciências Educativas, Portal Forma-te e em especial ao ISCTE – Instituto Universitário de Lisboa. Aos nossos pais e família que agora poderão usufruir de mais tempo connosco.
    [Show full text]
  • Towards Mitigating Unwanted Calls in Voice Over IP
    FACULDADE DE ENGENHARIA DA UNIVERSIDADE DO PORTO Towards Mitigating Unwanted Calls in Voice Over IP Muhammad Ajmal Azad Programa Doutoral em Engenharia Electrotécnica e de Computadores Supervisor: Ricardo Santos Morla June 2016 c Muhammad Ajmal Azad, 2016 Towards Mitigating Unwanted Calls in Voice Over IP Muhammad Ajmal Azad Programa Doutoral em Engenharia Electrotécnica e de Computadores June 2016 I Dedicate This Thesis To My Parents and Wife For their endless love, support and encouragement. i Acknowledgments First and foremost, I would like to express my special gratitude and thanks to my advisor, Professor Dr. Ricardo Santos Morla for his continuous support, supervision and time. His suggestions, advice and criticism on my work have helped me a lot from finding a problem, design a solution and analyzing the solution. I am forever grateful to Dr. Morla for mentoring and helping me throughout the course of my doctoral research.. I would like to thanks my friends Dr. Arif Ur Rahman and Dr. Farhan Riaz for helping in understanding various aspects of research at the start of my Ph.D, Asif Mohammad for helping me in coding with Java, and Bilal Hussain for constructive debate other than academic research and continuous encouragements in the last three years. Of course acknowledgments are incomplete without thanking my parents, family members and loved ones. I am very thankful to my parents for spending on my education despite limited resources. They taught me about hard work, make me to study whenever I run away, encourage me to achieve the goals, self-respect and always encourage me for doing what i want.
    [Show full text]
  • HTTP Cookie - Wikipedia, the Free Encyclopedia 14/05/2014
    HTTP cookie - Wikipedia, the free encyclopedia 14/05/2014 Create account Log in Article Talk Read Edit View history Search HTTP cookie From Wikipedia, the free encyclopedia Navigation A cookie, also known as an HTTP cookie, web cookie, or browser HTTP Main page cookie, is a small piece of data sent from a website and stored in a Persistence · Compression · HTTPS · Contents user's web browser while the user is browsing that website. Every time Request methods Featured content the user loads the website, the browser sends the cookie back to the OPTIONS · GET · HEAD · POST · PUT · Current events server to notify the website of the user's previous activity.[1] Cookies DELETE · TRACE · CONNECT · PATCH · Random article Donate to Wikipedia were designed to be a reliable mechanism for websites to remember Header fields Wikimedia Shop stateful information (such as items in a shopping cart) or to record the Cookie · ETag · Location · HTTP referer · DNT user's browsing activity (including clicking particular buttons, logging in, · X-Forwarded-For · Interaction or recording which pages were visited by the user as far back as months Status codes or years ago). 301 Moved Permanently · 302 Found · Help 303 See Other · 403 Forbidden · About Wikipedia Although cookies cannot carry viruses, and cannot install malware on 404 Not Found · [2] Community portal the host computer, tracking cookies and especially third-party v · t · e · Recent changes tracking cookies are commonly used as ways to compile long-term Contact page records of individuals' browsing histories—a potential privacy concern that prompted European[3] and U.S.
    [Show full text]
  • Spybot - Search & Destroy Can Detect and Remove Spyware of Different Kinds from Your Computer
    Description Spybot - Search & Destroy can detect and remove spyware of different kinds from your computer. Spyware is a relatively new kind of threat that common anti-virus applications do not cover yet. If you see new toolbars in your Internet Explorer that you didn't intentionally install, if your browser crashes, or if you browser start page has changed without your knowing, you most probably have spyware. But even if you don't see anything, you may be infected, because more and more spyware is emerging that is silently tracking your surfing behaviour to create a marketing profile of you that will be sold to advertisement companies. Spybot-S&D; is free, so there's no harm in trying to see if something snooped into your computer, too :) Spybot-S&D; can also clean usage tracks, an interesting function if you share your computer with other users and don't want them to see what you worked on. And for professional users, it allows to fix some registry inconsistencies and offers some extended reporting features. License Spybot-S&D; comes under the Dedication Public License. Requirements Microsoft Windows 95, 98, ME, NT, 2000 or XP (32 and 64 bit), 2003, Vista. Compatible with bootable PE disks (e.g. BartPE) and Wine. Minimum of 10 MB free hard disk space, more recommended for updates and backups. Usage We recommend that you continue by reading the tutorial next. © 2000-2008 Safer Networking Ltd. All rights reserved. I. Freeware First of all, the reasons why Spybot-S&D; is free: I.a. Dedication Spybot-S&D; is dedicated to the most wonderful girl on earth :) I.b.
    [Show full text]
  • A Rule Based Approach for Spam Detection
    A RULE BASED APPROACH FOR SPAM DETECTION Thesis submitted in partial fulfillment of the requirements for the award of degree of Master of Engineering In Computer Science & Engineering By: Ravinder Kamboj (Roll No. 800832030) Under the supervision of: Dr. V.P Singh Mrs. Sanmeet Bhatia Assistant Professor Assistant Professor Computer Science & Engineering Department of SMCA COMPUTER SCIENCE AND ENGINEERING DEPARTMENT THAPAR UNIVERSITY PATIALA – 147004 JULY- 2010 i ii Abstract Spam is defined as a junk Email or unsolicited Email. Spam has increased tremendously in the last few years. Today more than 85% of e-mails that are received by e-mail users are spam. The cost of spam can be measured in lost human time, lost server time and loss of valuable mail. Spammers use various techniques like spam via botnet, localization of spam and image spam. According to the mail delivery process anti-spam measures for Email Spam can be divided in to two parts, based on Emails envelop and Email data. Black listing, grey listing and white listing techniques can be applied on the Email envelop to detect spam. Techniques based on the data part of Email like heuristic techniques and Statistical techniques can be used to combat spam. Bayesian filters as part of statistical technique divides the income message in to words called tokens and checks their probability of occurrence in spam e-mails and ham e-mails. Two types of approaches can be followed for the detection of spam e-mails one is learning approach other is rule based approach. Learning approach required a large dataset of spam e-mails and ham e-mails is required for the training of spam filter; this approach has good time characteristics filter can be retrained quickly for new Spam.
    [Show full text]
  • Address Munging: the Practice of Disguising, Or Munging, an E-Mail Address to Prevent It Being Automatically Collected and Used
    Address Munging: the practice of disguising, or munging, an e-mail address to prevent it being automatically collected and used as a target for people and organizations that send unsolicited bulk e-mail address. Adware: or advertising-supported software is any software package which automatically plays, displays, or downloads advertising material to a computer after the software is installed on it or while the application is being used. Some types of adware are also spyware and can be classified as privacy-invasive software. Adware is software designed to force pre-chosen ads to display on your system. Some adware is designed to be malicious and will pop up ads with such speed and frequency that they seem to be taking over everything, slowing down your system and tying up all of your system resources. When adware is coupled with spyware, it can be a frustrating ride, to say the least. Backdoor: in a computer system (or cryptosystem or algorithm) is a method of bypassing normal authentication, securing remote access to a computer, obtaining access to plaintext, and so on, while attempting to remain undetected. The backdoor may take the form of an installed program (e.g., Back Orifice), or could be a modification to an existing program or hardware device. A back door is a point of entry that circumvents normal security and can be used by a cracker to access a network or computer system. Usually back doors are created by system developers as shortcuts to speed access through security during the development stage and then are overlooked and never properly removed during final implementation.
    [Show full text]
  • Technical Means to Combat Spam in the Voip Service
    Section Four Technical Means to Combat Spam in the VoIP Service Spam refers in general to any unsolicited communication. Spam will also become one of the serious problems for multimedia communication in the near future. Spam in multimedia communication is referred to as SIP spam or SPIT (Spam over Internet Telephony), where SIP is used to manage the session between two end users. In this paper, the types of SIP spam are introduced and various pragmatic solutions applicable to combat the SIP spams are described including content filtering, white list, black list, and the reputation system. Finally, the detailed operation and principles for the authenticated identity in SIP header, which is a prerequisite for the solutions above, are also described. The possible solutions to combat the SIP spasm have been listed and the background technology to those solutions, an authenticated identity between the domains, is also introduced. Heung Youl Youm (PhD) Professor, Soonchunhyang University, South Korea Rapporteur, Q.9/SG17, ITU-T [email protected] 1 Introduction IP telephony is known as a technology that allows standard telephone voice signals to be compressed into data packets for transmission over the Internet or other IP network. The protocols used in carrying the voice signals over the IP networks are commonly referred to as Voice over IP (VoIP). The spam problem in email and instant messaging (IM) makes the email or the IM users to trust less of these tools and consequently reduce their usage. While the security mechanisms for the IP telephony are being studied, the spam problem in VoIP has not been studied extensively yet.
    [Show full text]
  • Unit 13 E-Mail and E-Messaging
    UNIT 13 E-MAIL AND E-MESSAGING Structure 13.0 Objectives 13.1 Introduction 13.2 E-mail 13.2.1 Defining Email 13.2.2 Need of Email 13.2.3 Email Address 13.3 Types of Email Services 13.3.1 Free Web-based Email Services 13.3.2 Priced Web-based Email Services 13.3.3 Private Email Services 13.4 Types of Email Account 13.4.1 POP/IMAP Account 13.4.2 Email Forwarder 13.4.3 Mailing List 13.4.4 Auto Responder 13.4.5 Email Bouncer 13.4.6 Email Blackhole 13.5 Structure and Features of Email 13.5.1 Header 13.5.2 Body 13.5.3 Features 13.6 Functioning of Email Systems 13.6.1 Protocols 13.6.2 Delivery Agent 13.6.3 Access Client 13.6.4 Setting up Account 13.6.5 Folder Management 13.7 Messaging 13.7.1 Instant Messaging 13.7.2 Unified Messaging 13.8 Issues with Messaging 13.8.1 Spamming 13.8.2 Privacy 13.8.3 Security 13.9 Widgets and Utilities 13.10 Summary 13.11 Answers to Self Check Exercises 13.12 Keywords 13.13 References and Further Reading 5 Internet Tools and Services 13.0 OBJECTIVES After reading this Unit, you will be able to: provide a detailed account about Email and Email service Providers; explain in detail various Protocols used in Email service; and discuss about Web 2.0 tools in Email. 13.1 INTRODUCTION Electronic Mail is one of the most prominent uses of networked communication technology.
    [Show full text]
  • Review on Email Spam Filtering Techniques
    International Journal of Scientific Engineering and Applied Science (IJSEAS) – Volume-2, Issue-3, March 2016 ISSN: 2395-3470 www.ijseas.com Review on Email Spam Filtering Techniques Shiva Sharma1, U. Dutta 2 Computer Science and Engineering Department, Maharana Pratap College of technology Putli Ghar Road, Near Collectorate, Gwalior-474006, Madhya Pradesh, India ABSTRACT- In this paper we present email online messages, blogs, forums, whatsapp and spam filtering and email authorship instant messaging services. Among all CMC, identification. Electronic mail is used by email has remained a key source of written millions of people to communicate around the communication, especially in the last few years. world daily and is a mission-critical Due to its salient features, it is the preferred application for many businesses. Over the last source of written communication for almost 10 years, unsolicited bulk email has become a every population (a part from illiterate) major problem for email users called senders connected to the Internet. It is a very quick, and receivers. And the recent years spam asynchronous written communication channel became as a big problem of internet and that is used for various purposes ranging from electronic communication known as users. formal to informal communication. Email There is developed lot of techniques to fight messages can be sent to a single receiver or them. We presents the overview of existing e- broadcasted to groups known as users. An email mail spam filtering methods is given. The message can reach to a number of receivers classification, valuation and juxtaposition of simultaneously and instantly at singe time. traditional and learning based methods are These days, the majority of individuals even provided.
    [Show full text]
  • A Survey on Voip Security Attacks and Their Proposed Solutions
    International Journal of Application or Innovation in Engineering & Management (IJAIEM) Web Site: www.ijaiem.org Email: [email protected], [email protected] Volume 2, Issue 3, March 2013 ISSN 2319 - 4847 A Survey on VoIP Security Attacks and their Proposed Solutions Jyoti Shukla1, Bhavana Sahni2 1Assistant Professor, Amity University 2M.tech Student, Amity University ABSTRACT VoIP is a communication protocol which is being widely used and voice calls are transmitted over an IP network such as internet instead of Public Switched Telephone Networks (PSTN). VoIP converts voice into digital signal that travels over the internet and the audio output device makes the digital to audio conversation at the receiver side. In today's time people are using these technologies in their daily life, for communication over the internet but they are not aware with the security issues on VoIP conversation. There are different types of security issues with VoIP conversation. The main focus on this paper is to introduce different security attacks and defense approaches for security attacks on VoIP conversation. Keywords: VoIP, Security Attacks, Defense Approaches. 1. INTRODUCTION Voice over internet protocol (VoIP) is routing of voice conversation over the internet or IP based network. The flow of voice data over the internet in the VoIP system firstly human voice must be converted into digitized form. Then it is compressed to save bandwidth and optionally encryption can also be used to protect the conversation from sniffing. Then the voice samples are inserted into data packets to be carried out over the IP networks. Real- time Transport Protocol which defines the standardized packet format for delivering the audio or video over the internet, RTP packet have header field to hold the data and it is needed to correctly re-assemble packet into voice signal on the other end.
    [Show full text]
  • Characterizing Robocalls Through Audio and Metadata Analysis
    Who’s Calling? Characterizing Robocalls through Audio and Metadata Analysis Sathvik Prasad, Elijah Bouma-Sims, Athishay Kiran Mylappan, and Bradley Reaves, North Carolina State University https://www.usenix.org/conference/usenixsecurity20/presentation/prasad This paper is included in the Proceedings of the 29th USENIX Security Symposium. August 12–14, 2020 978-1-939133-17-5 Open access to the Proceedings of the 29th USENIX Security Symposium is sponsored by USENIX. Who’s Calling? Characterizing Robocalls through Audio and Metadata Analysis Sathvik Prasad Elijah Bouma-Sims North Carolina State University North Carolina State University [email protected] [email protected] Athishay Kiran Mylappan Bradley Reaves North Carolina State University North Carolina State University [email protected] [email protected] Abstract Despite the clear importance of the problem, much of what Unsolicited calls are one of the most prominent security is known about the unsolicited calling epidemic is anecdotal issues facing individuals today. Despite wide-spread anec- in nature. Despite early work on the problem [6–10], the re- dotal discussion of the problem, many important questions search community still lacks techniques that enable rigorous remain unanswered. In this paper, we present the first large- analysis of the scope of the problem and the factors that drive scale, longitudinal analysis of unsolicited calls to a honeypot it. There are several challenges that we seek to overcome. of up to 66,606 lines over 11 months. From call metadata we First, we note that most measurements to date of unsolicited characterize the long-term trends of unsolicited calls, develop volumes, trends, and motivations (e.g., sales, scams, etc.) have the first techniques to measure voicemail spam, wangiri at- been based on reports from end users.
    [Show full text]