[VOIPSEC] Actual Attacks
Geoff Devine
gdevine at cedarpointcom.com
Fri Feb 25 15:08:12 CST 2005
Tom Howe wrote:
> 4) I've seen customers reverse engineer IP addresses from far end
> gateways to establish business relationships outside of the
> intermediary that orginally brought them together.
>
> 5) I've seen many, many, many, (many, many) grey market carriers
> work at putting more traffic through routes than they had
> persmission to, mask origination points to avoid billing, etc.
And, in another email:
> Therefore, because the money is there, and that's where the real
> hackers go, SBC and service provider firewalls are the places we
> need to concentrate.
This aligns with my view of the universe that a profit-making company
acting as a service provider needs to assume that their customers are
going to lie, cheat, steal, and do whatever they can to hack the service
provider network to take it down. To harden the service, you have to
use VPN technology the way 3GPP does or you need some flavor of
SBC/Firewall technology. You can't trust endpoints. You can only
authenticate them and even then, you need to have the appropriate degree
of paranoia.
Geoff
More information about the Voipsec
mailing list