[VOIPSEC] VoIP and Fraud

Mark Teicher mht3 at earthlink.net
Fri Mar 11 07:57:26 CST 2005 

As for VOIP service providers, since VOIP numbers are portable, usually dialing of 911 will route to the local emergency location that is associated with a person's registration address and not the temporary location a person may be at (i.e. hotel, remote office, etc).  Some VOIP service providers do have DMS/ALI systems in place to enable 911 operators to identify the location of the call.  Some Public Service Access Points or Public Safety Answering Points may have agreements in place with local VOIP service providers.  As in some VOIP products, 911 calls are automatically logged and alerts are usually sent to a designated group to determine their validity instead of routing the call directly.  
Most IP enabled PBXs have configuration settings for 911, 9911, 8911, etc since most organizations require you to dial a single digit to get an outside line.  
In some more complicated configurations to establish an outside line, an access code is required prior to getting a dial tone to make a call.  

International calls sometimes get logged as 911 or 9911 calls, as some IP enabled PBXs are programmed to automatically associate "911, 9911" calls but it ends up being an end user who is dialing an international call dial 9 (outside line) 11 (international) and it gets logged as a 911 call.  When I used to produce reports from VOIP firewall system, most of the "911, 9911" had to be manually validated to ensure they were actual 911 calls.  Out of the 1000 "911, 9911" calls the system reported, only 4 of them were valid "911" calls.

Some VOIP Service providers are working with local Public Safety groups to establish routing instructions for valid 911 calls.  Depending on the state one lives and the VOIP service provider one chooses and the type of equipment they have in place in order to share call data and call location from system to system in order for 911 services to be routed properly to the caller in need.

-----Original Message-----
From: natas natas <natas05 at gmail.com>
Sent: Mar 10, 2005 7:31 PM
To: Voipsec at voipsa.org
Subject: RE: [VOIPSEC] VoIP and Fraud

When you say CLID are your referring to the ANI (Billing Telephone
Number) or Caller ID? Why would such an important system like E911
only rely on Caller ID information??? These commercially available
sites that offer Caller ID spoofing do not spoof any sort of ANI,
which is what I was told E911 utilized. Also, I don't believe that any
of these spoofing sites have access to E911 services as their carriers
do not have access to E911 at this time, so the only way to do
anything to E911 would be through a backdoor POTS number.

I also see this as a security problem and not a fraud problem.

-Natas

Mark Fletcher fletch at nortel.com writes:
>Take the E911 system for example, no location data is actually 'passed' from
>the origination point. The E911 Location screen is populated at the
>dispatcher console based on a ALI database dip using the CLID as the index.
>So for example in NJ, I can be in Atlantic City, hit a local PRI trunk with
>spoofed CLID, and end up at a PSAP in Newark (practically the other end of
>the State). E911 routing is based on CLID and nothing else, and
>unfortunately that is now easier to spoof.


Mark Fletcher fletch at nortel.com writes:
> There are many potential areas, but one that concerns me is the 
> ability for a user to easily spoof their Caller ID. Typically this has 
> only been available to administrators of a PBX with PRI circuits. Many 
> call this 'security via obscurity'. By spoofing CLID, a caller could 
> raise havoc with Emergency Services and the national E9-1-1 system, or 
> use a spoofed CLID to socially engineer people into giving up personal 
> information.

_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org

More information about the Voipsec mailing list