Theft of Service and Billing fooling VoIP-SIP Security

The aim of this attack is to place free calls, in a context where to place an outgoing call, a gateway and billing is used. Once a call is established, the attacker will send a BYE message with a “max-forwards” value high enough to reach the billing system, but low enough not to reach the gateway. The attacker and his partner can thus continue their call, but it won’t be recorded by the billing system and the attacker won’t be charged.
The VoIP infrastructure must allow the attacker to send a BYE message that won’t
cut the communication, but will make the bill system think that it has stopped.
Read More:http://www.vadese.org/files/upload/Best_practices_VoIP_en_v20.pdf

Related post



Newer Post Older Post

0 comments:

Post a Comment

 

Wiki Voip And Fax Tutorials Copyright © 2010 Labloub