A privacy preserving approach to Call Detail Records analysis in VoIP systems
Attacks on Voice-over-IP calls happen frequently. A specific type of these auacks are toll-fraud attacks. The prevention of these attacks depends on understanding the attack patterns. These can be derived from communication records. However, these records contain privacy relevant information of the call participants. These records are also protected by a number of laws and regulations. To make an analysis privacy compliant, relevant laws and regulations need to be considered. We propose a method for changing communication records in such a way that the forensic analysis in VoIP attacks is possible and the privacy of the call participants is preserved. We define privacy requirements for communication records from laws, regulations and concerns of call participants. We also present patterns of communication records based upon real world examples. We further show a framework for privacy attack identification and privacy data minimisation for a structured analysis of communication records. Moreover, an analysis pattern for toll-fraud attacks states which relations in the communication records have to survive the data minimisation.
Top- Hofbauer, Stefan
- Beckers, Kristian
- Quirchmayr, Gerald
- Quirchmayr, Gerald
Category |
Paper in Conference Proceedings or in Workshop Proceedings (Paper) |
Event Title |
7th International Conference on Availability, Reliability and Security (ARES) 2012 |
Divisions |
Multimedia Information Systems |
Subjects |
Angewandte Informatik |
Event Type |
Workshop |
Series Name |
7th International Conference on Availability, Reliability and Security (ARES) 2012 |
ISSN/ISBN |
978-0-7695-4775-6/12 |
Publisher |
IEEE CPS |
Page Range |
pp. 307-316 |
Date |
2012 |
Export |