A privacy preserving approach to Call Detail Records analysis in VoIP systems

A privacy preserving approach to Call Detail Records analysis in VoIP systems

Abstract

Attacks on Voice-over-IP calls happen frequently. A specific type of these auacks are toll-fraud attacks. The prevention of these attacks depends on understanding the attack patterns. These can be derived from communication records. However, these records contain privacy relevant information of the call participants. These records are also protected by a number of laws and regulations. To make an analysis privacy compliant, relevant laws and regulations need to be considered. We propose a method for changing communication records in such a way that the forensic analysis in VoIP attacks is possible and the privacy of the call participants is preserved. We define privacy requirements for communication records from laws, regulations and concerns of call participants. We also present patterns of communication records based upon real world examples. We further show a framework for privacy attack identification and privacy data minimisation for a structured analysis of communication records. Moreover, an analysis pattern for toll-fraud attacks states which relations in the communication records have to survive the data minimisation.

Grafik Top
Authors
  • Hofbauer, Stefan
  • Beckers, Kristian
  • Quirchmayr, Gerald
  • Quirchmayr, Gerald
Grafik Top
  • IEEE
Grafik Top
Shortfacts
Category
Paper in Conference Proceedings or in Workshop Proceedings (Paper)
Event Title
7th International Conference on Availability, Reliability and Security (ARES) 2012
Divisions
Multimedia Information Systems
Subjects
Angewandte Informatik
Event Type
Workshop
Series Name
7th International Conference on Availability, Reliability and Security (ARES) 2012
ISSN/ISBN
978-0-7695-4775-6/12
Publisher
IEEE CPS
Page Range
pp. 307-316
Date
2012
Export
Grafik Top