A group of communications experts at The Communications Research Network have discovered security issues due to VOIP. Experts say that VOIP applications could provide a cover for launching denial of service (DOS) attacks.


A group of communications experts at The CRN have discovered security issues due to VOIP. Experts say that VOIP applications could provide a cover for launching denial of service (DoS) attacks.

The CRN has observed that VOIP tools could offer a cover for DoS attacks since VOIP runs continuous media over IP packets. The ability to dial in and dial out of VOIP allows the control of an application through a voice network, so tracking the source of the attack would not be possible.

Also, proprietary protocols, that are intended to protect the company’s technology and prevent ISPs from blocking the VOIP application, prevent the ability of ISPs to track DoS activity.

Jon Crowcroft of CRN said: “While these security measures are in many ways positive, t hey would add up to a serious headache if someone were to use a VoIP overlay as a control tool for attacks.

Although one could slowly shut down and patch or upgrade the exploited machines, it would be much harder to find affected computers and almost impossible to trace the criminals behind the operation.” [Source]

Crowcroft suggests that this security loophole can be resolved if VOIP providers publish their routing specifications or switch to open standards.

 

 

 

 

Sharing is caring