Title :
Local area detection of incoming war dial activity
Author :
Amoroso, Ed ; Kogan, Eugene ; McAnderson, Brenda ; Powell, Dan ; Rexroad, Brian ; Schuster, Steve ; Stramaglia, Anthony
Author_Institution :
Inf. Security Center, AT&T Labs., USA
Abstract :
Two techniques for functional detection of local area incoming war dial are described. One technique employs a dedicated workstation looking for evidence of incoming war dial. We describe our experimental implementation of this technique, including alarm generation to a Cisco NetRanger(R) intrusion detection system. The second technique involves simple parsing of private branch exchange (PBX) call records for characteristic patterns of war dial. Baseline heuristics driving our algorithms are discussed. The non-terminated call detection limitations of this parsing technique for our Lucent Definity G3 PBX are discussed
Keywords :
Internet; business communication; intranets; private telephone exchanges; security of data; telecommunication security; Cisco NetRanger; Lucent Definity G3 PBX; PBX call records; alarm generation; dedicated workstation; functional detection; heuristics; incoming war dial activity; intranet; intrusion detection system; local area detection; parsing; private branch exchange call records; Authentication; Computer security; Data security; Heuristic algorithms; Intrusion detection; Laboratories; Military computing; Modems; Telephony; Workstations;
Conference_Titel :
Reliable Distributed Systems, 1998. Proceedings. Seventeenth IEEE Symposium on
Conference_Location :
West Lafayette, IN
Print_ISBN :
0-8186-9218-9
DOI :
10.1109/RELDIS.1998.740545