The Sphinx enigma in critical VoIP infrastructures: Human or botnet?

Author

Gritzalis, D. ; Soupionis, Yannis ; Katos, V. ; Psaroudakis, I. ; Katsaros, Panagiotis ; Mentis, A.

Author_Institution

Dept. of Inf., Athens Univ. of Econ. & Bus., Athens, Greece

fYear

2013

fDate

10-12 July 2013

Firstpage

1

Lastpage

6

Abstract

Sphinx was a monster in Greek mythology devouring those who could not solve her riddle. In VoIP, a new service in the role of Sphinx provides protection against SPIT (Spam over Internet Telephony) by discriminating human callers from botnets. The VoIP Sphinx tool uses audio CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) that are controlled by an anti-SPIT policy mechanism. The design of the Sphinx service has been formally verified for the absence of side-effects in the VoIP services (robustness), as well as for its DoS-resistance. We describe the principles and innovations of Sphinx, together with experimental results from pilot use cases.

Keywords

Internet telephony; computer network security; multimedia communication; unsolicited e-mail; DoS-resistance; Greek mythology; SPIT; Sphinx enigma; Sphinx service; VoIP Sphinx tool; VoIP infrastructures; VoIP services; anti SPIT policy mechanism; audio CAPTCHA; botnets; completely automated public turing test-to-tell computers-and-humans apart; multimedia data transmission; spam-over-Internet telephony; Bandwidth; CAPTCHAs; Databases; Internet telephony; Measurement; Robustness; Servers; Botnet; CAPTCHA; SPIT; Security; VoIP;

fLanguage

English

Publisher

ieee

Conference_Titel

Information, Intelligence, Systems and Applications (IISA), 2013 Fourth International Conference on

Conference_Location

Piraeus

Print_ISBN

978-1-4799-0770-0

Type

conf

DOI

10.1109/IISA.2013.6623704

Filename

6623704