Risk analysis on VoIP systems

The goal of this thesis was to perform a risk analysis on a VoIP system for service providers. Main threats of the system were analysed and subsequently each threat was briefly introduced. Assets of the system were analysed, for the risk analysis, and probability of threat and impact of threat estimated (On the scale from low-immense). Next the risk analysis was performed, in software called RM-Studio, and the results analysed. Equivalent analysis was performed for the PSTN system for comparison. Finally countermeasures, to the main threats to a VoIP system, were introduced. I want to dedicate this thesis to my newborn daughter.

[1]  Marshall Brain,et al.  How Stuff Works , 2001 .

[2]  Patrick Park Voice over IP Security , 2008 .

[3]  B. Goode,et al.  Voice over Internet protocol (VoIP) , 2002, Proc. IEEE.

[4]  Jonathan Davidson,et al.  Voice over IP Fundamentals , 2000 .

[5]  H. Jonathan Chao,et al.  Multiprotocol Label Switching , 2002 .

[6]  Pedram Hajipour,et al.  Comparative Study of M/Er/1 and M/M/1 Queuing Delay Models of the two IP-PBXs , 2010, J. Convergence Inf. Technol..

[7]  G. Zorpette,et al.  Keeping the phone lines open , 1989, IEEE Spectrum.

[8]  Mark Collier,et al.  Hacking Exposed VoIP: Voice Over IP Security Secrets & Solutions , 2006 .

[9]  Petros Mouchtaris,et al.  Voice over IP signaling: H.323 and beyond , 2000 .

[10]  Haitao Li,et al.  Research on Man-in-the-Middle Denial of Service Attack in SIP VoIP , 2009, 2009 International Conference on Networks Security, Wireless Communications and Trusted Computing.

[11]  W.J. Rippon Threat assessment of IP based voice systems , 2006, 1st IEEE Workshop on VoIP Management and Security, 2006..