Abstract
Voice over IP (VoIP) introduces new ways of communication, while utilizing existing data networks to provide inexpensive voice communications worldwide as a promising alternative to the traditional PSTN telephony. SPam over Internet Telephony (SPIT) is one potential source of future annoyance in VoIP. A common way to launch a SPIT attack is the use of an automated procedure (bot), which generates calls and produces audio advertisements. In this paper, our goal is to design appropriate CAPTCHA to fight such bots. We focus on and develop audio CAPTCHA, as the audio format is more suitable for VoIP environments and we implement it in a SIP-based VoIP environment. Furthermore, we suggest and evaluate the specific attributes that audio CAPTCHA should incorporate in order to be effective, and test it against an open source bot implementation.
Chapter PDF
Similar content being viewed by others
Keywords
- Hide Markov Model
- Session Initiation Protocol
- Voice Message
- Session Initiation Protocol Message
- Audio Format
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Turing, A.: Computing machinery and intelligence. Mind LIX(236), 433–460 (1950)
Blum, M., von Ahn, L., Langford, J., Hopper, N.: The CAPTCHA Project (November 2000)
von Ahn, L., Blum, M., Hopper, N., Langford, J.: CAPTCHA: Using hard AI problems for security. In: Biham, E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 294–311. Springer, Heidelberg (2003)
von Ahn, L., Blum, M., Langford, J.: Telling Humans and Computer Apart Automatically. Com. of the ACM 47(2), 57–60 (2004)
von Ahn, L., Maurer, B., McMillen, C., Abraham, D., Blum, M.: CAPTCHA: human-based character recognition via Web security. Science 321(5895), 1465–1468 (2008)
Chellapilla, K., Larson, K., Simard, P., Czerwinski, M.: Building Segmentation Based Human Friendly Human Interaction proofs. In: Proc. of the SIGCHI conference on Human Factors in Computing Systems, pp. 711–720. ACM Press, New York (2005)
Chew, M., Baird, H.: Baffletext: A Human Interactive Proof. In: Proc. of the 10th SPIE/IS&T Document Recognition & Retrieval Conference, USA, pp. 305–316 (January 2003)
Mori, G., Malik, J.: Recognizing objects in adversarial clutter: Breaking a visual CAPTCHA. In: Proc. of the Computer Vision and Pattern Recognition Conference, pp. 134–141. IEEE Press, Los Alamitos (2003)
Defeated CAPTCHA (retrieved May 18, 2008), http://libcaca.zoy.org/wiki/PWNtcha
Yan, J., El Ahmad, A.: Breaking Visual CAPTCHA with Naive Pattern Recognition Algorithms. In: Samarati, P., et al. (eds.)Proc. of the 23rd Annual Computer Security Applications Conference (ACSAC 2007), pp. 279–291. IEEE Computer Society, Los Alamitos (2007)
Yan, J.: A El Ahmad, A Low-cost attack on a Microsoft CAPTCHA, Technical Report, School of Computer Science, Newcastle University, United Kingdom (February 2008)
Jurafsky, D., Martin, J.: Speech and Language Processing: An Introduction to Natural Language Processing, Computational Linguistics and Speech Recognition, 2nd edn. Prentice-Hall, Englewood Cliffs (2008)
Defeating Audio (Voice) CAPTCHA (retrieved October 10, 2008), http://vorm.net/captchas/
SIPP Traffic Generator for the SIP Protocol (retrieved September 30, 2008), http://sipp.sourceforge.net/
Breaking Gmails Audio CAPTCHA (retrieved October 10, 2008), http://blog.wintercore.com/?p=11
HTK: Hidden Markov Model Toolkit (retrieved October 10, 2008), http://htk.eng.cam.ac.uk/
SPHINX: The CMU Sphinx Group Open Source Speech Recognition Engines (retrieved January 2, 2009), http://cmusphinx.sourceforge.net/html/cmusphinx.php
Tam, J., Simsa, J., Huggins-Daines, D., von Ahn, L., Blum, M.: Improving Audio CAPTCHA. In: Proc. of the Symposium on Usable Privacy and Security (SOUPS 2008), USA (2008)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 IFIP International Federation for Information Processing
About this paper
Cite this paper
Soupionis, Y., Tountas, G., Gritzalis, D. (2009). Audio CAPTCHA for SIP-Based VoIP. In: Gritzalis, D., Lopez, J. (eds) Emerging Challenges for Security, Privacy and Trust. SEC 2009. IFIP Advances in Information and Communication Technology, vol 297. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-01244-0_3
Download citation
DOI: https://doi.org/10.1007/978-3-642-01244-0_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-01243-3
Online ISBN: 978-3-642-01244-0
eBook Packages: Computer ScienceComputer Science (R0)