Premium
Leveraging countermeasures as a service for VoIP security in the cloud
Author(s) -
Dabbebi Oussema,
Badonnel Remi,
Festor Olivier
Publication year - 2013
Publication title -
international journal of network management
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.373
H-Index - 28
eISSN - 1099-1190
pISSN - 1055-7148
DOI - 10.1002/nem.1853
Subject(s) - computer science , voice over ip , cloud computing , computer security , context (archaeology) , cloud computing security , countermeasure , service (business) , risk analysis (engineering) , computer network , world wide web , the internet , business , operating system , paleontology , marketing , engineering , biology , aerospace engineering
SUMMARY The emergence of cloud computing is contributing to the integration of multiple services, in particular VoIP services. While the cloud has recently been used for performing security attacks targeting IP telephony, it also provides new opportunities for supporting the security of this service. In that context, we propose a risk management strategy for VoIP cloud based on security countermeasures that may be outsourced as services. We present the architecture of our solution and its components in the context of services implementing the SIP protocol. We describe the mathematical modelling supporting our approach and detail different treatment strategies for the application of countermeasures. Finally, we quantify the benefits and limits of these strategies based on extensive simulation results. When a countermeasure fails, these strategies allow us to maintain the risk level low at an additional cost of up to 7%, or to accept an additional risk of up to 12%. They can also be combined to obtain a trade‐off between cost and performance. Copyright © 2013 John Wiley & Sons, Ltd.