Add to collection(s) Add to saved
  1. Social Science
  2. Political Science
  3. Media

Collaborative policy development at M3AAWG VTASIG and LAP DNC Hein Dries-Ziekenheiner

advertisement 
ITU Workshop on “Caller ID Spoofing”
(Geneva, Switzerland, 2 June 2014)
Collaborative policy development at
M3AAWG VTASIG and LAP DNC
Hein Dries-Ziekenheiner
VIGILO (itu@vigilo.nl)
Geneva, Switzerland, 2 June 2014
Introduction
VIGILO
www.vigilo.nl
M3AAWG (Mobile Messaging Malware
Anti Abuse Workgroup)
www.m3aawg.org
LAP (London Action Plan)
www.londonactionplan.org
Geneva, Switzerland, 2 June 2014
2
VTASIG
Formed out of M3AAWG membership
Larger (North American, European
carriers, ISPs, Senders)
In co-operation with LAP (especially
DNC group)
Text book definition: public private
partnership
Geneva, Switzerland, 2 June 2014
3
VTASIG
Goal: bring down complaints on Voip
abuse
Robocalls
Illegal telemarketing
Fraud
Policy development for three phases:
Short term
Mid term
Long term
Geneva, Switzerland, 2 June 2014
4
Short term
*50 -> CDRs to regulator
Next hop
Find Originator of abuse (enforcement)
Charge back?
Agency determines applicability
Consumer Carrier “Charges Back” upstream
carriers
VoIP, Cable-Co, Telco and OTT must adhere
to abuse reporting standard
Honeypots
Trace back (P-ANI)
Geneva, Switzerland, 2 June 2014
5
Charge-Back Model
Agencies
Regulators
*50
In or Out of Band Abuse Reporting / Billing
VoIP Provider
Charge Back
$12/call
International
Carrier
Charge Back
Telco / Cable
Co
$10/call
$15 / Call
Miscreant
Consumer
Initiates
*50
M3AAWG 30th General Meeting | San Francisco,
February 2014
(P)Honey Pots
Goal: gather intelligence using honey
pots
Currently: large data set gathered from
TNs that were abandoned for abuse
CDRs of incoming calls(+1)
CRTC Working on receiving regular
numbers from telco’s (more +1)
Georgia Tech: currently working on
data to gather information and
actionable intelligence
Geneva, Switzerland, 2 June 2014
7
Honey Pots
Geneva, Switzerland, 2 June 2014
8
Honey Pots
Geneva, Switzerland, 2 June 2014
9
Mid term
Do Not Call list
Abuse from outside SS7 network
Intended mostly for VOIP->SS7
gateways
Compares CgPN to list of “Do not Spoof”
(SS7 based consumer) numbers
Geneva, Switzerland, 2 June 2014
10
Mid Term
User initiated blocking?
Taking away legal/regulatory barriers
Geneva, Switzerland, 2 June 2014
11
Mid Term
RFC 3325 P-Asserted-Identity
PAI Header for carriers to assert identiy
(CID) of user
Also for privacy options
Creates a Trusted domain
Subject to common spec(T)
Could even work in hybrid networks
(SS7/VOIP with SS7/ISUP trust bits)
Geneva, Switzerland, 2 June 2014
12
Mid Term
Geneva, Switzerland, 2 June 2014
13
Mid Term
User initiated blocking?
Taking away legal/regulatory barriers
Geneva, Switzerland, 2 June 2014
14
Long term
STIR
Others will present on this
M3AAWG/LAP follow development
Consider implications
Geneva, Switzerland, 2 June 2014
15
Conclusions and recommendations
No silver bullet
International cooperation (PPP)
required
National level: keep
eye out for complaint
levels
..And respond with
Best Practices defined
internationally
Geneva, Switzerland, 2 June 2014
For regulators: join
LAP
Industry: join
M3AAWG
Together:VTASIG
Brussels, Montreal,
Boston, SF
Further info:
itu@vigilo.nl
www.vigilo.nl
16
Related documents
ITU-T Workshop “Opportunities and Challenges in Home Networking” CV
ITU-T Workshop “Opportunities and Challenges in Home Networking” CV
Study Abroad in Switzerland School/ Program
Study Abroad in Switzerland School/ Program
Forum on Internet of Things: Empowering the New Urban Agenda
Forum on Internet of Things: Empowering the New Urban Agenda
Joint ITU/UNECE Workshop on Intelligent Transport Systems in Emerging Markets “
Joint ITU/UNECE Workshop on Intelligent Transport Systems in Emerging Markets “
Download
advertisement