1、 I n t e r n a t i o n a l T e l e c o m m u n i c a t i o n U n i o n ITU-T X.1246 TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (09/2015) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Cyberspace security Countering spam Technologies involved in countering voice spam in telecom
2、munication organizations Recommendation ITU-T X.1246 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS X.1X.199 OPEN SYSTEMS INTERCONNECTION X.200X.299 INTERWORKING BETWEEN NETWORKS X.300X.399 MESSAGE HANDLING SYSTEMS X.400X.499 DIRECTORY X.50
3、0X.599 OSI NETWORKING AND SYSTEM ASPECTS X.600X.699 OSI MANAGEMENT X.700X.799 SECURITY X.800X.849 OSI APPLICATIONS X.850X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION AND NETWORK SECURITY General security aspects X.1000X.1029 Network security X.1030X.1049 Security management X.1050X.1069 T
4、elebiometrics X.1080X.1099 SECURE APPLICATIONS AND SERVICES Multicast security X.1100X.1109 Home network security X.1110X.1119 Mobile security X.1120X.1139 Web security X.1140X.1149 Security protocols X.1150X.1159 Peer-to-peer security X.1160X.1169 Networked ID security X.1170X.1179 IPTV security X.
5、1180X.1199 CYBERSPACE SECURITY Cybersecurity X.1200X.1229 Countering spam X.1230X.1249 Identity management X.1250X.1279 SECURE APPLICATIONS AND SERVICES Emergency communications X.1300X.1309 Ubiquitous sensor network security X.1310X.1339 PKI related Recommendations X.1340X.1349 CYBERSECURITY INFORM
6、ATION EXCHANGE Overview of cybersecurity X.1500X.1519 Vulnerability/state exchange X.1520X.1539 Event/incident/heuristics exchange X.1540X.1549 Exchange of policies X.1550X.1559 Heuristics and information request X.1560X.1569 Identification and discovery X.1570X.1579 Assured exchange X.1580X.1589 CL
7、OUD COMPUTING SECURITY Overview of cloud computing security X.1600X.1601 Cloud computing security design X.1602X.1639 Cloud computing security best practices and guidelines X.1640X.1659 Cloud computing security implementation X.1660X.1679 Other cloud computing security X.1680X.1699 For further detai
8、ls, please refer to the list of ITU-T Recommendations. Rec. ITU-T X.1246 (09/2015) i Recommendation ITU-T X.1246 Technologies involved in countering voice spam in telecommunication organizations Summary Voice communication is a fundamental service provided by telecommunication networks. With the dev
9、elopment of voice communication, voice spam has also been increasing with numerous negative effects on end users and network operators. In general, voice spam has content ranging from commercial advertisement to offensive pornographic material, which has various kinds of negative effects on end user
10、s and network operators. Voice spam may allure, annoy, bully or even intimidate users as well as having negative effects on network resources. To avoid these negative influences and to protect users rights and maintain network stability, network operators may wish to increase their efforts to counte
11、r voice spam. The objective of Recommendation ITU-T X.1246 is to review technical solutions to counter voice spam without consideration of the risk to the authenticity of the spammer identity. This Recommendation gives an overview of voice spam and summarizes the existing anti-spam technologies whic
12、h are used by users and telecommunication networks alike as well as the collaboration mechanisms between them. Additional proposed technical solutions are also recommended based on these anti-spam technologies and collaboration mechanisms. History Edition Recommendation Approval Study Group Unique I
13、D* 1.0 ITU-T X.1246 2015-09-17 17 11.1002/1000/12448 Keywords Spam, voice spam. _ * To access the Recommendation, type the URL http:/handle.itu.int/ in the address field of your web browser, followed by the Recommendations unique ID. For example, http:/handle.itu.int/11.1002/1000/ 11830-en. ii Rec.
14、ITU-T X.1246 (09/2015) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T
15、is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics for study
16、by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepared on a col
17、laborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may contain cer
18、tain mandatory provisions (to ensure, e.g., interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to express requir
19、ements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTSITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Property Right.
20、 ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of intellectu
21、al property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2015 All rights r
22、eserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. Rec. ITU-T X.1246 (09/2015) iii Table of Contents Page 1 Scope . 1 2 References . 1 3 Definitions 1 3.1 Terms defined elsewhere 1 3.2 Terms defined in this Recommendation . 2
23、 4 Abbreviations and acronyms 2 5 Conventions 3 6 Overview of voice spam . 3 6.1 Voice communication scenarios . 3 6.2 Characteristics of voice spam . 4 7 Technologies for countering voice spam 4 7.1 General aspects . 4 7.2 Network-side technologies . 5 7.3 User-side technologies 10 7.4 Collaboratio
24、n mechanism . 11 7.5 Proposed solutions 12 Appendix I Comprehensive measures on countering voice spam 13 Appendix II A suggested solution for interactive verification 14 Appendix III Policy considerations in countering voice spam . 15 III.1 Users . 15 III.2 Operators 15 III.3 Management entities and
25、 third-party organizations . 16 Bibliography. 17 Rec. ITU-T X.1246 (09/2015) 1 Recommendation ITU-T X.1246 Technologies involved in countering voice spam in telecommunication organizations 1 Scope This Recommendation gives an overview of voice spam and reviews existing technologies used to assist co
26、untering voice spam, including network-side and user-side technologies and the collaboration mechanism between them. In addition, this Recommendation also proposes additional practical anti-spam solutions, such as signalling records, interactive verification, controlling measures, etc. This Recommen
27、dation focuses only on countering voice spam that has originated from the circuited-switched area in telecommunication networks with specified consideration of the characteristics of the network infrastructure. The technologies for countering voice spam originating from the IP-based area should be r
28、eferred to ITU-T X.1244, b-ITU-T X.1245 and b-IETF RFC 5039. The technologies that prevent the impersonation of caller identities are outside of the scope of this Recommendation. Compliance with all relevant laws and regulations should be considered before adopting the anti-spam methods described in
29、 this Recommendation. 2 References The following ITU-T Recommendations and other references contain provisions which, through reference in this text, constitute provisions of this Recommendation. At the time of publication, the editions indicated were valid. All Recommendations and other references
30、are subject to revision; users of this Recommendation are therefore encouraged to investigate the possibility of applying the most recent edition of the Recommendations and other references listed below. A list of the currently valid ITU-T Recommendations is regularly published. The reference to a d
31、ocument within this Recommendation does not give it, as a stand-alone document, the status of a Recommendation. ITU-T X.1240 Recommendation ITU-T X.1240 (2008), Technologies involved in countering e-mail spam. ITU-T X.1244 Recommendation ITU-T X.1244 (2008), Overall aspects of countering spam in IP-
32、based multimedia applications. 3 Definitions 3.1 Terms defined elsewhere This Recommendation uses the following terms defined elsewhere: 3.1.1 circuit-switched network b-ITU-T M.60: A network which provides connections for the exclusive use of the users for the duration of a call or service by inter
33、connecting transmission channels or telecommunication circuits. 3.1.2 IP-based network b-ITU-T E.370: A network in which the Internet Protocol is used as the ISO layer 3 protocol (OSI Reference Model). 2 Rec. ITU-T X.1246 (09/2015) 3.1.3 operator b-ITU-T M.1400: An organization responsible for ident
34、ification and management of telecommunication resources. An operator must be legally recognized by the telecommunication administration of the country, or delegation thereof. An operator may or may not correspond to a trading partner. 3.1.4 spammer b-ITU-T X.1231: Spammer refers to the entity or the
35、 person creating and sending spam. 3.2 Terms defined in this Recommendation This Recommendation defines the following terms: 3.2.1 voice spam: Unsolicited, automatically dialled, pre-recorded phone calls, usually with the objective of marketing commercial products or services. The content of voice s
36、pam ranges from advertisement of goods to offensive pornographic materials. Voice spam may have various kinds of harmful effects on users and operators. 3.2.2 honeypot: A software program (may be in a terminal) that emulates a terminal or a group of terminals so as to detect suspicious voice spammer
37、s and even assist in verifying them. The output of these systems can be used in evidence gathering. 3.2.3 management entity: An entity which may have one or more responsibilities for governing, auditing or guiding the work of countering voice spam. 3.2.4 third-party organization: An entity which can
38、 consult, assist or coordinate the work of countering voice spam. 4 Abbreviations and acronyms This Recommendation uses the following abbreviations and acronyms: CAMEL Customized Applications for Mobile Enhanced Logic CCLTP Call Clear Time Point CCOTP Call Continued Time Point CDMA Code Division Mul
39、tiple Access COSN Call Originated Subscriber Number COTP Call Originating Time Point CRBT Customized Ring Back Tone CS Circuit-Switched CTSN Call Terminated Subscriber Number DMP Device Management Platform GMSC Gateway Mobile Switching Centre GSM Global System for Mobile communications HLR Home Loca
40、tion Register ID Identification ISIS Information Sharing System IMS IP Multimedia Subsystem IN Intelligent Network INAP Intelligent Network Application Protocol Rec. ITU-T X.1246 (09/2015) 3 IP Internet Protocol IVR Interactive Voice Response MSC Mobile Switching Centre OTAP Over-the-Air Platform PS
41、TN Public-Switched Telephone Network SCP Service Control Point SIM Subscriber Identity Module SLETP Signalling Link Establishment Time Point SLRTP Signalling Link Release Time Point SS7 Signalling System No. 7 STP Signalling Transfer Point UMTS Universal Mobile Telecommunications System VLR Visitor
42、Location Register VMS Voice Mail Server VoIP Voice over Internet Protocol 5 Conventions None. 6 Overview of voice spam Voice spam is unsolicited, automatically dialled, pre-recorded phone calls, usually with the objective of marketing commercial products or services. The content of voice spam ranges
43、 from advertisement of goods to offensive pornographic materials. Voice spam may have several harmful effects on users and operators. 6.1 Voice communication scenarios Voice communication is a fundamental service provided by telecommunication operators. Originally, voice communication was based on t
44、he traditional circuit-switched (CS) networks. With the development of Internet, voice communication has expanded to include voice over Internet protocol (VoIP) across Internet protocol (IP)-based networks. Four voice communication scenarios, each determined by the technologies used, are considered
45、below: Scenario 1: CS-CS: Traditional mobile/fixed circuit-switched voice communications. Scenario 2: CS-IP: Voice communication originated from a mobile/fixed circuit-switched user and terminated at an IP telephony user. Scenario 3: IP-CS: Voice communication originated from an IP telephony user an
46、d terminated at a mobile/fixed circuit-switched user. Scenario 4: IP-IP: Voice communication between IP telephony users. These four communication scenarios and associated technologies are shown in Figure 1. 4 Rec. ITU-T X.1246 (09/2015) X. 1 2 4 6 (1 5 )_ F 0 1S ce n a r i o 3S ce n a r i o 4Ca l l
47、er st er mi n alCa l l er st er mi n alCa l l ee st er mi n alIN T E RN E TMo b i l et el ec o mm u n i ca t i o nn et w o rkP S T NCa l l ee st er mi n alCa l l er st er mi n alCa l l ee st er mi n alCa l l er st er mi n alCa l l ee st er mi n alS ce n a r i o 2Ne t wo r kT er m i n a l O u t g o i
48、 n g ca l l In co m i n g ca l lS ce n a r i o 1Figure 1 Voice communication scenarios in telecommunication networks NOTE The term terminal as used here in Figure 1 may include mobile phones, fixed phones, laptops, personal computers and so on, which can access circuit-switched/IP-based networks. In
49、 general terms, most users do trust the source of voice telecommunication. Consequently, voice spammers are willing to use traditional circuit-switched voice communication to initiate voice spam. In addition, technologies for countering voice spam in scenario 3 and scenario 4 are recommended in ITU-T X.1244. Therefore, this Recommendation focuses only on countering voice spam in scenario 1 (CS-CS) and scenario 2 (CS-IP). 6.2 Characteristics of voice spam Voice
