SECURING THE CALEA ARCHITECTURE AGAINST DENIAL OF SERVICE ATTACKS

By

Author

Presented To

Department of Computer Science

ABSTRACT

Law Enforcement Agencies (LEA) around the world utilizes eavesdropping systems that are based on
the Communications Assistance for Law Enforcement Act (CALEA) architecture, which provides a
platform for transmitting and collecting these data for further analysis. Recent security analysis however
has revealed that CALEA is susceptible to Denial-of-Service (DoS) attacks, which could potentially
compromise the ability of the system to transmit, analyse and utilize the captured data in real time. The
primary reason for this is the limited transfer rate allocated for sending data obtained via eavesdropping.
The bandwidth can be easily overwhelmed by dummy messages if the transmission link is hijacked,
resulting in subsequent loss of real data being transmitted. This would be analogous to the SYN flood
attack observed in web servers.
This project proposes a solution to this issue, which involves splitting the original data to be transmitted
into smaller chunks prior to transmission. The motivation is to decrease the probability of packets
containing real data being lost when the bandwidth usage increases when a DOS attack is attempted.
Subsequently larger amount of real data arrives intact at the receiving end, which can then be gainfully
utilized. The process of distinguishing the fake from real messages could be achieved through some 
appropriate pattern recognition and classification software, which however would be beyond the scope
of this project. The key activities in this project involve the design, implementation and test of the
performance aspects of the proposed solution to the DOS attack problem.
A brief overview of the CALEA architecture is provided, along with the various key modules that
comprise it. The current solution is proposed after an analysis of various alternatives. The primary
research methodology in this project concerns the design of the experimental tests for the proposed
solution, its implementation, execution, data gathering and subsequent analysis. The trial runs are
repeated for both wireless medium and wired medium in order to compare results. A limited transfer rate
link is used to simulate an overwhelmed link and the FTP protocol is used for the file transfer process. A
performance analysis is shown to indicate the amount of real data that would have been lost without the
use of the solution. A discussion about the strength and weakness of the solution is also provided, along
with avenues for future work. 
Table of Contents
 Page
ABSTRACT 3
ACKNOWLEDGEMENT 5
PERMISSION SHEET 6
APPROVAL SHEET 7
DECLARATION 8
LIST OF TABLES 9
LIST OF FIGURES 10
LIST OF ABBREVIATIONS/NOTATION/GLOSSARY OF TERMS 11
Chapter
1 INTRODUCTION- - - - - - - - - - - - - - - .12
2 LITRITURE REVIEW- - - - - - - - - - - - - - - 15
2.1 Call Data Channel(CDC) Resource Exhaustion- - - - - - - - - - 15
2.1.1 ISDN Feature Keys- - - - - - - - - - - - ..17
2.1.2 SMS Messaging - - - - - - - - - - - - - - 17
2.1.3 VoIP Signaling- - - - - - - - - - - - - - .18
2.1.4 IP Flow- - - - - - - - - - - - - - .19
2.2 Inbound Attacks- - - - - - - - - - - - - - .19
2.3 Injecting Uncertainty into Packet Traces- - - - - - - - - - - 19
2.3.1 Confusion- - - - - - - - - - - - - - - 19
2.3.2 Subject-Oriented cdma2000 Timestamps - - - - - - - - - - 20
2.3.3 Loss of cdam2000 Direction Information - - - - - - - - - - 20
2.4 In-band Signaling within Service Provider- - - - - - - - - - 20
2.5 Alternatives Methods to Secure the CALEA Architecture - - - - - - - 20
2.5.1 Passive Provisioning with DOW [method 1]- - - - - - - - - 21
2.5.2 CALEA Architecture with middleware Message Queue [method 2]- - - - - - 23
2.6 Chosen Solution: Split Huge File to Minimize Risk- - - - - - - - 24
2.7 Reasons for Chosen Solution over the Other Two Methods Designs- - - - - - 24
3 DESIGN- - - - - - - - - - - - - - - - 27
4 IMPLEMENTATION- - - - - - - - - - - - - - - .30
4.1 AF Simulator Setup- - - - - - - - - - - - - .31
4.2 DF Simulator Setup- - - - - - - - - - - - - .31
4.3 CF Simulator Setup- - - - - - - - - - - - - .32
5 TESTING AND ANALYSIS- - - - - - - - - - - - - - 34
6 CONCLUSION- - - - - - - - - - - - - - - - .41
Reference - - - - - - - - - - - - - - - - .42
Appendix A- - - - - - - - - - - - - - - - - 43
Appendix B - - - - - - - - - - - - - - - - - .48
Appendix C- - - - - - - - - - - - - - - - - 49

About e-Project Material Centre


e-Project Material Centre is a web service aimed at successfully assisting final year students with quality, well-researched, reliable, and ready-made project work. Our materials are recent, complete (chapter 1 to Minimum of Chapter 5, with references), and well-written. INSTANT ACCESS! INSTANT DOWNLOAD. Simply select your department, choose from our list of topics available, and explore your data.

Why Students Love to Use e-Project Material?


Guaranteed Delivery: Getting your project delivered on time is essential. You cannot afford to turn in your project past the deadline. That is why you must get your project online from a company that guarantees to meet your deadline. e-Project Topics Material Centre is happy to offer instant delivery of projects listed on our website. We can handle just about any deadline you send our way. Satisfaction Guaranteed: We always do whatever is necessary to ensure every customer's satisfaction.

Disclaimer


e-Project Topics Material Centre will only provide projects as a reference for your research. The projects ordered and produced should be used as a guide or framework for your own project. The contents of the projects should help you generate new ideas and thoughts for your own project. It is the aim of e-Project Topics Centre to only provide guidance by which the projects should be pursued. We are neither encouraging any form of plagiarism nor are we advocating the use of the projects produced herein for cheating.

Terms and Conditions


Using our service is LEGAL and IS NOT prohibited by any university/college policies. You are allowed to use the original model papers you will receive in the following ways:
  • As a source for additional understanding of the subject
  • As a source for ideas for your own research (if properly referenced)
  • For PROPER paraphrasing (see your university definition of plagiarism and acceptable paraphrase) Direct citing (if referenced properly)
Thank you so much for your respect to the author's copyright.

Refund and Privacy Policy


  • Refunds: All sales are final. However, if you encounter any issues with accessing your purchased material, kindly contact our support team for immediate resolution.
  • Privacy Policy: Your personal information is protected and will not be shared with third parties. We ensure secure payment processing and data confidentiality.

Contact Information


X

Need Help Finding or Downloading Your Project Material?

If you don't see the topic you're looking for or You need urgent/express attention, click the WhatsApp Icon/link below to contact ADMIN and get the material you need instantly. We are always available online to attend to your needs. Thanks