The rogue server could also send a response back (301 Moved Permanently) that
would reroute all subsequent requests/responses to the rogue network. This is being
played out today with Internet services, with rogue individuals hijacking HTTP servers
in the network and rerouting all messages from these servers to their own servers.
However, this information is often needed in order to terminate calls within another
remote trusted domain. To allow for this information to be read by these networks, encryption
is used on the headers providing proprietary data. Only trusted networks are
able to decrypt these messages using the encryption keys from the originating network.
The I-CSCF performs the encryption prior to forwarding messages outside of its own
domain.
When encryption is used, the VIA, ROUTE, and RECORD-ROUTE headers are
all encrypted. This prevents other networks from learning the addresses within the
operator??™s network and learning the topology of that network, while also preventing
eavesdropping. The challenge it presents, however, is in the area of performance management.
Performance management solutions typically rely on some fashion of probes or sniffers
in the network to copy and collect signaling messages in the network, and use this
information for calculating statistics and generating reports on the overall health and
performance of the network.
Pages:
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334