This course aims to teach learners about a monitoring framework called TIDS - Telecom IDS, designed for security network monitoring and detecting anomalies in telecom networks. The course covers the importance of protecting telecom infrastructure from abuses and DoS attacks, as well as proactively detecting security issues like spoofing and user privacy evasion. The course teaches skills such as data collection, filtering, statistical analysis, and machine learning methods for real-time traffic and anomaly reports. The teaching method involves a presentation of actual technologies, global coverage of TIDS, specific monitoring setups, and in-depth discussions on various threats and detection techniques in telecom networks. This course is intended for individuals interested in telecom security, machine learning, data analytics, and network monitoring.
TIDS - A Framework for Detecting Threats in Telecom Networks
Overview
Syllabus
Intro
Actual stack of technologies
TIDS global coverage
Diameter Monitoring - Actual setup
TIDS - Telecom IDS Diameter
Why building it
Monitored issues
IDR - Location tracking
Passively fingerprint vendors
Session-id vendor patterns
S6a Reset - Upgrade in progress
Spoofing - Topology hidding
Monitoring traffic rerouting
Behavior Analytics - Call SPAM
Advanced Data Analytics on Telecom Data
Regulation, data, and beyond
Predicting the present to detect anomalies
Clustering data to detect outliers
Questions?
Taught by
Cooper
