End to End Mechanism to Protect Sip from Signaling Attacks
作者: Khaled Dassouki , Haidar Safa , Abbas Hijazi
DOI: 10.1109/NTMS.2014.6814017
关键词:
摘要: SIP is among the most popular Voice over IP signaling protocols. Its deployment in live scenarios showed vulnerability to attacks defined as attacks. These are used tear down a session or manipulate its parameters. In this paper we present security mechanism that protects sessions against such The uses fingerprint authenticate messages, order prevent spoofing. We validate our using Openssl [14] and Sipp [13] show it light robust.
sci-hub.se 参考文章(13)
Fadi El-moussa, Parmindher Mudhar, Andy Jones, Overview of SIP Attacks and Countermeasures Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. pp. 82- 91 ,(2010) , 10.1007/978-3-642-11530-1_10
S. Donovan, R. Sparks, C. Cunningham, K. Summers, A. Johnston, Session Initiation Protocol (SIP) Basic Call Flow Examples Session Initiation Protocol (SIP) Basic Call Flow Examples. ,vol. 3665, pp. 1- 94 ,(2003)
Jon Peterson, Session Initiation Protocol (SIP) Authenticated Identity Body (AIB) Format RFC. ,vol. 3893, pp. 1- 13 ,(2004)
Pornchanok Rodnikorn, Nittida Elz, Ladda Preechaveerakul, SIPE-SAP: SIP extension for signaling attacks protection international conference on ubiquitous and future networks. pp. 296- 300 ,(2012) , 10.1109/ICUFN.2012.6261715
Zhiqiang Chen, Wushao Wen, Da Yu, None, Detecting SIP flooding attacks on IP Multimedia Subsystem (IMS) 2012 International Conference on Computing, Networking and Communications (ICNC). pp. 154- 158 ,(2012) , 10.1109/ICCNC.2012.6167401
Dimitris Geneiatakis, Costas Lambrinoudakis, A lightweight protection mechanism against signaling attacks in a SIP-based VoIP environment Telecommunication Systems. ,vol. 36, pp. 153- 159 ,(2007) , 10.1007/S11235-008-9065-5
Charles Shen, Erich Nahum, Henning Schulzrinne, Charles P. Wright, The impact of TLS on SIP server performance: measurement and modeling IEEE ACM Transactions on Networking. ,vol. 20, pp. 1217- 1230 ,(2012) , 10.1109/TNET.2011.2180922
F. Cao, C. Jennings, Providing response identity and authentication in IP telephony availability, reliability and security. ,vol. 1, pp. 198- 205 ,(2006) , 10.1109/ARES.2006.99
Yacine Rebahi, Jordi Jaen Pallares, Nguyen Tuan Minh, Sven Ehlert, Gergely Kovacs, Dorgham Sisalem, Performance analysis of identity management in the Session Initiation Protocol (SIP) acs/ieee international conference on computer systems and applications. pp. 711- 717 ,(2008) , 10.1109/AICCSA.2008.4493606
Cullen Jennings, Jon Peterson, Enhancements for Authenticated Identity Management in the Session Initiation Protocol (SIP) RFC. ,vol. 4474, pp. 1- 41 ,(2006)