Title :
Specification-Based Denial-of-Service Detection for SIP Voice-over-IP Networks
Author :
Ehlert, Sven ; Wang, Chengjian ; Magedanz, Thomas ; Sisalem, Dorgham
Author_Institution :
Fraunhofer FOKUS, Berlin
fDate :
June 29 2008-July 5 2008
Abstract :
Security threats for voice-over IP (VoIP) networks are becoming a major concern as its popularity increases. New attacks are developed that target directly the underlying SIP protocol. To detect such kinds of attacks we present a specification-based detection framework to recognise deviation from its expected behaviour. We present an implementation and show with measurements that this method is capable of attack detection and mitigation for different kinds of attacks directed towards a SIP infrastructure, including denial-of-service message flooding.
Keywords :
Internet telephony; formal specification; security of data; telecommunication security; SIP voice-over-IP networks; attack detection; denial-of-service message flooding; security threats; specification-based denial-of-service detection; Communication standards; Computer crime; Floods; IP networks; Internet telephony; Monitoring; Multimedia communication; Protection; Protocols; Traffic control; DoS; SIP; VoIP; detection; mitigation; specification; state machine;
Conference_Titel :
Internet Monitoring and Protection, 2008. ICIMP '08. The Third International Conference on
Conference_Location :
Bucharest
Print_ISBN :
978-0-7695-3189-2
Electronic_ISBN :
978-0-7695-3189-2
DOI :
10.1109/ICIMP.2008.14
