Title :
SIPp-DD: SIP DDoS Flood-Attack Simulation Tool
Author :
Stanek, Jan ; Kencl, Lukas
Author_Institution :
R&D Center for Mobile Applic. (RDC), Czech Tech. Univ. in Prague, Prague, Czech Republic
fDate :
July 31 2011-Aug. 4 2011
Abstract :
With the growing popularity of Voice-over-IP communication and of the SIP protocol, mobile networks including, denial-of-service attacks against the signaling are an increasingly menacing threat. We present SIPp-DD, a tool for generating real-like SIP DDoS flood attacks. SIPp-DD modifies the popular SIPp call generator and offers the option to spoof source IP addresses and ports of the generated messages. For flexibility, any set of source IP addresses and ports can be input, using a text file. To create real-like attacks, we analyze some of the publicly available DDoS flood attacks, derive typical distributions of address and packet populations and employ those in attack generation. We compare the generator outputs with the real analyzed DDoS floods and demonstrate the tool applicability by performing a DDoS attack within a real SIP-server testbed.
Keywords :
Internet telephony; computer network security; mobile computing; signalling protocols; SIP DDoS flood-attack simulation tool; SIP protocol; SIPp call generator; SIPp-DD; address populations; denial-of-service attacks; mobile networks; packet populations; session initiation protocol server; source IP addresses; text file; voice-over-IP communication; Computer crime; Correlation; Generators; IP networks; Protocols; Servers;
Conference_Titel :
Computer Communications and Networks (ICCCN), 2011 Proceedings of 20th International Conference on
Conference_Location :
Maui, HI
Print_ISBN :
978-1-4577-0637-0
DOI :
10.1109/ICCCN.2011.6005946
