Title :
On the Robustness of SCTP against DoS Attacks
Author :
Rathgeb, Erwin P. ; Hohendorf, Carsten ; Nordhoff, Michael
Author_Institution :
Comput. Networking Technol. Group, Univ. ofDuisburg-Essen, Essen
Abstract :
The stream control transmission protocol (SCTP) is a new general purpose transport protocol standardized by the IETF. The new features of SCTP make it an attractive option for new applications and even for those nowadays using TCP and UDP. One crucial issue for the broad acceptance of SCTP will be its security and in particular its robustness against denial-of-service attacks (DoS). Therefore, SCTP has been defined with a 4-way handshake including a cookie mechanism to mitigate DoS attacks similar to the SYN flooding in TCP. In this paper, we will first assess the behaviour of this mechanism in a classical DoS scenario and compare it to TCP. In the next step, we analyze the 4-way handshake to identify potential new attacks. These attacks are then investigated in detail to evaluate their risk.
Keywords :
telecommunication security; transport protocols; 4-way handshake; SYN flooding; TCP; UDP; cookie mechanism; denial-of-service attacks; risk evaluation; stream control transmission protocol; transport protocol; Application software; Computer crime; Computer networks; Floods; Information technology; Robust control; Robustness; Security; Telephony; Transport protocols; Denial of Service; Robustness; SCTP; Security; TCP;
Conference_Titel :
Convergence and Hybrid Information Technology, 2008. ICCIT '08. Third International Conference on
Conference_Location :
Busan
Print_ISBN :
978-0-7695-3407-7
DOI :
10.1109/ICCIT.2008.196
