A framework for protecting a SIP-based infrastructure against malformed message attacks

被引：36

作者：

Geneiatakis, Dimitris ^{[1
]}

Kambourakis, Georgios ^{[1
]}

Lambrinoudakis, Costas ^{[1
]}

Dagiuklas, Tasos ^{[1
]}

Gritzalis, Stefanos ^{[1
]}

机构：

[1] Univ Aegean, Dept Informat & Commun Syst Engn, Lab Informat & Commun Syst Secur, GR-83200 Samos, Greece

来源：

COMPUTER NETWORKS | 2007年 / 51卷 / 10期

关键词：

session initiation protocol; malformed message attacks; voice over IP security; intrusion detection system;

D O I：

10.1016/j.comnet.2006.11.014

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper presents a framework that can be utilized for the protection of session initiation protocol (SIP)-based infrastructures from malformed message attacks. Its main characteristic is that it is lightweight and that it can be easily adapted to heterogeneous SIP implementations. The paper analyzes several real-life attacks on VoIP services and proposes a novel detection and protection mechanism that is validated through an experimental test-bed under different test scenarios. Furthermore, it is demonstrated that the employment of such a mechanism for the detection of malformed messages imposes negligible overheads in terms of the overall SIP system performance. (C) 2006 Elsevier B.V. All rights reserved.

引用

页码：2580 / 2593

页数：14