Paper Info
Title
Securing SIP-based VoIP infrastructure against flooding attacks and Spam Over IP Telephony.
Abstract
Security of session initiation protocol (SIP) servers is a serious concern of Voice over Internet (VoIP) vendors. The important contribution of our paper is an accurate and real-time attack classification system that detects: (1) application layer SIP flood attacks that result in denial of service (DoS) and distributed DoS attacks, and (2) Spam over Internet Telephony (SPIT). The major advantage of our framework over existing schemes is that it performs packet-based analysis using a set of spatial and temporal features. As a result, we do not need to transform network packet streams into traffic flows and thus save significant processing and memory overheads associated with the flow-based analysis. We evaluate our framework on a real-world SIP traffic—collected from the SIP server of a VoIP vendor—by injecting a number of application layer anomalies in it. The results of our experiments show that our proposed framework achieves significantly greater detection accuracy compared with existing state-of-the-art flooding and SPIT detection schemes.
Year
DOI
Venue
2014
10.1007/s10115-012-0595-5
Knowl. Inf. Syst.
Keywords
Field
DocType
SIP, Intrusion detection, VoIP security, SPAM Over IP Telephony, Denial of service
Application layer,Denial-of-service attack,Computer security,Computer science,Network packet,Server,Computer network,Session Initiation Protocol,SIP trunking,Intrusion detection system,Voice over IP
Journal
Volume
Issue
ISSN
38
2
0219-3116
Citations 
PageRank 
References 
11
0.59
22
Authors
2
Name
Order
Citations
PageRank
Muhammad Ali Akbar1433.56
Muddassar Farooq2122183.47