Name
Abstract | ||
|---|---|---|
Telephony over IP has been widely deployed, supported by the standardization of VoIP signalling and media transfer protocols. This deployment has also led to the emergence of several security threats, including attacks inherited from the IP layer and attacks specific to the application layer. A large variety of security mechanisms has been proposed for addressing them, but these mechanisms may seriously degrade such a critical service. We propose in this paper an online risk management strategy for protecting VoIP infrastructures. The objective is to minimize the network exposure to security attacks while maintaining the quality of service, through the dynamic application of countermeasures. We describe our approach from the formalization of a dedicated risk model to its proof-of-concept implementation into an Asterisk VoIP server. We detail a portfolio of countermeasures and evaluate the performance of our solution with respect to different criteria, including the number of countermeasures, the risk threshold and the size of attack signatures. |
Year | DOI | Venue |
|---|---|---|
2015 | 10.1007/s10922-013-9282-4 | J. Network Syst. Manage. |
Keywords | Field | DocType |
IP telephony,Security management,Risk mitigation,SIP protocol | Asterisk,Application layer,Computer security,Computer science,Computer network,Quality of service,Session Initiation Protocol,Risk management,Network management,Voice over IP,Security management | Journal |
Volume | Issue | ISSN |
23 | 1 | 1064-7570 |
Citations | PageRank | References |
3 | 0.39 | 19 |
Authors | ||
3 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Oussema Dabbebi | 1 | 21 | 2.94 |
| Remi Badonnel | 2 | 154 | 22.43 |
| Olivier Festor | 3 | 665 | 85.40 |