Survey of network security systems to counter SIP-based denial-of-service attacks

Sven Ehlert, Dimitris Geneiatakis, Thomas Magedanz
2010 Computers & security  
DDoS Detection DoS Flooding IMS Mitigation RTP Signature VoIP a b s t r a c t Session Initiation Protocol is a core protocol for coming real time communication networks, including VoIP, IMS and IPTV networks. Based on the open IP stack, it is similarly susceptible to Denial-of-Service Attacks launched against SIP servers. More than 20 different research works have been published to address SIP-related DoS problems. In this survey we explain three different types of DoS attacks on SIP networks,
more » ... alled SIP message payload tampering, SIP message flow tampering and SIP message flooding. We survey different approaches to counter these three types of attacks. We show that there are possible solutions for both payload and flow tampering attacks, and partial solutions for message flooding attacks. We conclude by giving hints how open flooding attacks issues could be addressed.
doi:10.1016/j.cose.2009.09.004 fatcat:nmkvhx3h3vccpmuchn5wctg67y