A framework for protecting a SIP-based infrastructure against malformed message attacks

Dimitris Geneiatakis; Georgios Kambourakis; Costas Lambrinoudakis; Tasos Dagiuklas; Stefanos Gritzalis

doi:10.1016/j.comnet.2006.11.014

A framework for protecting a SIP-based infrastructure against malformed message attacks

Dimitris Geneiatakis, Georgios Kambourakis, Costas Lambrinoudakis, Tasos Dagiuklas, Stefanos Gritzalis

Research output: Contribution to journal › Article › peer-review

54 Citations (Scopus)

Abstract

This paper presents a framework that can be utilized for the protection of session initiation protocol (SIP)-based infrastructures from malformed message attacks. Its main characteristic is that it is lightweight and that it can be easily adapted to heterogeneous SIP implementations. The paper analyzes several real-life attacks on VoIP services and proposes a novel detection and protection mechanism that is validated through an experimental test-bed under different test scenarios. Furthermore, it is demonstrated that the employment of such a mechanism for the detection of malformed messages imposes negligible overheads in terms of the overall SIP system performance.

Original language	English
Pages (from-to)	2580-2593
Number of pages	14
Journal	Computer Networks
Volume	51
Issue number	10
DOIs	https://doi.org/10.1016/j.comnet.2006.11.014
Publication status	Published - 11 Jul 2007
Externally published	Yes

Keywords

Intrusion detection system
Malformed message attacks
Session initiation protocol
Voice over IP security

Access to Document

10.1016/j.comnet.2006.11.014

Cite this

@article{fc73f038e83d4a729558ea027f5389cb,

title = "A framework for protecting a SIP-based infrastructure against malformed message attacks",

abstract = "This paper presents a framework that can be utilized for the protection of session initiation protocol (SIP)-based infrastructures from malformed message attacks. Its main characteristic is that it is lightweight and that it can be easily adapted to heterogeneous SIP implementations. The paper analyzes several real-life attacks on VoIP services and proposes a novel detection and protection mechanism that is validated through an experimental test-bed under different test scenarios. Furthermore, it is demonstrated that the employment of such a mechanism for the detection of malformed messages imposes negligible overheads in terms of the overall SIP system performance.",

keywords = "Intrusion detection system, Malformed message attacks, Session initiation protocol, Voice over IP security",

author = "Dimitris Geneiatakis and Georgios Kambourakis and Costas Lambrinoudakis and Tasos Dagiuklas and Stefanos Gritzalis",

year = "2007",

month = jul,

day = "11",

doi = "10.1016/j.comnet.2006.11.014",

language = "English",

volume = "51",

pages = "2580--2593",

journal = "Computer Networks",

issn = "1389-1286",

publisher = "Elsevier B.V.",

number = "10",

}

TY - JOUR

T1 - A framework for protecting a SIP-based infrastructure against malformed message attacks

AU - Geneiatakis, Dimitris

AU - Kambourakis, Georgios

AU - Lambrinoudakis, Costas

AU - Dagiuklas, Tasos

AU - Gritzalis, Stefanos

PY - 2007/7/11

Y1 - 2007/7/11

N2 - This paper presents a framework that can be utilized for the protection of session initiation protocol (SIP)-based infrastructures from malformed message attacks. Its main characteristic is that it is lightweight and that it can be easily adapted to heterogeneous SIP implementations. The paper analyzes several real-life attacks on VoIP services and proposes a novel detection and protection mechanism that is validated through an experimental test-bed under different test scenarios. Furthermore, it is demonstrated that the employment of such a mechanism for the detection of malformed messages imposes negligible overheads in terms of the overall SIP system performance.

AB - This paper presents a framework that can be utilized for the protection of session initiation protocol (SIP)-based infrastructures from malformed message attacks. Its main characteristic is that it is lightweight and that it can be easily adapted to heterogeneous SIP implementations. The paper analyzes several real-life attacks on VoIP services and proposes a novel detection and protection mechanism that is validated through an experimental test-bed under different test scenarios. Furthermore, it is demonstrated that the employment of such a mechanism for the detection of malformed messages imposes negligible overheads in terms of the overall SIP system performance.

KW - Intrusion detection system

KW - Malformed message attacks

KW - Session initiation protocol

KW - Voice over IP security

UR - https://www.scopus.com/pages/publications/33947123970

U2 - 10.1016/j.comnet.2006.11.014

DO - 10.1016/j.comnet.2006.11.014

M3 - Article

AN - SCOPUS:33947123970

SN - 1389-1286

VL - 51

SP - 2580

EP - 2593

JO - Computer Networks

JF - Computer Networks

IS - 10

ER -

A framework for protecting a SIP-based infrastructure against malformed message attacks

Abstract

Keywords

Access to Document

Other files and links

Cite this