Two layer Denial of Service prevention on SIP VoIP infrastructures

Sven Ehlert; Ge Zhang; Dimitris Geneiatakis; Georgios Kambourakis; Tasos Dagiuklas; Jiří Markl; Dorgham Sisalem

doi:10.1016/j.comcom.2008.03.016

Two layer Denial of Service prevention on SIP VoIP infrastructures

Sven Ehlert, Ge Zhang, Dimitris Geneiatakis, Georgios Kambourakis, Tasos Dagiuklas, Jiří Markl, Dorgham Sisalem

Research output: Contribution to journal › Article › peer-review

29 Citations (Scopus)

Abstract

The emergence of Voice over IP (VoIP) has offered numerous advantages for end users and providers alike, but simultaneously has introduced security threats, vulnerabilities and attacks not previously encountered in networks with a closed architecture like the Public Switch Telephone Network (PSTN). In this paper we propose a two layer architecture to prevent Denial of Service attacks on VoIP systems based on the Session Initiation Protocol (SIP). The architecture is designed to handle different types of attacks, including request flooding, malformed message sending, and attacks on the underlying DNS system. The effectiveness of the prevention mechanisms have been tested both in the laboratory and on a real live VoIP provider network.

Original language	English
Pages (from-to)	2443-2456
Number of pages	14
Journal	Computer Communications
Volume	31
Issue number	10
DOIs	https://doi.org/10.1016/j.comcom.2008.03.016
Publication status	Published - 25 Jun 2008
Externally published	Yes

Keywords

Denial of Service
DNS cache
Flooding protection
Malformed messages
Security
SIP
VoIP

Access to Document

10.1016/j.comcom.2008.03.016

Cite this

@article{adf69fa7e63349a4b0dfca3f42dc5bd7,

title = "Two layer Denial of Service prevention on SIP VoIP infrastructures",

abstract = "The emergence of Voice over IP (VoIP) has offered numerous advantages for end users and providers alike, but simultaneously has introduced security threats, vulnerabilities and attacks not previously encountered in networks with a closed architecture like the Public Switch Telephone Network (PSTN). In this paper we propose a two layer architecture to prevent Denial of Service attacks on VoIP systems based on the Session Initiation Protocol (SIP). The architecture is designed to handle different types of attacks, including request flooding, malformed message sending, and attacks on the underlying DNS system. The effectiveness of the prevention mechanisms have been tested both in the laboratory and on a real live VoIP provider network.",

keywords = "Denial of Service, DNS cache, Flooding protection, Malformed messages, Security, SIP, VoIP",

author = "Sven Ehlert and Ge Zhang and Dimitris Geneiatakis and Georgios Kambourakis and Tasos Dagiuklas and Ji{\v r}{\'i} Markl and Dorgham Sisalem",

year = "2008",

month = jun,

day = "25",

doi = "10.1016/j.comcom.2008.03.016",

language = "English",

volume = "31",

pages = "2443--2456",

number = "10",

}

TY - JOUR

T1 - Two layer Denial of Service prevention on SIP VoIP infrastructures

AU - Ehlert, Sven

AU - Zhang, Ge

AU - Geneiatakis, Dimitris

AU - Kambourakis, Georgios

AU - Dagiuklas, Tasos

AU - Markl, Jiří

AU - Sisalem, Dorgham

PY - 2008/6/25

Y1 - 2008/6/25

N2 - The emergence of Voice over IP (VoIP) has offered numerous advantages for end users and providers alike, but simultaneously has introduced security threats, vulnerabilities and attacks not previously encountered in networks with a closed architecture like the Public Switch Telephone Network (PSTN). In this paper we propose a two layer architecture to prevent Denial of Service attacks on VoIP systems based on the Session Initiation Protocol (SIP). The architecture is designed to handle different types of attacks, including request flooding, malformed message sending, and attacks on the underlying DNS system. The effectiveness of the prevention mechanisms have been tested both in the laboratory and on a real live VoIP provider network.

AB - The emergence of Voice over IP (VoIP) has offered numerous advantages for end users and providers alike, but simultaneously has introduced security threats, vulnerabilities and attacks not previously encountered in networks with a closed architecture like the Public Switch Telephone Network (PSTN). In this paper we propose a two layer architecture to prevent Denial of Service attacks on VoIP systems based on the Session Initiation Protocol (SIP). The architecture is designed to handle different types of attacks, including request flooding, malformed message sending, and attacks on the underlying DNS system. The effectiveness of the prevention mechanisms have been tested both in the laboratory and on a real live VoIP provider network.

KW - Denial of Service

KW - DNS cache

KW - Flooding protection

KW - Malformed messages

KW - Security

KW - SIP

KW - VoIP

UR - http://www.scopus.com/inward/record.url?scp=44549085497&partnerID=8YFLogxK

U2 - 10.1016/j.comcom.2008.03.016

DO - 10.1016/j.comcom.2008.03.016

M3 - Article

AN - SCOPUS:44549085497

SN - 0140-3664

VL - 31

SP - 2443

EP - 2456

JO - Computer Communications

JF - Computer Communications

IS - 10

ER -

Two layer Denial of Service prevention on SIP VoIP infrastructures

Abstract

Keywords

Access to Document

Other files and links

Cite this