{"title":"基于SIP的VoIP系统抵御DoS/DDoS攻击的实用安全框架综述","authors":"Sheeba Armoogum, N. Mohamudally","doi":"10.1109/ISTAFRICA.2014.6880664","DOIUrl":null,"url":null,"abstract":"Since its existence for the past ten years, the SIP-based Voice Over IP (VoIP) network is playing a key role in the current and future communication by utilising the existing broadband Internet access. Unfortunately, Denial of Service and Distributed Denial of Service (DoS/DDoS) attacks can inflict harmful threats to various nodes (SIP proxy servers, User agents, etc) and may cause failure to the SIP system. This is one reason why over 40 proposals, addressing these problems, have been published. Regrettably, not many of these researchers have considered scalability, extensibility and other performance issues by testing their promising prevention techniques in a real network. We find that there are around eight practical frameworks and the aim of this paper is to revisit these countermeasures solutions. We propose a new way of evaluation criteria and a comparative study of the researchers' ideas are being addressed based on the models (if any) used, the network architectures and the results. We however do not judge any of these proposals; instead we give hints on how the attacks on VoIP networks could be further addressed.","PeriodicalId":248893,"journal":{"name":"2014 IST-Africa Conference Proceedings","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"Survey of practical security frameworks for defending SIP based VoIP systems against DoS/DDoS attacks\",\"authors\":\"Sheeba Armoogum, N. Mohamudally\",\"doi\":\"10.1109/ISTAFRICA.2014.6880664\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Since its existence for the past ten years, the SIP-based Voice Over IP (VoIP) network is playing a key role in the current and future communication by utilising the existing broadband Internet access. Unfortunately, Denial of Service and Distributed Denial of Service (DoS/DDoS) attacks can inflict harmful threats to various nodes (SIP proxy servers, User agents, etc) and may cause failure to the SIP system. This is one reason why over 40 proposals, addressing these problems, have been published. Regrettably, not many of these researchers have considered scalability, extensibility and other performance issues by testing their promising prevention techniques in a real network. We find that there are around eight practical frameworks and the aim of this paper is to revisit these countermeasures solutions. We propose a new way of evaluation criteria and a comparative study of the researchers' ideas are being addressed based on the models (if any) used, the network architectures and the results. We however do not judge any of these proposals; instead we give hints on how the attacks on VoIP networks could be further addressed.\",\"PeriodicalId\":248893,\"journal\":{\"name\":\"2014 IST-Africa Conference Proceedings\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-05-07\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 IST-Africa Conference Proceedings\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISTAFRICA.2014.6880664\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IST-Africa Conference Proceedings","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISTAFRICA.2014.6880664","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Survey of practical security frameworks for defending SIP based VoIP systems against DoS/DDoS attacks
Since its existence for the past ten years, the SIP-based Voice Over IP (VoIP) network is playing a key role in the current and future communication by utilising the existing broadband Internet access. Unfortunately, Denial of Service and Distributed Denial of Service (DoS/DDoS) attacks can inflict harmful threats to various nodes (SIP proxy servers, User agents, etc) and may cause failure to the SIP system. This is one reason why over 40 proposals, addressing these problems, have been published. Regrettably, not many of these researchers have considered scalability, extensibility and other performance issues by testing their promising prevention techniques in a real network. We find that there are around eight practical frameworks and the aim of this paper is to revisit these countermeasures solutions. We propose a new way of evaluation criteria and a comparative study of the researchers' ideas are being addressed based on the models (if any) used, the network architectures and the results. We however do not judge any of these proposals; instead we give hints on how the attacks on VoIP networks could be further addressed.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
