Abstract
The transition of voice communication from public switched telephone networks (PSTN) to IP network has offered numerous advantages, at the same time, myriad of security threats. Common among these threats is DoS attacks which was not possible in PSTN with closed architecture. This paper examines the denial-of-service (DoS) attacks on session initiation protocol (SIP) server using SIP particularly with REGISTER messages, focusing on the design of a framework to protect SIP server from such attacks. The proposed scheme introduces an intermediate server between SIP server and the User Agents, which is used to filter out attacks.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley,M., Schooler, E.: SIP: Session Initiation Protocol, RFC 3261 (June 2002)
SANS Institute. SANS Top-20 2007 Security Risks, 2007. http://www.sans.org/top20/
Seo, D., Lee, H., Nuwere, E.: Detecting more SIP attacks on VoIP services by combining rule matching and state transition models. In: Proceedings of the IFIP TC 11 23rd International Information Security Conference, vol. 278, pp. 397–411. (2008)
Chen, E.Y., Itoh, M.: A whitelist approach to protect SIP servers from flooding attacks. In: Communications Quality and Reliability (CQR), 2010 IEEE International Workshop Technical Committee, 8–10 June 2010
Peng, T., Leckie, C., Ramamohanarao, K.: Protection from distributed denial of service attacks using history-based IP filtering. Communications, 2003. ICC ‘03. IEEE International Conference, vol. 1, pp. 482–486. (2003)
Ormazabal, G., Nagpal, S., Yardeni, E., Schulzrinne, H., Secure SIP: a scalable prevention mechanism for DoS attacks on SIP based VoIP systems. In: Proceedings of 2nd International Conference on Principles, Systems and Applications of IP Telecommunications (IPTComm), pp. 107–132, July 2008
Deng, X., Shore, M.: Advanced flooding attack on a SIP server. Availability, Reliability and Security, 2009. ARES ‘09. International Conference, pp. 647–651, (2009)
OpenSIPS (OpenSIPS is the new name for the OpenSER project.): http://www.opensips.org
Sipp, sipp.sourceforge.net
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer India
About this paper
Cite this paper
Sebastian, B., Choudhury, P., Jaidhar, C.D. (2014). Mechanism for Preventing Registration Flooding Attack in SIP. In: Mohapatra, D.P., Patnaik, S. (eds) Intelligent Computing, Networking, and Informatics. Advances in Intelligent Systems and Computing, vol 243. Springer, New Delhi. https://doi.org/10.1007/978-81-322-1665-0_71
Download citation
DOI: https://doi.org/10.1007/978-81-322-1665-0_71
Publisher Name: Springer, New Delhi
Print ISBN: 978-81-322-1664-3
Online ISBN: 978-81-322-1665-0
eBook Packages: EngineeringEngineering (R0)