CFP last date
20 January 2025
Reseach Article

A Novel Approach for Evaluating and Detecting Low Rate SIP Flooding Attack

by Abhishek Kumar, Dr. P. Santhi Tilagam
International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
Volume 26 - Number 1
Year of Publication: 2011
Authors: Abhishek Kumar, Dr. P. Santhi Tilagam
10.5120/3067-4192

Abhishek Kumar, Dr. P. Santhi Tilagam . A Novel Approach for Evaluating and Detecting Low Rate SIP Flooding Attack. International Journal of Computer Applications. 26, 1 ( July 2011), 31-36. DOI=10.5120/3067-4192

@article{ 10.5120/3067-4192,
author = { Abhishek Kumar, Dr. P. Santhi Tilagam },
title = { A Novel Approach for Evaluating and Detecting Low Rate SIP Flooding Attack },
journal = { International Journal of Computer Applications },
issue_date = { July 2011 },
volume = { 26 },
number = { 1 },
month = { July },
year = { 2011 },
issn = { 0975-8887 },
pages = { 31-36 },
numpages = {9},
url = { https://ijcaonline.org/archives/volume26/number1/3067-4192/ },
doi = { 10.5120/3067-4192 },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Journal Article
%1 2024-02-06T20:11:42.271417+05:30
%A Abhishek Kumar
%A Dr. P. Santhi Tilagam
%T A Novel Approach for Evaluating and Detecting Low Rate SIP Flooding Attack
%J International Journal of Computer Applications
%@ 0975-8887
%V 26
%N 1
%P 31-36
%D 2011
%I Foundation of Computer Science (FCS), NY, USA
Abstract

Voice over Internet protocol (VoIP) is continuously evolving and changing the face of business telephony. The Session Initiation Protocol (SIP) is a widely used standard in VoIP communications to setup and tear down phone calls. Low rate Denial-of Service (DoS) attack recently emerged as the greatest threat to enterprise VoIP systems. Such attacks are difficult to detect and capable of discovering vulnerabilities in protocols with low rate traffic. In this paper we aim to provide a novel low rate SIP flooding detection scheme using area under curve of monitored dynamic SIP traffic with classification of SIP flooding attacks and its impact on SIP server under low rate DoS attack. Compared to the other detection system our technique achieves advantages of accuracy, fast, light weight, and flexibility to deal with DDoS attack detection. Experimental results show the effectiveness of the scheme.

References
  1. Asterisk, The Open Source Telephony Projects, http://www.asterisk.org.
  2. R. Gayraud et al., “SIPp”, http://sipp.sourceforge.net
  3. A. Kumar, S. Thilagam, A. Pais, V. Sharma, K. Sadalkar, “Towards Evaluating Resilience of SIP Server Under Low Rate DoS Attack”, Proceeding AIM Advances in Information Technology and Mobile Communication. 2011 AIM ’11. Springer-Berlin Heidelberg, CCIS-Vol. 147, pp. 336–339, (2011).
  4. Al-Allouni, H.,Rohiem, A.E.,Hashem, M.,El-moghazy, A.,Ahmed, A.E., “VoIP Denial of Service Attacks Classification and Implementation”., National Radio Science Conference, 2009. NRSC ’09. pp 1–12, (2009).
  5. H. Sengar, “Overloading Vulnerability of VoIP Network”. Dependable Systems and Networks, 2009. DSN ’09. IEEE/IFIP International Conference, pp 419–428, (2009).
  6. J. Tang,Y. Cheng, C. Zhou, “Sketch-Based SIP Flooding Detection Using Hellinger Distance”.,Proceeding GLOBECOM’09 Proceedings of the 28th IEEE conference on Global telecommunications. pp 3380–3385, (2009).
Index Terms

Computer Science
Information Sciences

Keywords

VoIP SIP Low Rate DoS Attack Behavior Based Analysis