Title :
Revealing the Calling History of SIP VoIP Systems by Timing Attacks
Author :
Zhang, Ge ; Fischer-Huebner, S. ; Martucci, Leonardo A. ; Ehlert, Sven
Author_Institution :
Karlstad Univ., Karlstad
Abstract :
Many emergent security threats which did not exist in the traditional telephony network are introduced in SIP VoIP services. To provide high-level security assurance to SIP VoIP services, an inter-domain authentication mechanism is defined in RFC 4474. However, this mechanism introduces another vulnerability: a timing attack which can be used for effectively revealing the calling history of a group of VoIP users. The idea here is to exploit the certificate cache mechanisms supported by SIP VoIP infrastructures, in which the certificate from a caller´s domain will be cached by the callee´s proxy to accelerate subsequent requests. Therefore, SIP processing time varies depending whether the two domains had been into contact beforehand or not. The attacker can thus profile the calling history of a SIP domain by sending probing requests and observing the time required for processing. The result of our experiments demonstrates that this attack can be easily launched. We also discuss countermeasures to prevent such attacks.
Keywords :
IP networks; Internet telephony; message authentication; telecommunication security; SIP VoIP system; cache mechanism; high-level security assurance; interdomain authentication; security threat; telephony network; timing attack; Authentication; Availability; Companies; History; Identity management systems; Internet telephony; Protocols; Security; Timing; Web and internet services; SIP; Security; VoIP;
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
DOI :
10.1109/ARES.2009.129
