Title :
Detecting VoIP-specific Denial-of-Service using change-point method
Author :
Zhang, Hongli ; Gu, Zhimin ; Liu, Caixia ; Jie, Tang
Author_Institution :
Sch. of Comput. Sci. & Technol., Beijing Inst. of Technol., Beijing
Abstract :
As voice over IP (VoIP) technology becomes more widely deployed due to its economical advantage over traditional PSTN service, an increasing number of security issues emerged targeting VoIP-specific vulnerabilities. Being a real-time service, VoIP is more susceptible to denial-of-service (DoS) attacks than regular Internet service. In this paper we proposed a change-point detection method to prevent denial-of-service attacks on VoIP systems based on session initiation protocol (SIP) protocol behavior analysis. We develop efficient adaptive sequential change-point method to detect attacks which lead to changes in network traffic. The change-point detection method employs a statistical analysis of data to detect very subtle traffic changes which from SIP protocol behavior. The method is computationally simple and can be implemented online. Our experimental result shows that the method achieves a very small delay, high rate and low false alarm rate of VoIP-specific DoS detection.
Keywords :
Internet telephony; signalling protocols; statistical analysis; telecommunication traffic; Internet service; PSTN service; SIP; VoIP-specific denial-of-service detection; adaptive sequential change-point method; change-point detection method; network traffic; session initiation protocol protocol; statistical analysis; voice over IP technology; Computer crime; Computer science; Floods; IP networks; Internet telephony; Network servers; Protocols; Statistical analysis; Telecommunication traffic; Web and internet services; Denial-of-Service; Session Initiation Protocol; Voice over IP; change-point detect;
Conference_Titel :
Advanced Communication Technology, 2009. ICACT 2009. 11th International Conference on
Conference_Location :
Phoenix Park
Print_ISBN :
978-89-5519-138-7
Electronic_ISBN :
1738-9445
