[Home ] [Archive]   [ فارسی ]  
:: Main :: About :: Current Issue :: Archive :: Search :: Submit :: Contact :: بخش فارسی ::
:: Volume 8, Issue 1 (Spring 2017) ::
3 2017, 8(1): 61-69 Back to browse issues page
Engineered Feature Set to Detect Flooding Attacks in SIP Based VoIP
Hassan Asgharian Eng., Ahmad Akbari Dr *, Bijan Raahemi Dr
Abstract:   (1614 Views)

The main signaling protocol of next generation networks especially in multimedia applications (e.g. video conference, IPTV and VoIP) is session initiation protocol (SIP). Different types of Denial of Service (DoS) attacks are applicable to SIP entities because of the stateful functionality and text based nature of SIP. More than 98 percent of these attacks against SIP entities are caused by misconfiguration and implementation shortcomings. In this paper, a feature set for using in anomaly detection systems by feature engineering approach is generated. The knowledge of SIP packets, SIP internal state machine and normal behavior of this protocol were employed to create features that make machine learning algorithms work. The performance of the engineered feature set is evaluated with two different classifiers by applying three different data sets. The experimental results show the performance of proposed feature set in terms of detection and false alarm rate.

Keywords: Feature Engineering, SIP Security, Denial of Service VoIP Attack, SIP Flooding Attacks
Full-Text [PDF 1298 kb]   (755 Downloads)    
Type of Study: Applicable | Subject: computer
Received: 2016/01/19 | Accepted: 2016/12/21 | Published: 2017/02/12
Add your comments about this article
Your username or Email:


XML   Persian Abstract   Print

Download citation:
BibTeX | RIS | EndNote | Medlars | ProCite | Reference Manager | RefWorks
Send citation to:

Asgharian H, Akbari A, Raahemi B. Engineered Feature Set to Detect Flooding Attacks in SIP Based VoIP . 3. 2017; 8 (1) :61-69
URL: http://adst.ir/article-1-847-en.html

Volume 8, Issue 1 (Spring 2017) Back to browse issues page
علوم و فناوری های پدافند نوین ADST Journal
درجه علمی - پژوهشی توسط وزارت علوم، تحقیقات و فناوری اعطا گردید.