DENIAL OF SERVICE ISSUES IN VOICE OVER IP NETWORKS

Jason Reid, Andrew Clark, Juan M González Nieto, Jason Smith, Kapali Viswanathan

Abstract

In this paper we investigate denial of service (DoS) vulnerabilities in Voice over IP (VoIP) systems, focusing on the ITU-T H.323 family of protocols. We provide a simple characterisation of DoS attacks that allows us to readily identify DoS issues in H.323 protocols. We also discuss network layer DoS vulnerabilities that affect VoIP systems. A number of improvements and further research directions are proposed.

References

  1. Aura, T. (2000). Authorization and Availability: Aspects of Open Network Security. PhD thesis, Helsinki University of Technology.
  2. Aura, T. and Nikander, P. (1997). Stateless connections. In Proc. International Conference on Information and Communications Security (ICICS'97), LNCS 1334:87-97. Springer.
  3. Aura, T., Nikander, P., and Leiwo, J. (2000). DOS-resistant authentication with client puzzles. In Proc. Security Protocols Workshop 2000, LNCS 2133:170-181. Springer.
  4. Bernstein, D. (1996). http://cr.yp.to/syncookies.html. 10 June, 2004.
  5. Center, C. C. (1997). Denial of Service Attacks. http://www.cert.org/tech tips/denial of service.html. Last accessed: 10 June 2004.
  6. Harris, B. and Hunt, R. (1999). TCP/IP security threats and attack methods. Computer Communications, 22:885- 897. Elsevier Science.
  7. Hussain, A., Heidemann, J., and Papadopoulos, C. (2003). A framework for classifying denial of service attacks. In Applications, technologies, architectures, and protocols for computer communications, pages 99-110. ACM Press.
  8. ITU-T (2003a). Call signalling protocols and media stream packetization for packet-based multimedia communication systems. Recommendation H.225.0, ITU.
  9. ITU-T (2003b). Control protocol for multimedia communication. Recommendation H.245, ITU.
  10. ITU-T (2003c). Packet-based multimedia communications systems. Recommendation H.323, ITU.
  11. ITU-T (2003d). Security and encryption for H-series (H.323 and other H.245-based) multimedia terminals. Recommendation H.235, ITU.
  12. Leiwo, J., Nikander, P., and Aura, T. (2000). Towards network denial of service resistant protocols. In International Information Security Conference (IFIP/SEC 2000).
  13. Meadows, C. (1999). A formal framework and evaluation method for network denial of service. In PCSFW: Proceedings of The 12th Computer Security Foundations Workshop. IEEE Computer Society Press.
  14. Millen, J. K. (1992). A resource allocation model for denial of service. In Proceedings of the IEEE Symposium on Security and Privacy, pages 137-147.
  15. Needham, R. M. (1994). Denial of service: an example. Communications of the ACM, 37(11):42-46.
  16. Schuba, C. L., Krsul, I. V., Kuhn, M. G., Spafford, E. H., Sundaram, A., and Zamboni, D. (1997). Analysis of a denial of service attack on TCP. In Proceedings IEEE Symposium on Security and Privacy, pages 208-223. IEEE Computer Society Press.
Download


Paper Citation


in Harvard Style

Reid J., Clark A., M González Nieto J., Smith J. and Viswanathan K. (2004). DENIAL OF SERVICE ISSUES IN VOICE OVER IP NETWORKS . In Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004) ISBN 972-8865-15-5, pages 230-237. DOI: 10.5220/0001403302300237


in Bibtex Style

@conference{svoipnet04,
author={Jason Reid and Andrew Clark and Juan M González Nieto and Jason Smith and Kapali Viswanathan},
title={DENIAL OF SERVICE ISSUES IN VOICE OVER IP NETWORKS},
booktitle={Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004)},
year={2004},
pages={230-237},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001403302300237},
isbn={972-8865-15-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 1: SVoIPNet, (ICETE 2004)
TI - DENIAL OF SERVICE ISSUES IN VOICE OVER IP NETWORKS
SN - 972-8865-15-5
AU - Reid J.
AU - Clark A.
AU - M González Nieto J.
AU - Smith J.
AU - Viswanathan K.
PY - 2004
SP - 230
EP - 237
DO - 10.5220/0001403302300237