A survey on registration hijacking attack consequences and protection for session initiation protocol (SIP)

Naeem, Makhdoom Muhammad; Hussain, Intesab; Missen, Malik Muhammad Saad

doi:10.1016/j.comnet.2020.107250

Cited by 15 publications

(9 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To create and manage multimedia sessions, signaling protocols are implemented. There are currently two standard protocols on the market that are commonly used, SIP and H.323 [19]. Our research went through the behavior of two VoIP protocols modulated, and the performance will be evaluated through building scenarios on a QualNet simulator, using the Random Waypoint Mobility Model (RWP) the random nodes will choose the direction and its constant speed in each movement randomly and then after shortstop period it will choose another destination and another constant speed, therefore, it considers close to reality and better than choose various steady scenarios [20].…”

Section: Methodsmentioning

confidence: 99%

A Performance Evaluation of Voice Over IP Protocols (SIP and H.323) in Wireless Network

Noori

Sahbudin

Abood

et al. 2021

Proceedings of International Conference on Emerging Technologies and Intelligent Systems

View full text Add to dashboard Cite

Many types of Voice over Internet Protocol (VoIP) are used to provide audio or multimedia sessions over Internet Protocol (IP) networks, multimedia communications became very easy by using applications that provide Internet Protocol VoIP like Skype, Viber, WhatsApp, etc. And network simulation has frequently been used to determine the performance feasibility of any network protocols and the model reliability before practical implementation. Several kinds of studies were carried out on voice efficiency over different types of networks environment, among these experiments and researches, finding a better signaling protocol for communication by evaluating and analyzing the performance of the protocols, such as the most commonly used Session Initiation Protocol (SIP) and (H.323) signaling protocols. This paper provides a comparative study of the performance of the two aforementioned protocols that are most widely used over the IEEE 802.11a wireless network by using the QualNet simulator. The study was performed by analyzing the data packets for both initiator and receiver for both protocols, to evaluate the performance based on five metrics: Session total Bytes, Establishment time, Sent, total Bytes received of Real-time transport protocol (RTP), Average End to End Delay and Overall Throughput. The outcomes demonstrated SIP protocol ascendingly rise and superior over H.323 protocol as a permanently started from the Zero-point around 5.4 (Mbps) of the time until the end of the experiment close to 6.2 with a 0.05-s delay while the rival was always below these values of throughput. Hence its superior provides preferability in multimedia sessions. studying and evaluate the performance of two IPs with a high capability

show abstract

Section: Methodsmentioning

confidence: 99%

A Performance Evaluation of Voice Over IP Protocols (SIP and H.323) in Wireless Network

Noori

Sahbudin

Abood

et al. 2021

Proceedings of International Conference on Emerging Technologies and Intelligent Systems

View full text Add to dashboard Cite

show abstract

“…As a result, most organisations find PBX security to be a difficult task. PBX is still vulnerable to brute-force attacks on SIP accounts with weak passwords [4]. In addition, hackers attempt to gain unauthorised use of telephony system 978-1-6654-0722-9/21/$31.00 ©2021 IEEE to hijack calls, steal users' information, or perform denial of service attacks to prevent the user from accessing services.…”

Section: A Problem Statementmentioning

confidence: 99%

Blockchain-Based Authentication and Registration Mechanism for SIP-Based VoIP Systems

Abubakar

Jaroucheh

Dubai

et al. 2021

2021 5th Cyber Security in Networking Conference (CSNet)

View full text Add to dashboard Cite

The Session Initiation Protocol (SIP) is the principal signalling protocol in Voice over IP (VoIP) systems, responsible for initialising, terminating, and maintaining sessions amongst call parties. However, the problem with the SIP protocol is that it was not designed to be secure by nature as the HTTP digest authentication used in SIP is insecure, making it vulnerable to a variety of attacks. The current solutions rely on several standardised encryption protocols, such as TLS and IPsec, to protect SIP registration messages. However, the current centralised solutions do not scale well and cause algorithm overload when encoding and decoding SIP messages. In trying to rectify this issue, we propose in this paper a blockchain-based lightweight authentication mechanism, which involves a decentralised identity model to authenticate the SIP client to the SIP server. Our mechanism uses a smart contract on the Ethereum blockchain to ensure trust, accountability and preserves user privacy. We provided a proofof-concept implementation to demonstrate our work. Further analysis of this approach's usability, mainly CPU and memory usage, was conducted comparing to IPsec and TLS. Then we discussed our system's security and presented a security analysis. Our analysis proves that our approach satisfies the SIP protocol security requirements.Keywords-Voice over IP (VoIP), SIP protocol, Blockchain technology.

show abstract

“…Finally, the shortcomings of existing solutions and future research directions were outlined. Naeem et al [12] provided a thorough analysis of the SIP's registration attack. They categorized the surveyed solutions based on their approaches, targets, and types.…”

Section: Related Workmentioning

confidence: 99%

Survey of Countering DoS/DDoS Attacks on SIP Based VoIP Networks

et al. 2020

View full text Add to dashboard Cite

Voice over IP (VoIP) services hold promise because of their offered features and low cost. Most VoIP networks depend on the Session Initiation Protocol (SIP) to handle signaling functions. The SIP is a text-based protocol that is vulnerable to many attacks. Denial of Service (DoS) and distributed denial of service (DDoS) attacks are the most harmful types of attacks, because they drain VoIP resources and render SIP service unavailable to legitimate users. In this paper, we present recently introduced approaches to detect DoS and DDoS attacks, and classify them based on various factors. We then analyze these approaches according to various characteristics; furthermore, we investigate the main strengths and weaknesses of these approaches. Finally, we provide some remarks for enhancing the surveyed approaches and highlight directions for future research to build effective detection solutions.

show abstract

A survey on registration hijacking attack consequences and protection for session initiation protocol (SIP)

Cited by 15 publications

References 23 publications

A Performance Evaluation of Voice Over IP Protocols (SIP and H.323) in Wireless Network

A Performance Evaluation of Voice Over IP Protocols (SIP and H.323) in Wireless Network

Blockchain-Based Authentication and Registration Mechanism for SIP-Based VoIP Systems

Survey of Countering DoS/DDoS Attacks on SIP Based VoIP Networks

Contact Info

Product

Resources

About