SPACEDIVE: A Distributed Intrusion Detection System for Voice-over-IP Environments

Get BibTex-formatted data

Download

PDF

Author

Vinita Apte, Yu-Sung Wu, Saurabh Bagchi, Sachin Garg, Navjot Singh

Tech report number

CERIAS TR 2006-17

Entry type

article

Abstract

Voice over IP (VoIP) systems are gaining in popularity as the technology for transmitting voice traffic over IP networks. As the popularity of VoIP systems increases, they are being subjected to different kinds of intrusions some of which are specific to such systems and some which follow a general pattern of IP attacks. VoIP systems pose several new challenges to Intrusion Detection System (IDS) designers. First, these systems employ multiple protocols for call management (e.g., SIP) and data delivery (e.g., RTP). Second, the systems are distributed in nature and employ distributed clients, servers and proxies. Third, the attacks to such systems span a large class, from denial of service to billing fraud attacks. Finally, the systems are heterogeneous, have soft real time requirements, and are typically under several different administrative domains. In this paper, we propose the design of an intrusion detection system targeted to VoIP systems, called SPACEDIVE. SPACEDIVE is structured to detect different classes of intrusions, including, masquerading, denial of service, and media stream-based attacks. It can be installed at multiple points

Download

PDF

Key alpha

Apte

Affiliation

Purdue University, Avaya Labs

Publication Date

2001-01-01

Subject

Security of VoIP Networks

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Article{ Apte,
	title = "SPACEDIVE: A Distributed Intrusion Detection System for Voice-over-IP Environments",
	author = "Vinita Apte, Yu-Sung Wu, Saurabh Bagchi, Sachin Garg, Navjot Singh",
	abstract = "Voice over IP (VoIP) systems are gaining in popularity as the technology for transmitting voice traffic over IP networks. As
the popularity of VoIP systems increases, they are being subjected to different kinds of intrusions some of which are specific
to such systems and some which follow a general pattern of IP attacks. VoIP systems pose several new challenges to
Intrusion Detection System (IDS) designers. First, these systems employ multiple protocols for call management (e.g., SIP)
and data delivery (e.g., RTP). Second, the systems are distributed in nature and employ distributed clients, servers and
proxies. Third, the attacks to such systems span a large class, from denial of service to billing fraud attacks. Finally, the
systems are heterogeneous, have soft real time requirements, and are typically under several different administrative domains.
In this paper, we propose the design of an intrusion detection system targeted to VoIP systems, called SPACEDIVE.
SPACEDIVE is structured to detect different classes of intrusions, including, masquerading, denial of service, and media
stream-based attacks. It can be installed at multiple points ",
	affiliation = "Purdue University, Avaya Labs",
	subject = "Security of VoIP Networks",
}