| Presentation | 2007-12-19 Evaluation of a Detection System against Fuzzing Attacks on the SIP Protocol Masaya OZAWA, Eric Y. CHEN, Mitsutaka ITOH, Mitsutoshi HATORI, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | As the number of VoIP users grows rapidly in recent years, the available attack vectors against VoIP systems also increase at an alarming rate. This paper focuses on fuzzing attacks, one of the most well-known attacks against SIP network nodes. A fuzzing attack attempts to exploit vulnerabilities in implementation of the SIP protocol and crash its target by sending malformed SIP messages that cannot be correctly handled by the target. This paper enumerates all possible types of fuzzing messages against the SIP protocol and suggests a full set of rules to detect them. This paper also describes an experiment that evaluates and confirms the effectiveness of the designed detection rules. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | VoIP / SIP / Fuzzing Attacks / Anomaly Detection |
| Paper # | ISEC2007-128 |
| Date of Issue |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 2007/12/12(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Security (ISEC) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Evaluation of a Detection System against Fuzzing Attacks on the SIP Protocol |
| Sub Title (in English) | |
| Keyword(1) | VoIP |
| Keyword(2) | SIP |
| Keyword(3) | Fuzzing Attacks |
| Keyword(4) | Anomaly Detection |
| 1st Author's Name | Masaya OZAWA |
| 1st Author's Affiliation | Chuo University() |
| 2nd Author's Name | Eric Y. CHEN |
| 2nd Author's Affiliation | NTT Information Sharing Platform Laboratories |
| 3rd Author's Name | Mitsutaka ITOH |
| 3rd Author's Affiliation | NTT Information Sharing Platform Laboratories |
| 4th Author's Name | Mitsutoshi HATORI |
| 4th Author's Affiliation | Chuo University |
| Date | 2007-12-19 |
| Paper # | ISEC2007-128 |
| Volume (vol) | vol.107 |
| Number (no) | 397 |
| Page | pp.pp.- |
| #Pages | 7 |
| Date of Issue | |