Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design
Summary :
As a new generation voice service, Voice over LTE (VoLTE) has attracted worldwide attentions in both the academia and industry. Different from the traditional voice call based on circuit-switched (CS), VoLTE evolves into the packet-switched (PS) field, which has long been open to the public. Though designed rigorously, similar to VoIP services, VoLTE also suffers from SIP (Session Initiation Protocal) flooding attacks. Due to the high performance requirement, the SIP flooding attacks in VoLTE is more difficult to defend than that in traditional VoIP service. In this paper, enlightened by Counting Bloom Filter (CBF), we design a versatile CBF-like structure, PFilter, to detect the flooding anomalies. Compared with previous relevant works, our scheme gains advantages in many aspects including detection of low-rate flooding attack and stealthy flooding attack. Moreover, not only can our scheme detect the attacks with high accuracy, but also find out the attackers to ensure normal operation of VoLTE by eliminating their negative effects. Extensive experiments are performed to well evaluate the performance of the proposed scheme.
- Publication
- IEICE TRANSACTIONS on Information Vol.E100-D No.10 pp.2287-2294
- Publication Date
- 2017/10/01
- Publicized
- 2017/07/21
- Online ISSN
- 1745-1361
- DOI
- 10.1587/transinf.2016INP0023
- Type of Manuscript
- Special Section PAPER (Special Section on Security, Privacy and Anonymity in Computation, Communication and Storage Systems)
- Category
- Operating system and network Security
Authors
Na RUAN
Shanghai Jiao Tong University
Mingli WU
Shanghai Jiao Tong University
Shiheng MA
Shanghai Jiao Tong University
Haojin ZHU
Shanghai Jiao Tong University
Weijia JIA
Shanghai Jiao Tong University
Songyang WU
The Third Research Institute of Ministry of Public Security
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Na RUAN, Mingli WU, Shiheng MA, Haojin ZHU, Weijia JIA, Songyang WU, "Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design" in IEICE TRANSACTIONS on Information,
vol. E100-D, no. 10, pp. 2287-2294, October 2017, doi: 10.1587/transinf.2016INP0023.
Abstract: As a new generation voice service, Voice over LTE (VoLTE) has attracted worldwide attentions in both the academia and industry. Different from the traditional voice call based on circuit-switched (CS), VoLTE evolves into the packet-switched (PS) field, which has long been open to the public. Though designed rigorously, similar to VoIP services, VoLTE also suffers from SIP (Session Initiation Protocal) flooding attacks. Due to the high performance requirement, the SIP flooding attacks in VoLTE is more difficult to defend than that in traditional VoIP service. In this paper, enlightened by Counting Bloom Filter (CBF), we design a versatile CBF-like structure, PFilter, to detect the flooding anomalies. Compared with previous relevant works, our scheme gains advantages in many aspects including detection of low-rate flooding attack and stealthy flooding attack. Moreover, not only can our scheme detect the attacks with high accuracy, but also find out the attackers to ensure normal operation of VoLTE by eliminating their negative effects. Extensive experiments are performed to well evaluate the performance of the proposed scheme.
URL: https://globals.ieice.org/en_transactions/information/10.1587/transinf.2016INP0023/_p
Copy
@ARTICLE{e100-d_10_2287,
author={Na RUAN, Mingli WU, Shiheng MA, Haojin ZHU, Weijia JIA, Songyang WU, },
journal={IEICE TRANSACTIONS on Information},
title={Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design},
year={2017},
volume={E100-D},
number={10},
pages={2287-2294},
abstract={As a new generation voice service, Voice over LTE (VoLTE) has attracted worldwide attentions in both the academia and industry. Different from the traditional voice call based on circuit-switched (CS), VoLTE evolves into the packet-switched (PS) field, which has long been open to the public. Though designed rigorously, similar to VoIP services, VoLTE also suffers from SIP (Session Initiation Protocal) flooding attacks. Due to the high performance requirement, the SIP flooding attacks in VoLTE is more difficult to defend than that in traditional VoIP service. In this paper, enlightened by Counting Bloom Filter (CBF), we design a versatile CBF-like structure, PFilter, to detect the flooding anomalies. Compared with previous relevant works, our scheme gains advantages in many aspects including detection of low-rate flooding attack and stealthy flooding attack. Moreover, not only can our scheme detect the attacks with high accuracy, but also find out the attackers to ensure normal operation of VoLTE by eliminating their negative effects. Extensive experiments are performed to well evaluate the performance of the proposed scheme.},
keywords={},
doi={10.1587/transinf.2016INP0023},
ISSN={1745-1361},
month={October},}
Copy
TY - JOUR
TI - Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design
T2 - IEICE TRANSACTIONS on Information
SP - 2287
EP - 2294
AU - Na RUAN
AU - Mingli WU
AU - Shiheng MA
AU - Haojin ZHU
AU - Weijia JIA
AU - Songyang WU
PY - 2017
DO - 10.1587/transinf.2016INP0023
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E100-D
IS - 10
JA - IEICE TRANSACTIONS on Information
Y1 - October 2017
AB - As a new generation voice service, Voice over LTE (VoLTE) has attracted worldwide attentions in both the academia and industry. Different from the traditional voice call based on circuit-switched (CS), VoLTE evolves into the packet-switched (PS) field, which has long been open to the public. Though designed rigorously, similar to VoIP services, VoLTE also suffers from SIP (Session Initiation Protocal) flooding attacks. Due to the high performance requirement, the SIP flooding attacks in VoLTE is more difficult to defend than that in traditional VoIP service. In this paper, enlightened by Counting Bloom Filter (CBF), we design a versatile CBF-like structure, PFilter, to detect the flooding anomalies. Compared with previous relevant works, our scheme gains advantages in many aspects including detection of low-rate flooding attack and stealthy flooding attack. Moreover, not only can our scheme detect the attacks with high accuracy, but also find out the attackers to ensure normal operation of VoLTE by eliminating their negative effects. Extensive experiments are performed to well evaluate the performance of the proposed scheme.
ER -
FlyerIEICE has prepared a flyer regarding multilingual services. Please use the one in your native language.
English
