• Title, Summary, Keyword: SIP

Search Result 681, Processing Time 0.027 seconds

Stateful SIP Protocol with Enhanced Security for Proactive Response on SIP Attack (SIP 공격 대응을 위한 보안성이 강화된 Stateful SIP 프로토콜)

  • Yun, Ha-Na;Lee, Hyung-Woo
    • The Journal of the Korea Contents Association
    • /
    • v.10 no.1
    • /
    • pp.46-58
    • /
    • 2010
  • The user valence of VoIP services with SIP protocol is increasing rapidly because of cheap communication cost and its conveniency. But attacker can easily modify the packet contents of SIP protocol as SIP header is transmitted by using UDP methods in text form. The reason is that SIP protocols does not provide an authentication function on the transmission session. Therefore, existing SIP protocol is very weak on SIP Packet Flooding attack etc. In order to solve like this kinds of SIP vulnerabilities, we used SIP status codes under the monitoring module for detecting SIP Flooding attacks and additionally proposed an advanced protocol where the authentication and security function is strengthened about SIP packet. We managed SIP session spontaneously in order to strengthen security with SIP authentication function and to solve the vulnerability of SIP protocol. The proposed mechanism can securely send SIP packet to solves the security vulnerability with minimum traffic transmission. Also service delay in SIP proxy servers will be minimized to solve the overload problem on SIP proxy server.

Abnormal SIP Packet Detection Mechanism using Co-occurrence Information (공기 정보를 이용한 비정상 SIP 패킷 공격탐지 기법)

  • Kim, Deuk-Young;Lee, Hyung-Woo
    • Journal of the Korea Academia-Industrial cooperation Society
    • /
    • v.11 no.1
    • /
    • pp.130-140
    • /
    • 2010
  • SIP (Session Initiation Protocol) is a signaling protocol to provide IP-based VoIP (Voice over IP) service. However, many security vulnerabilities exist as the SIP protocol utilizes the existing IP based network. The SIP Malformed message attacks may cause malfunction on VoIP services by changing the transmitted SIP header information. Additionally, there are several threats such that an attacker can extract personal information on SIP client system by inserting malicious code into SIP header. Therefore, the alternative measures should be required. In this study, we analyzed the existing research on the SIP anomaly message detection mechanism against SIP attack. And then, we proposed a Co-occurrence based SIP packet analysis mechanism, which has been used on language processing techniques. We proposed a association rule generation and an attack detection technique by using the actual SIP session state. Experimental results showed that the average detection rate was 87% on SIP attacks in case of using the proposed technique.

Design of VoIP System over MANET (MANET 기반 VoIP 시스템 설계)

  • Li, Ming;Kim, Young-Dong
    • Proceedings of the Korean Institute of Information and Commucation Sciences Conference
    • /
    • /
    • pp.719-721
    • /
    • 2010
  • VoIP over MANET is an important IP phone technique used in mobile ad-hoc networks. VoIP system over wired networks is based on SIP, SIP UA and SIP server which process the users invite, register and so on. Since no base stations in MANETs to perform as SIP servers, VoIP service on MANETs is being done with tiny SIP server which is done on each node. In this paper, VoIP system is implemented with pseudo SIP server which can process 1 call based on modification of standard SIP server which is used on communication environment such as wired networks. The propesed system is performed well and compatible with SIP and SIP UA.

  • PDF

A Study on Guarantee of Security for Closed Multiparty Conference using SIP Extension (SIP 확장을 통한 비공개형 다자간 컨퍼런스의 보안성 확보에 관한 연구)

  • 심용범;나인호
    • Proceedings of the Korean Institute of Information and Commucation Sciences Conference
    • /
    • /
    • pp.176-179
    • /
    • 2003
  • The use of Multiparty Conference service based on SIP for VoIP provides is gradually magnified, and the work for continuous development and standardization on SIP is in the process of advancing. But, currently it is impossible for SIP to support identity discovery and distribution of each participant for multiparty conference. In this paper, we propose a SIP extension for guaranteeing security on the multiparty conference using SIP by adding new method and reconstructing header informations. With this, it is also possible to identify discovery and to distribute each participant using SIP extension when a call is established for closed multiparty conference.

  • PDF

A SIP Extension Method for Closed Multiparty Conference with Guarantee of Security (비공개형 다자간 컨퍼런스의 보안성 확보를 위한 SIP 확장 기법)

  • 김현태;김형진;나인호
    • Journal of the Korea Institute of Information and Communication Engineering
    • /
    • v.8 no.2
    • /
    • pp.331-337
    • /
    • 2004
  • Multiparty conference service based on SIP supported by VoIP network is gradually increased in use and the continuous development and standardization works on SIP are in the process of advancing. But SIP used in currently does not support identity discovery and distribution of each participant for multipath conference. In this paper, a SIP extension method for guaranteeing security from the multiparty conference based on SIP is proposed. We design a new SIP header and method for discovering and distributing a participant's identity in closed multiparty conference when the call initiation is established. And it can ensure that each participant is notified before a new participant joins.

An Implementation of Embedded SIP User Agent under Wireless LAN Area (Wireless LAN 환경에서 임베디드 SIP User Agent 구현)

  • Park Seung-Hwan;Lee Jae-Heung
    • Journal of the Korea Institute of Information and Communication Engineering
    • /
    • v.9 no.3
    • /
    • pp.493-497
    • /
    • 2005
  • This paper is about the research of the User Agent implementation under wireless embedded environment, using SIP which is one of protocol components construct the VoIP system. The User Agent is made of the User Agent configuration block, the device thread block to control devices and the SIP stack block to process SIP messages. The device thread consists of the RTP thread and the sound lard device processing block. Futhermore, the SIP stack consist of the worker thread to process proxy events, the SIP transceiver and SIP thread to transfer and receive SIP messages. The H/W platform is a board included the Intel's XScale PXA255 processor, flash memory, SDRAM, Audio CODEC module and wireless LAN threough PCMCIA socket, furthermore a microphone and headphone is used by the audio 1/0. The system has embedded linux kernel 2.4.19. For embedded environment, the function of User Agent and SIP method is diminished. Finally, the resource of system could be reduced about $12.9\%$, compared to overall system resource, by minimizing peripherals control and excepting TCP.

Design and Implement of SIP-based User Agent (SIP 기반 사용자 에이전트 설계 및 구현)

  • 한재천;강신각
    • Proceedings of the Korean Institute of Information and Commucation Sciences Conference
    • /
    • /
    • pp.682-685
    • /
    • 2003
  • SIP(Session Initiation Protocol) 프로토콜은 구조가 간단하고 다양한 애플리케이션을 개발할 수 있는 등의 장점을 가지고 있기 때문에 차세대 네트워크에서 호 설정을 위한 사실상의 표준으로 자리 잡아가고 있다. SIP는 계층적 구조를 갖는 프로토콜로서, SIP의 일부 계층은 대부분의 SIP 응용 애플리케이션에서 공통적으로 사용될 수 있다. 본 논문에서는 SIP 애플리케이션 개발에 효과적으로 사용될 수 있는 SIP 공통모듈에 대한 간략한 설명과 이를 이용한 사용자 에이전트의 설계 및 구현에 대하여 설명한다.

  • PDF

The Implementation of Extension SIP system for efficient call-control (효율적인 call-control을 위한 Extension SIP 시스템 구현)

  • 이정훈;양형규;이병호
    • Proceedings of the Korean Information Science Society Conference
    • /
    • /
    • pp.331-333
    • /
    • 2004
  • 본 논문에서는 SIP(Session initiation Protocol) 기반의 VoIP(Voice over Internet Protocol) 시스템에 효율적인 call-control을 위해 필요한 헤더와 파라미터를 추가한 Extension SIP를 제안하였다. 또한 이 제시된 Extension SIP에 따르는 SIP Proxy Server와 User Agent(User Agent Client, User Agent Server)를 리눅스 시스템에서 C언어를 통해 구현하였고, 이 구현된 Extension SIP 시스템을 통해 기존의 SIP 시스템과 cail-control을 위한 packet traffic을 비교.분석 함으로써 제안한 Extension SIP의 효율성 을 증명하였다.

  • PDF

On Generalizations of Extending Modules

  • Karabacak, Fatih
    • Kyungpook Mathematical Journal
    • /
    • v.49 no.3
    • /
    • pp.557-562
    • /
    • 2009
  • A module M is said to be SIP-extending if the intersection of every pair of direct summands is essential in a direct summand of M. SIP-extending modules are a proper generalization of both SIP-modules and extending modules. Every direct summand of an SIP-module is an SIP-module just as a direct summand of an extending module is extending. While it is known that a direct sum of SIP-extending modules is not necessarily SIP-extending, the question about direct summands of an SIP-extending module to be SIP-extending remains open. In this study, we show that a direct summand of an SIP-extending module inherits this property under some conditions. Some related results are included about $C_{11}$ and SIP-modules.

Proposed Caching Method for SIP Proxy (SIP Proxy를 위한 캐슁 기법 제안)

  • Park, Kyung-soo;Park, Myong-soon
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • /
    • pp.1481-1484
    • /
    • 2004
  • SIP Proxy 서버는 SIP UA가 전송하는 대량의 Call 메시지를 처리해야 한다. SIP Proxy 서버가 SIP UA에 의해 전송된 Call Message를 처리 하기 위해서는 Registrar 서버에 등록 되어 있는 UA들의 정보를 빠르게 검색하여 처리해야 한다. 본 논문에서는 SIP Proxy 서버가 Registrar 서버에 등록 되어 있는 SIP UA에 대한 접속 정보를 빠르게 처리하기 위해 SIP Proxy 서버와 Registrar 서버에 UA 정보용 cache를 도입할 것을 제안 하며, SIP Proxy 서버와 SIP UA의 상호 동작 패턴을 적용한 SIP UA 정보 캐슁 기법에 대해서 제안 한다.

  • PDF