论文信息 - SIP Malformed Message detection

SIP Malformed Message detection

Detection and prevention of SIP malformed messages has become an important indicator of high availability VoIP systems. This paper describes possible SIP malformed messages attacks and builds a malformed message detection system. It focuses on achieving high detecting accuracy and at the same time low processing overhead. SIP LEX, lexical analyzer for SIP messages, is implemented for parsing incoming SIP messages in the system to identify the malformed messages. Experiments over synthetic traces demonstrate the efficiency of SIP LEX in SIP malformed messages detection. cap. 1 · Introduction

Raihana Ferdous | Raihana Ferdous

[1] Nello Cristianini,et al. An Introduction to Support Vector Machines and Other Kernel-based Learning Methods , 2000 .

[2] Mark Handley,et al. SIP: Session Initiation Protocol , 1999, RFC.

[3] Hu Lin,et al. An Efficient Intrusion Detection and Prevention System against SIP Malformed Messages Attacks , 2010, 2010 International Conference on Computational Aspects of Social Networks.

[4] Dave Crocker,et al. Augmented BNF for Syntax Specifications: ABNF , 1997, RFC.

[5] Michael Collins,et al. New Ranking Algorithms for Parsing and Tagging: Kernels over Discrete Structures, and the Voted Perceptron , 2002, ACL.

[6] Henning Schulzrinne,et al. Session Initiation Protocol (SIP) Torture Test Messages , 2006, RFC.

[7] Alexander J. Smola,et al. Support Vector Method for Function Approximation, Regression Estimation and Signal Processing , 1996, NIPS.

[8] Alessandro Moschitti,et al. Making Tree Kernels Practical for Natural Language Learning , 2006, EACL.

[9] Chih-Jen Lin,et al. LIBSVM: A library for support vector machines , 2011, TIST.

[10] David Haussler,et al. Convolution kernels on discrete structures , 1999 .

[11] Klaus-Robert Müller,et al. A Self-learning System for Detection of Anomalous SIP Messages , 2008, IPTComm.

[12] Costas Lambrinoudakis,et al. A framework for detecting malformed messages in SIP networks , 2005, 2005 14th IEEE Workshop on Local & Metropolitan Area Networks.