IP Multimedia Subsystem - An Intrusion Detection System

The IP Multimedia Subsystem (IMS) amalgamates the core of telecommunication and Internet protocol (IP) network access to ease network traffic of the next-generation network (NGN). Since the coalescence of the NGN, malicious attacks can also disrupt multimedia services. This can lead to financial loss for telecom operators and loss of connection for users. This paper introduces an attack detection schema (ADS) that provides security from session initiation protocol (SIP) flooding attacks. The proposed schema is configured with the OpenOpenIMSCore to validate the accuracy of SIP session traffic. Similarly, the schema is imbedded with the OpenIMS client, which helps to detect and expose such attacks on the IMS client display. Since even a small flooding attack could clog the OpenOpenIMSCore, detection accuracy should be relatively higher to prevent OpenIMSCore from going down. The proposed schema includes a key authentication schema for proficiently analyzing SIP packets. The proposed authentication is placed between the transport and application layers. A network traffic tool, Ntop, is configured with the OpenOpenIMSCore to analyze SIP traffic, Real Time Transport Protocol (RTP) traffic and the throughput rate. Overall, the proposed schema of ADS improves reasonably well after it cuts off the attacker.