TEL500-Voice Communications SIP-based VoIP Traffic Behavior Profiling and Its Application Devesh...

Post on 03-Jan-2016

215 views 0 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

transcript

TEL500-Voice Communications

SIP-based VoIP Traffic Behavior Profiling and Its Application

Devesh Mendiratta & Sameer DeshmukhMS-Telecommunication

State University of New York Institute of Technology

Introduction to Paper

SIP based VOIP Traffic Behavior at levels like SIP server entity SIP server host Individual user levels

Security of VOIP – Attacks & vulnerability Paper claims : Little research As of now

1st attempt to understand SIP traffic behavior

for Attack Detection

Outline

SIP Overview Identifying SIP servers Profiling SIP sever & User Behaviors Characteristics of Behavior Applications Conclusion

SIP Based VoIP Service SIP servers and clients

SIP REGISTER

Call Proxy

Request-Response

Method field

FROM and TO fields

Identifying IP Address

Observation of SIP servers Large No. of SIP messages Large No. of distinct FROM and TO fields

Profiling SIP Server Behaviors

Multilevel Profiling

Three Levels: Server host level: maintain only aggregate features and metrics by examining only the message types into and out of a SIP server Server entity level: separate the role of a SIP server into register and call proxy User level: attribute the SIP messages to individual users and maintain statistic and features to characterized individual user behaviors

Server Host Level Characterization

Count the number of request and response messages received and sent by each SIP server over a given period of time T

Count the number of unique users seen in the FROM and TO fields of SIP request messages, and compute an aggregate user activity diversity from the distribution of data over T

Overall Server Level Characteristics

No. of message types User activities diversity(Metric)

Registrar Behavior Characteristics

Period of registration updates Requests inter-arrival times

Call Proxy/User Call Behavior Characteristics

Calls made vs. received Call types

Applications

Conclusion

VOIP traffic consists of stable characteristics Well captured by statistics & features of profile we

use Profiling – to help identify the attack detection

?Thank You

Any Questions Undergrad ???

Top related

Devesh Tiwari Pav Inspec Cond Surv Dat Coll_2
Documents
Devesh Final 2
Documents
Devesh Singh 2K8 EC 634
Documents
Employment and Skills: The Indian Case Devesh Kapur September 27, 2011.
Documents
Presented by Edmund Davis Mary Ann Horton Narender Mendiratta Shamsuddin Pattharwala
Documents
Synopsis DEVESH
Documents
Micro Data and Macro Technology - Devesh R. Raval · Micro Data and Macro Technology Ezra Ober eld Princeton University & NBER ezraoberfield@gmail.com Devesh Raval ... representing
Documents
ICAR-IFPRI- Instrumental Variable Regression- Devesh Roy, IFPRI
Education
Devesh Projects
Documents
Indias Gold Fetish and Switzerlands Data Secrecy Devesh Kapur, Marla Spivack, Arvind Subramanian, and Milan Vaishnav* November 5, 2013 *Devesh Kapur is.
Documents
TEL500-Voice Communications IVR using Speech Recognition in Asterisk Devesh Mendiratta Sameer Deshmukh & Srinivas Madlapelli.
Documents
Devesh KapurDEVELOPMENT MANTRA? Devesh Kapur 2 G-24 Discussion Paper Series, No. 29 curity schemes or to private insurance or pension funds it overstates the resources transferred
Documents
Annual Report...1 9th ANNUAL REPORT Financial Year 2019-20 Board Of Directors : Mr. Devesh Singh Sahney - Chairman and Managing Director Mrs. Aarti Devesh Sahney - Non Executive ...
Documents
CS Devesh A. Pathak Partner Devesh Vimal & Co., Practising Company Secretaries maildeveshpathak@rediffmail.com.
Documents
Dr Devesh Singh- PPT
Business
Dr. Devesh Chaturvedi Wta ti tcbl Joint Secretary AtaTur ...cgatnew.gov.in/writereaddata/Delhi/docs/judicial member 9 yrs.pdf · Dr. Devesh Chaturvedi Joint Secretary Phone : 2309
Documents
Qui est Quiz Devesh Mohnot
Education
Speech by Devesh Rajadhyax on Technology Vision 2035
Technology
WELCOME. Shri Shailendar Mendiratta, IAS Election Observer Puducherry Contact No. : 094884 83883.
Documents
Rethinking public institutions in India, edited by Devesh ...
Documents

Copyright © 2018 DOCUMENTS