Abusing SIP Authentication

14 years 5 months ago

Download www.avantssar.eu

The recent and massive deployment of Voice over IP infrastructures had raised the importance of the VoIP security and more precisely of the underlying signalisation protocol SIP. In this paper, we will present a new attack against the authentication mechanism of SIP. This attack allows to perform toll fraud and call hijacking. We will detail the formal speciﬁcation method that allowed to detect this vulnerability, highlight a simple usage case and propose a mitigation technique.

Humberto J. Abdelnur, Tigran Avanesov, Michaë

Real-time Traffic

Formal Speciﬁcation Method | IEEEIAS 2008 | Information Technology | Signalisation Protocol Sip | Simple Usage Case |

claim paper

» Formal Modeling of Authentication in SIP Registration

» Towards Public Key Infrastructure less authentication in Session Initiation Protocol

» Contactless palmprint authentication using circular gabor filter and approximated string m...

» SIP Proxies New Reflectors in the Internet

» Revealing the Calling History of SIP VoIP Systems by Timing Attacks

» Evaluation of Security Protocols for the Session Initiation Protocol

» Cryptographically Transparent Session Initiation Protocol SIP Proxies

» Interdomain Authentication and Authorization Mechanisms for Roaming SIP Users

Post Info
More Details (n/a)

Added	31 May 2010
Updated	31 May 2010
Type	Conference
Year	2008
Where	IEEEIAS
Authors	Humberto J. Abdelnur, Tigran Avanesov, Michaël Rusinowitch, Radu State

Comments (0)

Sciweavers

Abusing SIP Authentication

Formal Speciﬁcation Method | IEEEIAS 2008 | Information Technology | Signalisation Protocol Sip | Simple Usage Case |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers