Browse > Article

An Authentication Schemes for Anti-spam in SIP-based VoIP Services  

Jang, Yu-Jung (숭실대학교 정보통신전자공학부 통신망보안 연구실)
Moon, Hyung-Kwon (숭실대학교 정보통신전자공학부 통신망보안 연구실)
Choi, Jae-Duck (숭실대학교 정보통신전자공학부 통신망보안 연구실)
Won, Yoo-Jae (한국정보보호진흥원 응용 기술팀)
Cho, Young-Duk (한국정보보호진흥원 응용 기술팀)
Jung, Sou-Hwan (숭실대학교 정보통신전자공학부 통신망보안 연구실)
Publication Information
The Journal of Korean Institute of Communications and Information Sciences / v.32, no.8B, 2007 , pp. 521-528 More about this Journal
Abstract
This paper proposes a message authentication scheme to resist potential spam threats in SIP-based VoIP services. Our scheme applies the extended HTTP digest authentication mechanism between the inbound proxy and the UAS to verify that a service request is coming through the valid inbound proxy. The proposed scheme is simple and requires minimal modification the current SIP standards, and effective to filter invalid peer-to-peer spam calls. In this paper, an experimental spam attack using modified open source was tested on a commercial VoIP networks to exploit the possibility of spam attacks in real environment.
Keywords
SPIT; VoIP; Spam; SIP; Authentication;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Yacine Rebahi, Dorgham Sisalem and Thomas MageDanz, 'SIP SPAM Detection,' ICDT 2006, pp.68, August 2006
2 Ram Dantu, Prakash Kolan 'Detecting Spam in VoIP Networks,' SRUTI'05, 2005
3 M. Wong, W. Schlitt, 'Sender Policy Framework (SPF) for Authorizing Use of Domains in E-Mail, Version 1,' IETF RFC 4408, April 2006
4 J. Peterson, C. Jennings, 'Enhancements for Authenticated Identity Management in the SIP,' IETF RFC 4474, August 2006
5 J. Franks, P. Hallam-Baker, J. Hostetler, S. Lawrence, P. Leach, A. Luotonen and L. Stewart, 'HTTP Authentication Basic and Digest Access Authentication,' IETF RFC 2617, June 1999
6 J. Rosenberg, C. Jennings and J. Peterson, 'The Session Initiation Protocol (SIP) and Spam,' IETF draft, October 2004
7 J. Fenton, 'Analysis of Threats Motivating DomainKeys Identified Mail (DKIM),' IETF RFC 4686, September 2006
8 J. Rosenberg, H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Sparks, M. Handley, E. Schooler, 'SIP(Session Initiation Protocol),' IETF RFC 3261, June 2002
9 T. Dierks, C. Allen 'The TLS Protocol Version 1.0,' IETF RFC 2246, January 1999