SIP: THREATS AND SECURITY
Abstract: Session Initiation Protocol (SIP) is a widely used application layer control protocol in VoIP systems for multimedia session management. SIP (Session Initiation Protocol) is the new standard for IP-based real time communication, including telephony, presence, instant messaging, voice and video applications. SIP is a protocol for communication between users, end-point to end-point. As SIP is gaining so much popularity, security is. considered as main area of focus. The main aspect of providing security is in preserving the conﬁdentiality of the messages, authentication and preserving the message integrity. The Session Initiation Protocol is considered as a dominant signaling protocol for calls over the Internet. SIP, like other Internet protocols, is vulnerable to known Internet attacks, while at the same time it introduces new security problems in the VoIP system. In this paper we present about the common threats/attacks related to IMS & the Session Initiation Protocol (SIP).
KEYWORDS: SIP,THREATS,SECURITY MECHANISM
On the Internet, popular applications and devices tend to become popular targets for attackers. Networking protocols, web browsers, email clients and other applications are examples of targets that have suffered from this curse.Furthermore, VoIP presents new challenges in that it differs from traditional voice (i.e., circuit-switched telephony) in a number of ways. For example, no single entity controls the development and monitoring of VoIP.Implementers may be empowered to configure these systems as they see fit.This leads to the issue of possible misconfiguration, which is a serious security threat in any application. Other security concerns within VoIP include
potentially poor software development, which could lead to various security problems. While there have been few wide spread attacks unique to VoIP systems, the potential exists. The majority of the public will soon rely on VoIP and...