A Hellinger Distance Based Algorithm To Detect Distributed Denial Of Service Attacks On Voice Over Internet Protocol Environments

Thumbnail Image
Date
2017-08
Authors
., Narayanan Sambath
Journal Title
Journal ISSN
Volume Title
Publisher
Universiti Sains Malaysia
Abstract
Voice communication over the Internet has experienced rapid growth in homes and businesses with the development of Voice over Internet Protocol (VoIP). The growth in number of VoIP subscribers is due to VoIP flexibility, Quality of Service and being low in cost. This growth has prompted a major shift from the traditional public switched telephone network (PSTN) which is circuit-switched to a packet-switched VoIP. The Session Initiation Protocol (SIP), protocol used in VoIP, is responsible in creating session between a caller and a callee for bidirectional communication using SIP messages. The VoIP, as with other services on the Internet, also suffers from various security issues and vulnerabilities, arising from new protocols and the existing infrastructure of traditional data network. Distributed Denial of Service (DDoS) attack is more severe compared to other attacks. This thesis discusses different types of VoIP attacks along with the existing VoIP DDoS detection and mitigation techniques. The proposed work put forward an algorithm based on Hellinger distance to effectively detect and mitigate DDoS attack on VoIP service without putting additional burden on the SIP server. The proposed algorithm comprises of multiple statistical analysis phases to identify the attacker. The statistical phase helps to extract the features from the incoming packets. Then the data from the feature is processed and checked with dynamic threshold to categorize the attacker packets. The proposed algorithm is able to detect all the attacker packets flooding the SIP server in the early stage itself. Evaluation results of the proposed algorithm indicates that the algorithm has a very high detection accuracy and reduce the computation time for detecting the attacker to 0.2293 seconds.
Description
Keywords
A Hellinger distance based algorithm , detect distributed denial of service attacks
Citation
URI
http://hdl.handle.net/123456789/8636
Collections
Pusat IPv6 Termaju Negara - Tesis