Upload File

design and implementation of sip-aware ddos attack detection system by: arif iqbal

  • Home
  • Documents
  • Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal
12
Design and implementation of SIP- aware DDoS attack detection system By: Arif Iqbal

Upload: chrystal-jenkins

Post on 05-Jan-2016

225 views

Category:

Documents


1 download

Report

Tags:

TRANSCRIPT

Page 1: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Design and implementation of SIP-aware DDoS attack detection system

By: Arif Iqbal

Page 2: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Distributed Denial of Service

Page 3: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Types of DDoS Attacks

Physical Layer

Internet Layer

Transport Layer

Data Link Layer

Network Centric Attack

Application Layer

Application Layer Attack

Application Layer

Transport Layer

Internet Layer

Physical Layer

Data Link Layer

Page 4: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Why DDoS Attack

. Very Easy to Launch

. No Special Resources Required

. No special Skills are required

. Target are open on internet -> TO receive all request.

Page 5: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Attack Detection System

. SIP application traffic statistics

. SIP DDoS attack detection threshold Stored. Applying knowledge base rules to each user agent. Monitoring activities of -> User -> Call -> Server

Page 6: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

User behavior Analysis

. REGISTER Message Transmit Period

. Number of INVITE Message

. From/ To/ Call-ID Ratio Analysis

. Top N traffic User Analysis

Page 7: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Call Behavior Analysis

. Call-ID/SSRC Ratio Analysis

. Req/Res Ratio Analysis

. Method per Transmission Rate Analysis. IP/URI Ratio Analysis within REGISTER Message. RTP Seq. No Randomness per SSRC

Page 8: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Server/network Status Analysis

• SIP/RTP Traffic Volume Transition Analysis

• Status code Ration Analysis per server

• QoS Change Analysis

Page 9: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Test Environment

Page 10: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Critique and Criticism

Page 11: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Critique and Criticism

. Transport Layer Security-> UDP flood -> TCP state exhaustion attacks-> SYN floods. IP Layer Security-> Spoofed Internet Protocol(IP) packet floods-> ICMP flood attacks. . Data Link Layer Security-> Fragmentation Attack

Page 12: Design and implementation of SIP-aware DDoS attack detection system By: Arif Iqbal

Thanks

Any Question


DDoS Mitigation Support on CGSE - Cisco...DDoS Mitigation Support on CGSE Distributeddenial-of-service(DDoS)attackstargetnetworkinfrastructuresorcomputerservicesresources

ARİF HEBBAŞLI Arif Hepbasli_afyon 17-1-2014

Ddos analizi

FWU Journal of Social Sciences, Summer 2019, Vol.13, No.1 ...journal.sbbwu.edu.pk/FWU_Journal_Summer 2013_Summer... · Seema Arif, Javed Iqbal, and Usman Khalil University of Management

BANGLADESH UNIVERSITY OF TEXTILES Room no- 401 LEVEL-4 ... · Md. Reajul Islam Asst. Professor Course Md. Shayekh Munir & Md. Arif Iqbal PTT PPC: Production Planning & Control QM:

DDoS Threats Landscape : Countering Large-scale DDoS attacks

GLIMPSES OF IQBAL · Iqbal Academy Pakistan Govt. of Pakistan ... 1 Kulliyat -e Iqbal (Urdu), Iqbal Academy Pakistan, 2006, p.130. 10 Glimpses of Iqbal ... 1 Kulliyat -e Iqbal (Farsi),

VOLUME 3 NUMBER 9 APRIL 2017 - Kolmetz.comkolmetz.com/pdf/ep/engineering_practice_2017_04.pdfFebryan Ramadhan, Iqbal Ferdiansyah, Joni Arif, M.Ilham Pratama, Muhammad Aryzal Nuruzzaman,

Waiting list - uhs.edu.pkuhs.edu.pk/mcat/secondwaitinglist1.pdf68 729 eisha ikram muhammad ikram 87.2 ... 123 2099 timsal arif arif mehmood 86.8818 ... 218 310360 asif iqbal malik

DDoS hybrid protection - rsnog.rs · DDoS protection system –Hybrid solution •Telenor hybrid DDoS protection is based • Local netflow based DDoS protection segment • Cloud

DDoS Attacks 101 - Vistnet DDoS Protection & Mitigation ...€¦ · DDoS Protection Company V DDoS Attacks 101 eserved. 7 In the meantime the quality of DDoS attack software is improving;

Worm DDos Spam - SecurityCN.net · CNCERT/CC CNCERT/CC CNCERTCC_TR_2005-001(Draft) Worm DDos Spam Phishing Spyware Botnet [1] Bot DDos DDos Bot: ±Robo Bot

Result - District Sargodha0001.pdfAl-Faisal Cricket Club ACTIVE CLUBS DCA SARGODHA 2016 President me Kamran Masood Arif ... Buland Iqbal Khan Asim Iqbal Muhammad Iftikhar Muhammad

DDoS 방어 계획 수립하기 8가지 모범 사례 · DDoS 방어 계획 수립하기 8가지 모범 사례 DDoS 공격은 큰 혼란을 초래합니다. DDoS 방어 계획을

Lab diagnosis of ctd By Dr Arif Iqbal MD Dermatology UCMS & GTBH

Imperva Incapsula WAF and DDoS Protection Campaign€¦ · DDoS Protection For SecureSphere Distributed Denial of Service (DDoS) attacks are more devastating than ever; DDoS attacks

Scalable DDoS mitigation · •Scalable DDoS Mitigation –BGP FlowSpec •Cloud DDoS Protection –F5 Silverline. DDoS Overview • Distributed denial-of‐service (DDoS) attacks

Datasheet: DDoS Protection - Grayhats Datasheet DDoS...or OpenBSD vulnerabilities ... Datasheet: DDoS Protection DNS DDoS Protection ... DNS server. This protects your

jurnal muhammad iqbal, Siswondo Word - jurnal_muhammad iqbal, Siswondo

DDoS 방어에 9가지 - Akamai · 2021. 1. 20. · DDoS 방어전문 대신지식을 클라우드개발하는 기반 플랫폼으로 DDoS 방어솔루션을 아웃소싱하고 있습니다

Journal of Management & Technology · 2019. 6. 27. · Muhammad Arif khattak,Nadeem Iqbal, ,Dr. Ansar Ali Rajput,Abdul Qadeer 5. Impact of top management support, knowledge management

Krizhanovsky Ddos

POLITECNICO DI TORINO Repository ISTITUZIONALE · A Contactless Sensor for Human Body Identification using RF Absorption Signatures / Iqbal, Javed; Arif, Arslan; BIN TARIQ, Osama;

IQBAL REVIEW Journal of the Iqbal Academy, Pakistan

DDoS Saldırı Analizi - DDoS Forensics

Sada e Arif - Maulana Abul Wafa Arif Shahjahanpuri

Evolving DDoS Threat and Standards Based Mitigation Techniques Evolving DDoS Thre… · Considerations For Determining Best DDoS Strategy DDoS protection strategy appropriate for

 · Inchar e Zafar Transport Officer Altaf Dy. Director Adnan Yousaf Arif Javed Director Iqbal Shahid Dy. Director Nasir Jamil But D . Director Zafar Transport ... Kalam Van GG-094

Quarterly Report st March 2015 - Arif Habib Limited · Ms. Nida Ahsan Member Audit Committee Rehman Sarfaraz Rahim Iqbal Rafiq Chartered Accountants ... Directors’ Report The Directors

ANNUAL REPORT 2012 - Arif Habib Limitedarifhabibltd.com/downloads/financialresult/FY-JulyJune-1112.pdf · Auditors M/s. Rahman Sarfaraz Rahim Iqbal Rafiq Chartered Accountants Legal

DDOS REPORT | 2019 Global DDoS Threat Landscape · Global DDoS Threat Landscape DDOS REPORT | 2019. 2 2019 oa DDoS Trea acape Repor Contents 01 Highlights 02 Overview 03 Network layer

A Taxonomy of DDoS Attack and DDoS Defense Mechanisms

Journal of Management & Technology - … · Dr. Naveed Akhtar,Dr. Rasheed Ahmed Khan 4. HRD Practices in Banking Sector of Pakistan Muhammad Arif khattak, Nadeem Iqbal, Dr. Ansar

DDoS Protection Protecting Against The DDoS Attacks Since 2007

Iqbal Result 2012-ARCB(C)-004652 Sania Iqbal Muhammad Iqbal Absent Result.pk Muzaffarabad: i