Cargando…
Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks
Many companies have transformed their telephone systems into Voice over IP (VoIP) systems. Although implementation is simple, VoIP is vulnerable to different types of attacks. The Session Initiation Protocol (SIP) is a widely used protocol for handling VoIP signaling functions. SIP is unprotected ag...
| Autores principales: | , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2020
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7589981/ https://www.ncbi.nlm.nih.gov/pubmed/33080829 http://dx.doi.org/10.3390/s20205875 |
| _version_ | 1783600702858199040 |
|---|---|
| author | Nazih, Waleed Hifny, Yasser Elkilani, Wail S. Dhahri, Habib Abdelkader, Tamer |
| author_facet | Nazih, Waleed Hifny, Yasser Elkilani, Wail S. Dhahri, Habib Abdelkader, Tamer |
| author_sort | Nazih, Waleed |
| collection | PubMed |
| description | Many companies have transformed their telephone systems into Voice over IP (VoIP) systems. Although implementation is simple, VoIP is vulnerable to different types of attacks. The Session Initiation Protocol (SIP) is a widely used protocol for handling VoIP signaling functions. SIP is unprotected against attacks because it is a text-based protocol and lacks defense against the growing security threats. The Distributed Denial of Service (DDoS) attack is a harmful attack, because it drains resources, and prevents legitimate users from using the available services. In this paper, we formulate detection of DDoS attacks as a classification problem and propose an approach using token embedding to enhance extracted features from SIP messages. We discuss a deep learning model based on Recurrent Neural Networks (RNNs) developed to detect DDoS attacks with low and high-rate intensity. For validation, a balanced real traffic dataset was built containing three attack scenarios with different attack durations and intensities. Experiments show that the system has a high detection accuracy and low detection time. The detection accuracy was higher for low-rate attacks than that of traditional machine learning. |
| format | Online Article Text |
| id | pubmed-7589981 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2020 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-75899812020-10-29 Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks Nazih, Waleed Hifny, Yasser Elkilani, Wail S. Dhahri, Habib Abdelkader, Tamer Sensors (Basel) Article Many companies have transformed their telephone systems into Voice over IP (VoIP) systems. Although implementation is simple, VoIP is vulnerable to different types of attacks. The Session Initiation Protocol (SIP) is a widely used protocol for handling VoIP signaling functions. SIP is unprotected against attacks because it is a text-based protocol and lacks defense against the growing security threats. The Distributed Denial of Service (DDoS) attack is a harmful attack, because it drains resources, and prevents legitimate users from using the available services. In this paper, we formulate detection of DDoS attacks as a classification problem and propose an approach using token embedding to enhance extracted features from SIP messages. We discuss a deep learning model based on Recurrent Neural Networks (RNNs) developed to detect DDoS attacks with low and high-rate intensity. For validation, a balanced real traffic dataset was built containing three attack scenarios with different attack durations and intensities. Experiments show that the system has a high detection accuracy and low detection time. The detection accuracy was higher for low-rate attacks than that of traditional machine learning. MDPI 2020-10-17 /pmc/articles/PMC7589981/ /pubmed/33080829 http://dx.doi.org/10.3390/s20205875 Text en © 2020 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Nazih, Waleed Hifny, Yasser Elkilani, Wail S. Dhahri, Habib Abdelkader, Tamer Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title | Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title_full | Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title_fullStr | Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title_full_unstemmed | Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title_short | Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks |
| title_sort | countering ddos attacks in sip based voip networks using recurrent neural networks |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7589981/ https://www.ncbi.nlm.nih.gov/pubmed/33080829 http://dx.doi.org/10.3390/s20205875 |
| work_keys_str_mv | AT nazihwaleed counteringddosattacksinsipbasedvoipnetworksusingrecurrentneuralnetworks AT hifnyyasser counteringddosattacksinsipbasedvoipnetworksusingrecurrentneuralnetworks AT elkilaniwails counteringddosattacksinsipbasedvoipnetworksusingrecurrentneuralnetworks AT dhahrihabib counteringddosattacksinsipbasedvoipnetworksusingrecurrentneuralnetworks AT abdelkadertamer counteringddosattacksinsipbasedvoipnetworksusingrecurrentneuralnetworks |