Français
4. Conclusion
SecSIP is an environment dedicated to protecting SIP services against attacks exploiting vulnerabilities established in protocol specifications and/or specific component implementations. The development of this environment is motivated by the ever-increasing number of vulnerabilities. These vulnerabilities are exploited to target SIP services, which are now being deployed on a massive scale. The timescales required to correct these vulnerabilities are generally long, and often unknown or infinite. Current firewalls are ill-suited to provide this protection, as they do not deal with the semantics of the SIP protocol and its states. The SecSIP environment relies on a stateful language to identify these vulnerabilities and their attacks. This specification language is used to describe these vulnerabilities, the attacks exploiting them, and the countermeasures to prevent the exploit from occurring...
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Conclusion
Bibliography
Websites
SecSIP project http://secsip.gforge.inria.fr
SIP Abuse http://aws.amazon.com/security/sip-abuse/
VoIPSA http://www.voipsa.org
The Ultimate Scientific and Technical Reference
