Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks

Autor: Waleed Nazih, Yasser Hifny, Wail S. Elkilani, Habib Dhahri, Tamer Abdelkader
Jazyk: angličtina
Rok vydání: 2020
Předmět:
Zdroj: Sensors, Vol 20, Iss 20, p 5875 (2020)
Druh dokumentu: article
ISSN: 1424-8220
DOI: 10.3390/s20205875
Popis: Many companies have transformed their telephone systems into Voice over IP (VoIP) systems. Although implementation is simple, VoIP is vulnerable to different types of attacks. The Session Initiation Protocol (SIP) is a widely used protocol for handling VoIP signaling functions. SIP is unprotected against attacks because it is a text-based protocol and lacks defense against the growing security threats. The Distributed Denial of Service (DDoS) attack is a harmful attack, because it drains resources, and prevents legitimate users from using the available services. In this paper, we formulate detection of DDoS attacks as a classification problem and propose an approach using token embedding to enhance extracted features from SIP messages. We discuss a deep learning model based on Recurrent Neural Networks (RNNs) developed to detect DDoS attacks with low and high-rate intensity. For validation, a balanced real traffic dataset was built containing three attack scenarios with different attack durations and intensities. Experiments show that the system has a high detection accuracy and low detection time. The detection accuracy was higher for low-rate attacks than that of traditional machine learning.
Databáze: Directory of Open Access Journals
Nepřihlášeným uživatelům se plný text nezobrazuje