Artemisa: an Open-Source Honeypot Back-end to Support Security in VoIP Domains - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2011

Artemisa: an Open-Source Honeypot Back-end to Support Security in VoIP Domains

Résumé

Voice over IP (VoIP) and the Session Initiation Protocol (SIP) are establishing themselves as strong players in the field of multimedia communications over IP, leveraged by low cost services and easy management. Nevertheless, the security aspects are not yet fully mastered. In this paper we present an open-source implementation of a VoIP SIP-specific honeypot named Artemisa. The honeypot is designed to connect to a VoIP enterprise domain as a back-end user-agent in order to detect malicious activity at an early stage. Moreover, the honeypot can play a role in the real time adjustment of the security policies of the enterprise domain where it is deployed. We aim, by this contribution, to encourage the deployment of such honeypots at large scale and the collection of attack traces. We test the capacity of the honeypot to handle a series of known SIP attacks and present results from diverse scenarios.
Fichier principal
Vignette du fichier
TS_14c_78368.pdf (709.06 Ko) Télécharger le fichier
Origine : Fichiers éditeurs autorisés sur une archive ouverte
Loading...

Dates et versions

inria-00594857 , version 1 (05-06-2011)

Identifiants

  • HAL Id : inria-00594857 , version 1

Citer

Rodrigo Do Carmo, Mohamed Nassar, Olivier Festor. Artemisa: an Open-Source Honeypot Back-end to Support Security in VoIP Domains. IFIP/IEEE International Symposium on Integrated Network Management - IM 2011, May 2011, Dublin, Ireland. ⟨inria-00594857⟩
220 Consultations
1006 Téléchargements

Partager

Gmail Facebook X LinkedIn More