Analysis of token and ticket based mechanisms for current voIP security issues and enhancement proposal

Patrick Battistello 1, 2 Cyril Delétré 3
2 Lab-STICC_TB_CID_SFIIS
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance (UMR 3192)
Abstract : These last few years, the security of VoIP architectures has become a sensitive issue with many vulnerability announcements. This article first aims to distinguish the threats and the applicable protection mechanisms depending on the underlying VoIP architecture. We then investigate the properties of a specific class of existing call establishment mechanisms based on tokens or tickets. In the last section, an enhancement to these mechanisms is proposed which lifts some of the previously seen limitations, especially the DoS risks, the token storage constraint or the transport impact of large tickets.
Document type :
Conference papers
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-00565730
Contributor : Bibliothèque Télécom Bretagne <>
Submitted on : Monday, February 14, 2011 - 1:12:21 PM
Last modification on : Thursday, October 17, 2019 - 12:36:43 PM

Identifiers

  • HAL Id : hal-00565730, version 1

Citation

Patrick Battistello, Cyril Delétré. Analysis of token and ticket based mechanisms for current voIP security issues and enhancement proposal. CMC 2010 : 11th IFIP TC 6/TC 11 International Conference on Communications and Multimedia Security, May 2010, Linz, Austria. pp.154 - 165. ⟨hal-00565730⟩

Share

Metrics

Record views

524