FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : The recent and massive deployment of Voice over IP infrastructures had raised the importance of the VoIP security and more precisely of the underlying signalization protocol SIP. In this paper, we will present a new attack against the authentication mechanism of SIP. This attack allows to perform toll fraud and call hijacking. We will detail the formal specification method that allowed to detect this vulnerability, highlight a simple usage case and propose a mitigation technique.
https://hal.inria.fr/inria-00326077 Contributor : Humberto AbdelnurConnect in order to contact the contributor Submitted on : Wednesday, October 1, 2008 - 3:21:51 PM Last modification on : Friday, January 21, 2022 - 3:08:59 AM Long-term archiving on: : Thursday, June 3, 2010 - 8:40:28 PM