Web-based penetration test system and its impact on SIP server

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F61989100%3A27240%2F10%3A86075218" target="_blank" >RIV/61989100:27240/10:86075218 - isvavai.cz</a>

Výsledek na webu

—

DOI - Digital Object Identifier

—

Jazyk výsledku

angličtina

Název v původním jazyce

Web-based penetration test system and its impact on SIP server

Popis výsledku v původním jazyce

The SIP server, as well as other servers providing services in exposed network, often becomes the aim of attacks. As the SIP server is considered to be the key component of SIP infrastructure, a mesaure of security and robustness is necessary to know, tobe able to face the prospective threats. This paper deals with a system generating penetration tests, that have to check up the SIP server and test its vulnerability. The tests represent a group at once the most used and effective attacks nowadays, theyenable to compose the analysis of security risks and to point out the weaknesses of the tested system. The paper also includes the description of applications that are used for the tests generating. The system is designed as a modular web application, which enables an access without dependancy on operating system and adding next test modules. At the end, the results achieved in practical testing are sumarized and next functions suitable for the future system extension are proposed.

Název v anglickém jazyce

Web-based penetration test system and its impact on SIP server

Popis výsledku anglicky

The SIP server, as well as other servers providing services in exposed network, often becomes the aim of attacks. As the SIP server is considered to be the key component of SIP infrastructure, a mesaure of security and robustness is necessary to know, tobe able to face the prospective threats. This paper deals with a system generating penetration tests, that have to check up the SIP server and test its vulnerability. The tests represent a group at once the most used and effective attacks nowadays, theyenable to compose the analysis of security risks and to point out the weaknesses of the tested system. The paper also includes the description of applications that are used for the tests generating. The system is designed as a modular web application, which enables an access without dependancy on operating system and adding next test modules. At the end, the results achieved in practical testing are sumarized and next functions suitable for the future system extension are proposed.

Druh

D - Stať ve sborníku

CEP obor

JC - Počítačový hardware a software

OECD FORD obor

—

Projekt

—

Návaznosti

R - Projekt Ramcoveho programu EK

Rok uplatnění

2010

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název statě ve sborníku

Research in Telecommunication Technologies - RTT 2010

ISBN

978-80-248-2261-7

ISSN

—

e-ISSN

—

Počet stran výsledku

6

Strana od-do

—

Název nakladatele

Faculty of Electrical Engineering and Computer Science, VŠB-TUO

Místo vydání

Ostrava

Místo konání akce

Velké Losiny, Czech Republic

Datum konání akce

8. 9. 2010

Typ akce podle státní příslušnosti

WRD - Celosvětová akce

Kód UT WoS článku

—