Analyzing anomalies in anonymized SIP traffic

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F68407700%3A21230%2F14%3A00224971" target="_blank" >RIV/68407700:21230/14:00224971 - isvavai.cz</a>

Výsledek na webu

<a href="http://80.ieeexplore.ieee.org.dialog.cvut.cz/xpl/articleDetails.jsp?tp=&arnumber=6857106" target="_blank" >http://80.ieeexplore.ieee.org.dialog.cvut.cz/xpl/articleDetails.jsp?tp=&arnumber=6857106</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1109/IFIPNetworking.2014.6857106" target="_blank" >10.1109/IFIPNetworking.2014.6857106</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Analyzing anomalies in anonymized SIP traffic

Popis výsledku v původním jazyce

The Session Initiation Protocol (SIP) is a signaling protocol widely used nowadays for controlling multimedia communication sessions. Thus, understanding and troubleshooting SIP behavior is of utmost importance to network designers and operators. However, SIP traffic traces are hard to come by due to privacy and confidentiality issues. SIP contains a lot of personal information spread within the various SIP messages - IP addresses, names, usernames and domains, e-mail addresses etc. The known IP-addressanonymization methods are thus insufficient. We present SiAnTo, an extended anonymization technique that substitutes session-participant information with matching, but nondescript, labels. This allows for SIP traces to be publicly shared, while keepinginteresting traffic-session properties intact. We further demonstrate its usefulness by studying the problem of SIP NAT traversal as recorded in the anonymized traces. We analyze properties of the so-called ?registration storm? incident a

Název v anglickém jazyce

Analyzing anomalies in anonymized SIP traffic

Popis výsledku anglicky

The Session Initiation Protocol (SIP) is a signaling protocol widely used nowadays for controlling multimedia communication sessions. Thus, understanding and troubleshooting SIP behavior is of utmost importance to network designers and operators. However, SIP traffic traces are hard to come by due to privacy and confidentiality issues. SIP contains a lot of personal information spread within the various SIP messages - IP addresses, names, usernames and domains, e-mail addresses etc. The known IP-addressanonymization methods are thus insufficient. We present SiAnTo, an extended anonymization technique that substitutes session-participant information with matching, but nondescript, labels. This allows for SIP traces to be publicly shared, while keepinginteresting traffic-session properties intact. We further demonstrate its usefulness by studying the problem of SIP NAT traversal as recorded in the anonymized traces. We analyze properties of the so-called ?registration storm? incident a

Druh

D - Stať ve sborníku

CEP obor

JC - Počítačový hardware a software

OECD FORD obor

—

Projekt

—

Návaznosti

V - Vyzkumna aktivita podporovana z jinych verejnych zdroju

Rok uplatnění

2014

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název statě ve sborníku

2014 IFIP Networking Conference, Proceedings

ISBN

9783901882586

ISSN

—

e-ISSN

—

Počet stran výsledku

9

Strana od-do

1-9

Název nakladatele

IEEE

Místo vydání

Piscataway

Místo konání akce

Trondheim

Datum konání akce

2. 6. 2014

Typ akce podle státní příslušnosti

WRD - Celosvětová akce

Kód UT WoS článku

000343605500029