Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Note: You can take 10% off all Slashdot Deals with coupon code "slashdot10off." ×

Submission + - Machine Learning For Detection of Anomalous SIP

sylverboss writes: SIP DDoS attacks are becoming more widespread than ever (specially the ones originating from China) which can trigger 100's of SIP messages per sec and a large volume of traffic. Snort and IPTABLES are good tools to alert and mitigate such attacks but become limited when new attacks are launched. By the time the attack is stopped, the damage is done. In this paper, Konrad R. (who I've contacted) and others describe a "A Self-Learning System for Detection of Anomalous SIP Messages". Their approach is interesting but unfortunately the software has been developed for Alcatel/Lucent. So, I wonder if the Slashdot community has implemented efficient ways to mitigate "0-day" type of attacks or even better detect anomalies in SIP signaling by just using open source software or very clever iptables rules.
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Machine Learning For Detection of Anomalous SIP

Comments Filter:

Happiness is a hard disk.

Working...