| IP multimedia subsystem proposed by3GPP(The3rd Generation PartnershipProject) is the core subsystem of NGN(Next Generation Network). Based on All-IPnetwork, IMS supports fixed and mobile network access, and provides a universalplatform for multimedia services, which allows telecom operators to provide colorfulmultimedia services to the subscribers. As an important part of core network in3Garchitecture, IMS(IP Multimedia) plays the role of core control network in nextgeneration network, whose security is of great importance. Moreover, the security ofSIP(Session Initiation Protocol), being treated as the core signaling protocol of IMS,has a crucial role in the whole IMS system. However, the SIP-based network attacksagainst IMS have become increasingly prevailing because of the vulnerabilities of SIP,defects in IMS security mechanism and the inherent fragility of the carrying networkfor IMS——IP network. Deep research is made on security threats, testing schemes ofSIP and attack effect evaluation in this thesis. The thesis is arranged as follows.1. The vulnerability of SIP is analyzed, and four types of SIP security threat withcombination of the present research on SIP security is summarized, including floodingattack, signaling attack, SIP parser attack and SQL injection attack, and testingschemes are studied according to each security threat.2. The attack effect evaluation model is proposed for each attack testing scheme,in which the index system for the effect evaluation is involved. And every indexweight is computed by applying the Analytic Network Process and the evaluationresults are comprehensive computed by combining the index normalization.3. The common evaluation architecture for SIP security testing is researched and aevaluation system of SIP security testing is implemented. The feasibility of theevaluation models, the quality and the performance of the testing system operation isproved by the malformed message attacking testing experiment. |
PDF Full Text Request