Font Size: a A A

The Design And Implementaion Of An IMS Fuzzy Test Tool

Posted on:2015-10-10Degree:MasterType:Thesis
Country:ChinaCandidate:Y D GuoFull Text:PDF
GTID:2428330491953113Subject:Computer Science and Technology
Abstract/Summary:
IMS is a subsystem that supporting IP multimedia presented by 3GPP.It is widely considered to be the key and core of next generation network.With the large-scale deployment of IMS networks,its status and role in future communi-cation systems is no doubt,the resulting security problems must cause the great attention of operators and security department.IMS use the SIP protocol as its Session Control Protocol,the full textual features of SIP protocol makes it easy to construct malformed SIP message.Attack to IMS network using carefully constructed malformed SIP message is a kind of effective means of attack,it is also a typical security threats which IMS network facing.This paper focuses on developing an IMS fuzzy test tool with support-ing detection of attack effect.The tool carries out simulate attack on the IMS network using malformed SIP message to test it's security situation.Dif-ferent from general network testing tools,this tool can detect the attack effect constantly during the attack test,then adjust attack strategy dynamically ac-cording to the attack effect and malformed SIP signaling library.This paper starts by the research of the background of IMS network and SIP protocol.Then combed the requirements of the system,and summa-rized the functional requirements and non-functional requirements of the sys-tem.Based on these works,the paper designed the overall architecture of the system,and also accomplished the detailed design of each function modules,researched the technology involved in the system,the research is mainly fo-cused on the detection method of attack effect、the dynamic decision-making method of attack strategy and the overall control method.Then the paper im-plemented the system based on Metasploit penetration testing framework using Ruby programing language.At last,the system was tested in the experimental network environment.The test results show that this system can effectively detect some security vulnerabilities of IMS network.What's more,compared with the situation of haven't use detection of attack effect and dynamic decision-making of attack strategy,this system is significantly shorten the time of attack,and dramatically increased the attack efficiency.The test result is well.
Keywords/Search Tags:IMS, malformed SIP message, detect of attack effect, dynamic decision-making
Related items