Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A reverse proxy for VoIP: Or how to improve security in a ToIP network
KTH, School of Electrical Engineering (EES), Communication Networks.
2016 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

The need for security is crucial in Telephony over IP (ToIP). Secure protocols have been designed as well as specific devices to fulfill that need. This master thesis examines one of such devices called Session Border Controller (SBC), which can be compared to reverse proxies for ToIP. The idea is to apply message filters to increase security.

This thesis presents the reasons of SBC existence, based on the security weaknesse sa ToIP network can show. These reasons are then used to establish a list of features which can be expected from a SBC and discuss its ideal placement in a ToIP network architecture. A test methodology for SBCs is established and used on the free software Kamailio as an illustration. Following this test, improvements of this software, regarding threats prevention and attacks detection, are presented and implemented.

Abstract [sv]

Behovet av säkerhet är av avgörande betydelse i telefoni över IP (ToIP). Säkerhetsprotokoll har utformats samt särskilda enheter för att uppfylla detta behov. Detta examensarbete undersöker en av sådana enheter som kallas Session Border Controller (SBC), vilket kan jämföras med omvända proxyservrar för ToIP. Tanken är att tillämpa meddelandefilter för att öka säkerheten.

Denna avhandling presenterar orsakerna till SBC existens, baserat på de säkerhets svagheter en ToIP nätverk kan visa. Dessa skäl används sedan för att upprätta en förteckning över egenskaper som kan förväntas av en SBC och diskutera dess ideal placering i en ToIP nätverksarkitektur . En testmetodik för SBC är etablerad och används på fri programvara Kamailio som en illustration. Efter detta test, förbättringar av denna programvara, om hot förebyggande och attacker upptäcka, presenteras och genomförs.

Place, publisher, year, edition, pages
2016. , 81 p.
Series
TRITA-EE, ISSN 2016:024
Keyword [en]
VoIP, ToIP, SIP, SIPS, RTP, SRTP, SBC, session border controller, security, toll fraud
National Category
Communication Systems
Identifiers
URN: urn:nbn:se:kth:diva-183034OAI: oai:DiVA.org:kth-183034DiVA: diva2:906809
External cooperation
ANSSI
Subject / course
Computer Networks and Communication
Educational program
Master of Science - Network Services and Systems
Presentation
2016-02-24, Seminar room, Osquldas v. 6, 4th floor, Stockholm, 09:00 (English)
Supervisors
Examiners
Available from: 2016-05-10 Created: 2016-02-25 Last updated: 2016-05-10Bibliographically approved

Open Access in DiVA

fulltext(1308 kB)506 downloads
File information
File name FULLTEXT02.pdfFile size 1308 kBChecksum SHA-512
ee6f13f268f25e840dd1608b65a17fa061feb2f54c1d0db6986db02b570e9523c0e7005018c7628fc7cab3ad61ece362337d0dabf77c1147fbf2c9aee60821b2
Type fulltextMimetype application/pdf

By organisation
Communication Networks
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 506 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 360 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf