Model-Checking DoS Amplification for VoIP Session Initiation

Date Added: Jun 2009
Format: PDF

Current techniques for the formal modeling analysis of DoS attacks do not adequately deal with amplification attacks that may target a complex distributed system as a whole rather than a specific server. Such threats have emerged for important applications such as the VoIP Session Initiation Protocol (SIP). This paper demonstrates a model-checking technique for finding amplification threats using a strategy the authors call measure checking that checks for a quantitative assessment of attacker impact using term rewriting.