{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T13:15:17Z","timestamp":1725542117334},"publisher-location":"Berlin, Heidelberg","reference-count":37,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642108372"},{"type":"electronic","value":"9783642108389"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2009]]},"DOI":"10.1007\/978-3-642-10838-9_25","type":"book-chapter","created":{"date-parts":[[2009,12,16]],"date-time":"2009-12-16T07:20:05Z","timestamp":1260948005000},"page":"339-353","source":"Crossref","is-referenced-by-count":0,"title":["Detecting Ringing-Based DoS Attacks on VoIP Proxy Servers"],"prefix":"10.1007","author":[{"given":"Dae Hyun","family":"Yum","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sun Young","family":"Kim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"HoKun","family":"Moon","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mi-Yeon","family":"Kim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jae-Hoon","family":"Roh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pil Joong","family":"Lee","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"25_CR1","unstructured":"Abidogun, O.A.: Data mining, fraud detection and mobile telecommunications: Call pattern analysis with unsupervised neural networks. Master\u2019s thesis, University of the Wester Cape (August 2005)"},{"key":"25_CR2","volume-title":"Detection of Abrupt Changes: Theory and Application","author":"M. Basseville","year":"1993","unstructured":"Basseville, M., Nikiforov, I.V.: Detection of Abrupt Changes: Theory and Application. Prentice-Hall, Englewood Cliffs (1993)"},{"issue":"12","key":"25_CR3","doi-asserted-by":"publisher","first-page":"2432","DOI":"10.1016\/j.comnet.2008.05.001","volume":"52","author":"M. Benini","year":"2008","unstructured":"Benini, M., Sicari, S.: Assessing the risk of intercepting VoIP calls. Computer Networks\u00a052(12), 2432\u20132446 (2008)","journal-title":"Computer Networks"},{"issue":"1","key":"25_CR4","doi-asserted-by":"publisher","first-page":"82","DOI":"10.1109\/MIC.2006.5","volume":"10","author":"G. Carl","year":"2006","unstructured":"Carl, G., Kesidis, G., Brooks, R.R., Rai, S.: Denial-of-service attack-detection techniques. IEEE Internet Computing\u00a010(1), 82\u201389 (2006)","journal-title":"IEEE Internet Computing"},{"key":"25_CR5","first-page":"53","volume-title":"1st IEEE Workshop on VoIP Management and Security","author":"E.Y. Chen","year":"2006","unstructured":"Chen, E.Y.: Detecting DoS attacks on SIP systems. In: 1st IEEE Workshop on VoIP Management and Security, pp. 53\u201358. IEEE, Los Alamitos (2006)"},{"key":"25_CR6","first-page":"114","volume-title":"SECURWARE","author":"E.Y. Chen","year":"2008","unstructured":"Chen, E.Y., Itoh, M.: Scalable detection of SIP fuzzing attacks. In: SECURWARE, pp. 114\u2013119. IEEE, Los Alamitos (2008)"},{"key":"25_CR7","first-page":"340","volume-title":"ISM","author":"W. Conner","year":"2008","unstructured":"Conner, W., Nahrstedt, K.: Protecting SIP proxy servers from ringing-based denial-of-service attacks. In: ISM, pp. 340\u2013347. IEEE Computer Society, Los Alamitos (2008)"},{"key":"25_CR8","unstructured":"Dang, T.D., Sonkoly, B., Molnar, S.: Fractal analysis and modeling of VoIP traffic. In: Telecommunications Network Strategy and Planning Symposium, Networks 2004, pp. 123\u2013130 (2004)"},{"key":"25_CR9","first-page":"303","volume-title":"DISCEX","author":"L. Feinstein","year":"2003","unstructured":"Feinstein, L., Schnackenberg, D., Balupari, R., Kindred, D.: Statistical approaches to DDoS attack detection and response. In: DISCEX, vol.\u00a0(1), pp. 303\u2013314. IEEE Computer Society, Los Alamitos (2003)"},{"key":"25_CR10","doi-asserted-by":"publisher","first-page":"148","DOI":"10.1145\/1368310.1368333","volume-title":"ASIACCS","author":"C. Fuchs","year":"2008","unstructured":"Fuchs, C., Aschenbruck, N., Leder, F., Martini, P.: Detecting VoIP based DoS attacks at the public safety answering point. In: ASIACCS, pp. 148\u2013155. ACM, New York (2008)"},{"issue":"1-4","key":"25_CR11","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1109\/COMST.2006.253270","volume":"8","author":"D. Geneiatakis","year":"2006","unstructured":"Geneiatakis, D., Dagiuklas, T., Kambourakis, G., Lambrinoudakis, C., Gritzalis, S., Ehlert, S., Sisalem, D.: Survey of security vulnerabilities in session initiation protocol. IEEE Communications Surveys and Tutorials\u00a08(1-4), 68\u201381 (2006)","journal-title":"IEEE Communications Surveys and Tutorials"},{"key":"25_CR12","doi-asserted-by":"publisher","first-page":"779","DOI":"10.1038\/nature06958","volume":"453","author":"M.C. Gonzalez","year":"2008","unstructured":"Gonzalez, M.C., Hidalgo, C.A., Barab\u00e1si, A.-L.: Understanding individual human mobility patterns. Nature\u00a0453, 779\u2013782 (2008)","journal-title":"Nature"},{"key":"25_CR13","first-page":"49","volume-title":"CSF","author":"P. Gupta","year":"2007","unstructured":"Gupta, P., Shmatikov, V.: Security analysis of Voice-over-IP protocols. In: CSF, pp. 49\u201363. IEEE Computer Society, Los Alamitos (2007)"},{"key":"25_CR14","unstructured":"Heger, M.: Human travel patterns surprisingly predictable. IEEE Spectrum Magazine (June 2008), http:\/\/www.spectrum.ieee.org\/telecom\/wireless\/human-travel-patterns-surprisingly-predictable"},{"key":"25_CR15","unstructured":"Hines, M.: Attackers get chatty on VoIP. PCWorld (May 2007), http:\/\/www.pcworld.com\/businesscenter\/article\/132389\/"},{"key":"25_CR16","unstructured":"Juels, A., Brainard, J.G.: Client puzzles: A cryptographic countermeasure against connection depletion attacks. In: NDSS.The Internet Society (1999)"},{"key":"25_CR17","unstructured":"Kandula, S., Katabi, D., Jacob, M., Berger, A.: Botz-4-sale: Surviving organized DDoS attacks that mimic flash crowds. In: NSDI. USENIX (2005)"},{"key":"25_CR18","first-page":"338","volume-title":"INFOCOM","author":"H. Lee","year":"2001","unstructured":"Lee, H., Park, K.: On the effectiveness of probabilistic packet marking for IP traceback under denial of service attack. In: INFOCOM, pp. 338\u2013347. IEEE, Los Alamitos (2001)"},{"key":"25_CR19","unstructured":"Lemon, J.: Resisting SYN flood DoS attacks with a SYN cache. In: BSDCon, pp. 89\u201397. USENIX (2002)"},{"key":"25_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1255","DOI":"10.1007\/11596042_127","volume-title":"Embedded and Ubiquitous Computing \u2013 EUC 2005 Workshops","author":"F.-Y. Leu","year":"2005","unstructured":"Leu, F.-Y., Yang, W.-J.: Intrusion detection with CUSUM for TCP-based DDoS. In: Enokido, T., Yan, L., Xiao, B., Kim, D.Y., Dai, Y.-S., Yang, L.T. (eds.) EUC-WS 2005. LNCS, vol.\u00a03823, pp. 1255\u20131264. Springer, Heidelberg (2005)"},{"issue":"2","key":"25_CR21","doi-asserted-by":"publisher","first-page":"39","DOI":"10.1145\/997150.997156","volume":"34","author":"J. Mirkovic","year":"2004","unstructured":"Mirkovic, J., Reiher, P.L.: A taxonomy of DDoS attack and DDoS defense mechanisms. Computer Communication Review\u00a034(2), 39\u201353 (2004)","journal-title":"Computer Communication Review"},{"key":"25_CR22","doi-asserted-by":"crossref","unstructured":"Moore, D., Shannon, C., Brown, D.J., Voelker, G.M., Savage, S.: Inferring internet denial-of-service activity. In: USENIX Security Symposium. USENIX (2001)","DOI":"10.21236\/ADA400003"},{"key":"25_CR23","doi-asserted-by":"crossref","unstructured":"Ohsita, Y., Ata, S., Murata, M.: Detecting distributed denial-of-service attacks by analyzing TCP SYN packets statistically. IEICE Transactions 89-B(10), 2868\u20132877 (2006)","DOI":"10.1093\/ietcom\/e89-b.10.2868"},{"key":"25_CR24","first-page":"1979","volume-title":"ICC","author":"J. Quittek","year":"2007","unstructured":"Quittek, J., Niccolini, S., Tartarelli, S., Stiemerling, M., Brunner, M., Ewald, T.: Detecting SPIT calls by checking human communication patterns. In: ICC, pp. 1979\u20131984. IEEE, Los Alamitos (2007)"},{"key":"25_CR25","doi-asserted-by":"crossref","unstructured":"Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley, M., Schooler, E.: SIP: Session Initiation Protocol. RFC 3261, IETF (June 2002)","DOI":"10.17487\/rfc3261"},{"key":"25_CR26","volume-title":"Session Initiation Protocol (SIP): Controlling Convergent Networks","author":"T. Russell","year":"2008","unstructured":"Russell, T.: Session Initiation Protocol (SIP): Controlling Convergent Networks. McGraw-Hill Osborne Media, New York (2008)"},{"key":"25_CR27","doi-asserted-by":"crossref","unstructured":"Schulzrinne, H., Casner, S.L., Frederick, R., Jacobson, V.: RTP: A transport protocol for real-time applications. RFC 3550 (July 2003)","DOI":"10.17487\/rfc3550"},{"issue":"6","key":"25_CR28","doi-asserted-by":"publisher","first-page":"794","DOI":"10.1109\/TPDS.2007.70786","volume":"19","author":"H. Sengar","year":"2008","unstructured":"Sengar, H., Wang, H., Wijesekera, D., Jajodia, S.: Detecting VoIP floods using the Hellinger distance. IEEE Trans. Parallel Distrib. Syst.\u00a019(6), 794\u2013805 (2008)","journal-title":"IEEE Trans. Parallel Distrib. Syst."},{"key":"25_CR29","series-title":"IFIP","first-page":"397","volume-title":"SEC","author":"D. Seo","year":"2008","unstructured":"Seo, D., Lee, H., Nuwere, E.: Detecting more SIP attacks on VoIP services by combining rule matching and state transition models. In: SEC. IFIP, vol.\u00a0278, pp. 397\u2013411. Springer, Heidelberg (2008)"},{"issue":"6","key":"25_CR30","doi-asserted-by":"publisher","first-page":"56","DOI":"10.1145\/1028893.1028898","volume":"2","author":"D.C. Sicker","year":"2004","unstructured":"Sicker, D.C., Lookabaugh, T.D.: VoIP security: Not an afterthought. ACM Queue\u00a02(6), 56\u201364 (2004)","journal-title":"ACM Queue"},{"issue":"9","key":"25_CR31","doi-asserted-by":"publisher","first-page":"1433","DOI":"10.1016\/j.comcom.2005.09.008","volume":"29","author":"V.A. Siris","year":"2006","unstructured":"Siris, V.A., Papagalou, F.: Application of anomaly detection algorithms for detecting SYN flooding attacks. Computer Communications\u00a029(9), 1433\u20131442 (2006)","journal-title":"Computer Communications"},{"issue":"2","key":"25_CR32","doi-asserted-by":"publisher","first-page":"22","DOI":"10.1145\/1229899.1229909","volume":"5","author":"R. Sparks","year":"2007","unstructured":"Sparks, R.: SIP: basics and beyond. ACM Queue\u00a05(2), 22\u201333 (2007)","journal-title":"ACM Queue"},{"key":"25_CR33","volume-title":"Probability and Statistics for Engineers and Scientists","author":"R.E. Walpole","year":"2006","unstructured":"Walpole, R.E., Myers, R.H., Myers, S.L., Ye, K.: Probability and Statistics for Engineers and Scientists. Prentice-Hall, Englewood Cliffs (2006)"},{"key":"25_CR34","volume-title":"INFOCOM","author":"H. Wang","year":"2002","unstructured":"Wang, H., Zhang, D., Shin, K.G.: Detecting SYN flooding attacks. In: INFOCOM, IEEE, Los Alamitos (2002)"},{"key":"25_CR35","unstructured":"Wikipedia. Normal distribution, http:\/\/en.wikipedia.org\/wiki\/Normal_distribution"},{"key":"25_CR36","unstructured":"Wikipedia. Pearson\u2019s chi-square test, http:\/\/en.wikipedia.org\/wiki\/Pearson%27s_chi-square_test"},{"key":"25_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"59","DOI":"10.1007\/978-3-642-00843-6_6","volume-title":"ISPEC 2009","author":"R. Zhang","year":"2009","unstructured":"Zhang, R., Wang, X., Yang, X., Farley, R., Jiang, X.: An empirical investigation into the security of phone features in SIP-based VoIP systems. In: Bao, F., Li, H., Wang, G. (eds.) ISPEC 2009. LNCS, vol.\u00a05451, pp. 59\u201370. Springer, Heidelberg (2009)"}],"container-title":["Lecture Notes in Computer Science","Information Security Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-10838-9_25.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,24]],"date-time":"2020-11-24T02:35:25Z","timestamp":1606185325000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-10838-9_25"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2009]]},"ISBN":["9783642108372","9783642108389"],"references-count":37,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-10838-9_25","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2009]]}}}