Short Paper: Schemes for Enhancing the Denial-of-Service Tolerance of SRTP

S. Garg; N. Singh; T.   Tsai

1st International ICST Conference on Security and Privacy for Emerging Areas in Communication Networks

Research Article

Short Paper: Schemes for Enhancing the Denial-of-Service Tolerance of SRTP

Cite: BibTeX Plain Text

@INPROCEEDINGS{10.1109/SECURECOMM.2005.48,
    author={S. Garg and N. Singh and T.   Tsai},
    title={Short Paper: Schemes for Enhancing the Denial-of-Service Tolerance of SRTP},
    proceedings={1st International ICST Conference on Security and Privacy for Emerging Areas in Communication Networks},
    publisher={IEEE},
    proceedings_a={SECURECOMM},
    year={2006},
    month={3},
    keywords={},
    doi={10.1109/SECURECOMM.2005.48}
}

S. Garg
N. Singh
T. Tsai
Year: 2006
Short Paper: Schemes for Enhancing the Denial-of-Service Tolerance of SRTP
SECURECOMM
IEEE
DOI: 10.1109/SECURECOMM.2005.48

S. Garg¹, N. Singh¹, T. Tsai¹

1: Avaya Labs Research

Abstract

Secure Real-time Transport Protocol (SRTP) provides confidentiality, authentication, integrity and replay protection for secure media transport in VoIP. However, the overhead of HMAC-SHA1 incurred per packet makes SRTP susceptible to flooding based Denial-of-Service attack. In this paper, we present a class of schemes to increase the DoS tolerance in SRTP. The central idea is to add a light-weight authentication mechanism on top of SRTP. This mechanism is used to efficiently discard illegitimate packets early on in the face of a DoS attack. Analysis shows that substantially larger traffic flood can be handled with the proposed enhancements.

Published: 2006-03-20
Publisher: IEEE

: http://dx.doi.org/10.1109/SECURECOMM.2005.48