| 基于Fuzz测试的IMS网络SIP漏洞挖掘模型 |
| |
| 引用本文: | 刘树新,彭建华,刘彩霞,谢晓龙.基于Fuzz测试的IMS网络SIP漏洞挖掘模型[J].计算机应用研究,2012,29(9):3456-3459. |
| |
| 作者姓名: | 刘树新 彭建华 刘彩霞 谢晓龙 |
| |
| 作者单位: | 信息工程大学 国家数字交换系统工程技术研究中心, 郑州 450002 |
| |
| 基金项目: | 国家“863”计划资助项目(2011AA010604, 2008AA011003) |
| |
| 摘 要: | 为有效挖掘3G核心网IP多媒体子系统中SIP流程存在的安全漏洞,提出了一种基于Fuzz测试的SIP漏洞挖掘模型。基于Fuzz漏洞测试方法设计了一种SIP漏洞挖掘模型,设计的初始消息状态转移方法实现了其中的消息注入功能,使漏洞挖掘进入到SIP流程内部,实现了自适应监控功能,针对不同监控内容实施相应的监控方法。仿真结果验证了模型及其功能方法的有效性。
|
| 关 键 词: | 漏洞挖掘 模糊 会话初始协议 IP多媒体子系统 |
SIP vulnerability discovery model in IMS based on Fuzz testing |
| |
| LIU Shu-xin,PENG Jian-hu,LIU Cai-xi,XIE Xiao-long.SIP vulnerability discovery model in IMS based on Fuzz testing[J].Application Research of Computers,2012,29(9):3456-3459. |
| |
| Authors: | LIU Shu-xin PENG Jian-hu LIU Cai-xi XIE Xiao-long |
| |
| Affiliation: | National Digital Switching System Engineering & Technological Research Center, Information Engineering University, Zhengzhou 450002, China |
| |
| Abstract: | To effectively discover the vulnerability in the communication process of SIP protocol in the IP multimedia subsystem of 3G core network, this paper proposed a vulnerability discovery model. Firstly, this paper designed a SIP protocol vulnerability discovery model based on the Fuzz vulnerability testing. Then it designed states transfer method of initial message to achieve the message injection function of the model. Finally, it realized the seft-adaption monitoring function in the model, which could implement relevant monitor methods according to different monitor objects. Simulation experimental results show the effectiveness of the vulnerability discovery model and its function achievement. |
| |
| Keywords: | vulnerability discovery Fuzz SIP IMS |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
