A practical method for SIP-DoS attack effect evaluation

DDoS attacks with the malformed SIP messages (SIP-DoS) are a major threat to the security of SIP-based system. Evaluating the attack effect can help develop a more effective counter-attack mechanism. This paper presents an ANP-based method named SEM (SIP-DoS Evaluation Method). SEM adopts the entropy-weight method and the Decision Making Trial and Evaluation Laboratory (DEMATEL) method to determine the importance of the attack effect metrics with respect to both the attack itself and the system under attack. SEM also contains an influence model for eliminating the impact the previous attacks have on the current attack. The experiment shows that SEM is more practical in that it can generate a more objective and precise evaluation compared with the previous state-of-the-art approaches. Copyright © 2012 Binary Information Press.