2. Boring stuffs
• allows you to make and receive telephone calls over the Internet
• low international phone call rates to other countries
• Protocols under voIP:
• SIP(UDP -5060)
• H.323
• RTP
• Skype
3. • SIP: Requests
• INVITE - establish connection
• BYE - terminate
• REGISTER – indicate client address to
server
• SIP: Responses
• 1xx - responses to requests
• 2xx: 200-level responses indicate a
successful completion of the request
• 3xx: redirection is needed for completion
of the request.
• 4xx: bad syntax
• 5xx: The server failed to fulfil an
apparently valid request
• 6xx: This is a global failure
4. Attacks on SIP
• Information gathering and foot printing
• Eavesdropping and capturing traffic
• VLAN hopping
• Spoofing Caller ID
• Identification of Denial of Service (DoS) vulnerabilities
• Authentication Attacks