As a legislative requirement of Turkey, it is obligatory for all government organizations and e-government applications to use SSL secure socked layer which ensures encrypted information transmission.
The use of SSL protocols secures our communication between intended hosts and clients. Since security threats increase over time, security of internet commination has to be achieved with cryptography and ciphering techniques in order to ensure confidentiality. In this paper, we impliedMITM attack and described some preventive measures to secure our system for ARP poisoning attack. ARP poisoning is usually become the cause of attacks like denial of service (DOS), Man in Middle Attack(MITM) and Session Hijacking. ARP is susceptible to poisoning attack due to its stateless-ness and lack of an authentication mechanism for validating the identity of the sender. ARP provides no authentication mechanism to the incoming request packets this is the reason that any client can falsify an ARP message contains malicious information to poison the ARP cache of target host. Address resolution protocol supports the mapping ofIP address to the MAC address i.e. However, one area that is usually left untouched is hardening Data link layer and this can open the network to a variety of attacks and admittances. Security is at the head of all networks, and many companies which implement a comprehensive security policy incorporating many of the OSI layers. We also establish a set of policies and guidelines focused on the aforementioned architectures, in order to mitigate security threads and provide more effective solutions for existing vulnerabilities in VoIP. In this paper, we propose three basic scenarios, representing common fundamental network architectures for VoIP, from which more complex systems can be built.
Similarly to any other Internet protocol, SIP is susceptible to security threads, and can be involved in different kinds of attacks. However, the Session Initiation Protocol (SIP) tends to be the favorite one because it is standardized by the IETF and has many features. In relation to signalization, different protocols have been proposed for VoIP. VoIP is based on existing layers and protocols and therefore inherits their security issues. Attacks on networks which implement VoIP could lead to the degradation of the IP PBX performance, the interception of conversations, the theft of important and confidential information, and the generation of large expenses in any organization, if they do not have the correct security mechanisms.
0 kommentar(er)
