论文部分内容阅读
VoIP安全测试工具已成为开发者或SIP服务的管理者开发或测试SIP程序和服务健壮性不可缺少的手段.本文详细分析SIP网络的安全威胁,讨论几款开源的VoIP安全测试工具的缺陷,提出一种简单的S IP攻击描述模型和全新的VoIP安全测试工具.用户通过制定简单的基于XML的SIP消息攻击流程发起各类攻击场景,测试SIP程序和服务的安全性和健壮性,并将测试结果呈现给用户.
VoIP security testing tools have become indispensable tools for developers or SIP service managers to develop or test the robustness of SIP programs and services.This paper analyzes in detail the security threats of SIP networks and discusses the flaws of several open source VoIP security testing tools A simple S IP attack description model and a new VoIP security testing tool.Users develop a variety of attack scenarios by developing a simple XML-based SIP message attack process to test the security and robustness of SIP programs and services, and test The result is presented to the user.