Follow this innovation
[ via 
] [?]
Innovation
Testing vulnerability of Session Initiation Protocol (SIP) aware firewalls
Columbia Technology Ventures
posted on 11/03/2009
Lead Inventor: Henning Schulzrinne, Ph.D. Problem or Unmet Need: Session Initiation Protocol (SIP) is an application layer protocol for establishing multimedia sessions. Networks implementing SIP-based voice-over-IP (VoIP) systems may use devices such as firewalls to block unwanted and ma...
Innovation Details
Detailed Description
Lead Inventor: Henning Schulzrinne, Ph.D.
Problem or Unmet Need:
Session Initiation Protocol (SIP) is an application layer protocol for establishing multimedia sessions. Networks implementing SIP-based voice-over-IP (VoIP) systems may use devices such as firewalls to block unwanted and malicious traffic from infiltrating the network. Typical network protection devices fail to cope with the complexity of VoIP protocols at carrier class performance.
Details of the Invention:
The technology describes a mechanism to test, analyze, and validate large scale SIP-aware firewalls. The technology can be used to determine if SIP-aware firewall rules are properly set, and to calculate excessive delay in opening pinholes through firewall for establishing a media session. The excessive delay may result in unintentional Denial-of-Service (DoS). The invention can be used to trigger alerts, if the delay exceeds a certain threshold. The invention can also be used to determine if the pinholes through a firewall are incorrectly allocated.
Applications:
• Measuring the vulnerability of SIP-aware firewalls for data and voice services
• Determine if the firewall rules are correctly set
Advantages:
• Programmable control of pinhole vulnerabilities
• Provides mechanism to alert the VoIP network administrator if the setup delay exceeds a threshold.
Patent Status: Patent Pending (US 2007/012483-A1) ~ see link below.
Licensing Status: Available for Licensing and Sponsored Research Support
Other Links:
Further Information
Calvin Chu
Email: TechTransfer@columbia.edu
Problem or Unmet Need:
Session Initiation Protocol (SIP) is an application layer protocol for establishing multimedia sessions. Networks implementing SIP-based voice-over-IP (VoIP) systems may use devices such as firewalls to block unwanted and malicious traffic from infiltrating the network. Typical network protection devices fail to cope with the complexity of VoIP protocols at carrier class performance.
Details of the Invention:
The technology describes a mechanism to test, analyze, and validate large scale SIP-aware firewalls. The technology can be used to determine if SIP-aware firewall rules are properly set, and to calculate excessive delay in opening pinholes through firewall for establishing a media session. The excessive delay may result in unintentional Denial-of-Service (DoS). The invention can be used to trigger alerts, if the delay exceeds a certain threshold. The invention can also be used to determine if the pinholes through a firewall are incorrectly allocated.
Applications:
• Measuring the vulnerability of SIP-aware firewalls for data and voice services
• Determine if the firewall rules are correctly set
Advantages:
• Programmable control of pinhole vulnerabilities
• Provides mechanism to alert the VoIP network administrator if the setup delay exceeds a threshold.
Patent Status: Patent Pending (US 2007/012483-A1) ~ see link below.
Licensing Status: Available for Licensing and Sponsored Research Support
Other Links:
Further Information
Calvin Chu
Email: TechTransfer@columbia.edu
File Number: M07-044
IP Protection
License Online
This innovation currently is not available for online licensing. Please contact Tech Transfer at Columbia Technology Ventures for more information.
request more info
ProfileFind more innovations
