[asterisk-dev] Client Puzzle Protocol in SIP

Fadil Sutomo fsutomo at gmail.com
Mon Feb 18 12:19:07 CST 2008


Hi Klaus,

Thanks a lot. Really, I have been trying to find a lot of papers regarding
this, but nothing better than this.
I don't even know why google didn't direct me to this draft.

Anyway, once again, thanks a lot...

Fadil

On Feb 18, 2008 6:29 AM, Klaus Darilion <klaus.mailinglists at pernau.at>
wrote:

> FYI: I think the question is related to
> http://tools.ietf.org/html/draft-jennings-sip-hashcash-06
>
> klau
>
> Tzafrir Cohen schrieb:
> > On Sat, Feb 16, 2008 at 11:37:46PM -0500, Fadil Sutomo wrote:
> >> Hi All,
> >>
> >> I am interested in developing a client-puzzle mechanism in SIP protocol
> so
> >> that any client wants to send an INVITE message to asterisk should
> solve a
> >> cryptographic puzzle first. So, anyone of you can give me pointers
> regarding
> >> this?
> >>
> >> I am thinking about using openSSL api for the crypto in this mechanism,
> and
> >> I am not planning to support the clients. I just want to implement this
> >> mechanism in Asterisk and test it in mitigating DoS attacks..
> >
> > But what if the client just sends a host of junk requests? This does not
> > take any calculation. How can Asterisk know a request is junk with doing
> > very little calculation?
> >
> > If we can relate several junk requests to the same IP or so: then we can
> > can throttle requests by IP or whatever. But Asterisk already supports
> > this, I believe.
> >
>
> _______________________________________________
> --Bandwidth and Colocation Provided by http://www.api-digital.com--
>
> asterisk-dev mailing list
> To UNSUBSCRIBE or update options visit:
>   http://lists.digium.com/mailman/listinfo/asterisk-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-dev/attachments/20080218/fa3d6797/attachment.htm 


More information about the asterisk-dev mailing list