Performance Evaluation of SCTP-Sec: A Secure SCTP Mechanism

Abstract

The Stream Control Transmission Protocol (SCTP) uses a cookie mechanism to tackle the security and traditional attack scenario. Unfortunately, SCTP is not secured against redirection attacks, bombing attacks and towards verification-tag guessing attacks which lead to association-hijacking and may force the victim client to starve out of service from the server. Therefore, we propose a secure SCTP mechanism that uses an additional new SCTP chunk with cryptographic hash operation to check the integrity of the client that helps in easy detection/prevention of some traditional attacks in the SCTP. Using this, the Cookie mechanism can be minimized to clear-text.