| 基于SIP协议的网络安全研究 |
| |
| 引用本文: | 陈季安,李萍,邢果,戚文芽.基于SIP协议的网络安全研究[J].计算机工程与设计,2007,28(18):4347-4350,4353. |
| |
| 作者姓名: | 陈季安 李萍 邢果 戚文芽 |
| |
| 作者单位: | 解放军信息工程大学,信息科学系,河南,郑州,450002 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 针对会话初始协议(session initial protocol,SIP)简单、开放、易扩展的特点,对RFC3261中提出的几种安全机制进行了深入分析,指出了SIP网络面临的一些典型攻击和安全威胁.鉴于目前SIP网络面临的安全风险,对端到端和逐段转接的保护机制分别进行研究,探讨了HTTP认证、S/MIME、IPSec、TLS和SIPS URI等安全策略,并详细阐述了在SIP网络中实现这些安全服务所采用的各种安全框架模型.
|
| 关 键 词: | 会话初始协议 安全威胁 安全机制 认证 加密 网络 安全研究 based network security 框架模型 安全服务 阐述 安全策略 IPSec MIME 认证 保护机制 转接 端到端 安全风险 安全威胁 分析 安全机制 易扩展 session |
| 文章编号: | 1000-7024(2007)18-4347-04 |
| 修稿时间: | 2006-11-06 |
Research of network security based on SIP |
| |
| CHEN Jian,LI Ping,XING Guo,QI Wen-ya.Research of network security based on SIP[J].Computer Engineering and Design,2007,28(18):4347-4350,4353. |
| |
| Authors: | CHEN Jian LI Ping XING Guo QI Wen-ya |
| |
| Affiliation: | Department of Information and Science, PLA Information Engineering University, Zhengzhou 450002, China |
| |
| Abstract: | Aimed at the characteristics of the simple and open and extensible SIP, after analyzing several security mechanisms suggested in RCF3261, some typical attacks and security threat confronted with SIP network are analyzed. In view of the security risk now SIP network faced with, the author made a comprehensive research on end-to-end and hop-by-hop protection mechanism, as well as HTTP authentication, S/SMIME, IPSec, TLS, SIPS URI, and so on. In addition, the framework of various kinds of security models to offer these security services in the network of SIP is explained in detail. |
| |
| Keywords: | SIP security threat security mechanism authentication encryption |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
