| 基于增强响应信任链的SIP安全机制 |
| |
| 引用本文: | 万李蓉,樊自甫,万晓榆. 基于增强响应信任链的SIP安全机制[J]. 通信技术, 2007, 40(7): 16-18 |
| |
| 作者姓名: | 万李蓉 樊自甫 万晓榆 |
| |
| 作者单位: | 重庆邮电大学,下一代网络应用技术研究所,重庆,400065 |
| |
| 摘 要: | SIP因自身缺少有力的安全机制而面临很多安全威胁,其中最为突出的威胁是利用响应消息进行的攻击。文中通过扩展SIP协议,提出了一种基于增强响应信任链的SIP安全机制。该安全机制通过请求消息和响应消息提供逐跳实体之间安全认证,有效地阻止了利用响应消息进行的攻击,保证了SIP会话参与者身份的真实性以及通信数据的完整性。
|
| 关 键 词: | SIP协议 安全 认证 增强响应信任链 |
| 文章编号: | 1002-0802(2007)07-0016-03 |
| 修稿时间: | 2007-04-17 |
SIP Security Mechanism Based on Enhancing Chain of Response Trust |
| |
| WAN Li-rong,FAN Zi-fu,WAN Xiao-yu. SIP Security Mechanism Based on Enhancing Chain of Response Trust[J]. Communications Technology, 2007, 40(7): 16-18 |
| |
| Authors: | WAN Li-rong FAN Zi-fu WAN Xiao-yu |
| |
| Abstract: | SIP is facing some security threats for shortage of security mechanism itself, among which the most prominent is the attack by making use of response messages. This paper brings forward an ECRT-based SIP security mechanism. The key of this security mechanism is that the entities between hops are authenticated by the request and response message, thus effectively preventing the attacts by making use of response messages. This mechanism ensures the authenticity of the participants and the integrity of communication data. |
| |
| Keywords: | session initiation protocol security authentication ECRT( enhancing chain of response trust) |
| 本文献已被 CNKI 万方数据 等数据库收录! |
