首页 | 本学科首页   官方微博 | 高级检索  
     检索      

一种基于HTTP摘要认证的SIP安全机制
引用本文:王宇飞,范明钰,王光卫.一种基于HTTP摘要认证的SIP安全机制[J].重庆邮电学院学报(自然科学版),2005,17(6):749-751.
作者姓名:王宇飞  范明钰  王光卫
作者单位:[1]电子科技大学通信与信息工程学院,四川成都610054 [2]电子科技大学计算机科学与工程学院,四川成都610054
摘    要:会话初始化协议(SIP)基于Client/Server结构,由于受到SIP自身特点及应用环境的影响,目前SIP常用的安全机制大都只提供Server对Client的认证,且大都没有提供会话密钥协商的机制,容易受到服务器伪装攻击。在分析了SIP面临的安全威胁以及SIP安全机制的现状后,通过对SIP协议的扩展,设计和实现了一种基于HT—TP摘要认证的SIP安全机制。该机制能实现双向身份认证和密钥协商功能,使SIP认证和加密更为灵活。

关 键 词:HTTP摘要认证  会话初始化协议  安全机制  密钥协商
文章编号:1004-5694(2005)06-0749-03
收稿时间:2005-06-18
修稿时间:2005-07-20

Security mechanism of SIP based on HTTP digest authentication
WANG Yu-fei , FAN Ming-yu, WANG Guang-wei.Security mechanism of SIP based on HTTP digest authentication[J].Journal of Chongqing University of Posts and Telecommunications(Natural Sciences Edition),2005,17(6):749-751.
Authors:WANG Yu-fei  FAN Ming-yu  WANG Guang-wei
Institution:1. School of Communication and Information Engineering UESTC, Chengdu 610054,P. R. China; 2. School of Computer Science and Engineering UESTC, Chengdu 610054,P. R. China
Abstract:SIP is based on the Client/Server strueture.Most current security muchanisms used in SIP only provide the authentication to client from the server because of the SIP's characteristic and application environment,and most of them do not provide the key negotiation mechanism.There fore the affack of impersonating usually happens.This paper analyzes the security threats faced with by SIP and the actuality of SIP security mechanism.And authors design and implement a SIP security mechanism based on HTTP Digest Authentication by extending the SIP.This mechanism provides the functions of bidirectional identity authentication and key negotiation,and makes SIP authentication and Encryption more flexible.
Keywords:HTTP digest authentication  SIP  security mechanism  key negotiation
本文献已被 CNKI 维普 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号