Title :
An Enhanced Authentication and Key Agreement Mechanism for SIP Using Certificateless Public-key Cryptography
Author :
Luo, Ming ; Wen, Yingyou ; Zhao, Hong
Author_Institution :
Sch. of Inf. Sci. & Eng., Northeastern Univ., Shenyang
Abstract :
The session initiation protocol (SIP) is considered as the dominant signaling protocol for calls over the Internet. However, how to authenticate each other and agree on a session key has not been efficiently solved. In 2007, Wang and Zhang proposed a key agreement protocol and a new authentication and key agreement mechanism for SIP. In this paper, we prove that Wang and Zhang´s key agreement protocol is insecure due to its susceptibility to the key replacement attack. Moreover, we have also realized that their protocol do not satisfy the perfect forward secrecy and known session-specific temporary information security attribute. Based on this, we propose an enhanced protocol and a new mutually authenticated key agreement protocol for SIP, Compared with the Wangand Zhang´s scheme for SIP regarding the robustness and computation overheads, our scheme is more efficient and thus is more suitable for SIP.
Keywords :
Internet telephony; message authentication; public key cryptography; signalling protocols; telecommunication security; Internet; VoIP; certificateless public-key cryptography; enhanced authentication mechanism; key agreement mechanism; key replacement attack; session initiation protocol; session-specific temporary information security attribute; voice-over-IP; Authentication; Cryptographic protocols; Elliptic curves; Galois fields; Information science; Information security; Protection; Public key cryptography; Robustness; Streaming media; Sip; authentication; bilinear pairings; certificateless public-key cryptography; key agreement;
Conference_Titel :
Young Computer Scientists, 2008. ICYCS 2008. The 9th International Conference for
Conference_Location :
Hunan
Print_ISBN :
978-0-7695-3398-8
Electronic_ISBN :
978-0-7695-3398-8
DOI :
10.1109/ICYCS.2008.311
