Title :
Exhancements for a Simple Authenticated SIP Request Management
Author :
Takahara, Hisashi ; Nakamura, Motonori
Author_Institution :
Dept. of Inf., Grad. Univ. for Adv. Studies, Tokyo, Japan
Abstract :
SIP is a popular signaling protocol. In SIP, RFC4474 (SIP Identity) is used to verify integrity of a flow from a Proxy to a terminal of a callee while RFC3261 (Proxy Authenticate) is used to ensure authenticity of a flow from a terminal of a caller to a Proxy. However Proxy Authenticate only ensures authenticity and cannot verify the integrity of a flow. Thus, the flow from a terminal of caller to a proxy is inherently vulnerable to man-in-the-middle (MITM) attacks. In this paper, a new method is proposed that makes it possible to verify integrity of a SIP flow from a terminal of a callee to a proxy without such a significant effort as PKI requires. By combining this method and SIP Identity, it is realized to verify integrity of SIP signaling flow over the while end-to-end path more easily than using only SIP Identity.
Keywords :
cryptographic protocols; public key cryptography; signalling protocols; telecommunication security; PKI; RFC3261; RFC4474; SIP identity; SIP request management; data integrity; man-in-the-middle attacks; proxy authenticity; session initiation protocol; signaling protocol; Authentication; Educational institutions; Information science; Instant messaging; Media; Protocols; SIP; authenticity; man-in-the-middle attack; proxy; signaling protocol;
Conference_Titel :
Computer and Information Science (ICIS), 2010 IEEE/ACIS 9th International Conference on
Conference_Location :
Yamagata
Print_ISBN :
978-1-4244-8198-9
DOI :
10.1109/ICIS.2010.113
