Exhancements for a Simple Authenticated SIP Request Management

Author

Takahara, Hisashi ; Nakamura, Motonori

Author_Institution

Dept. of Inf., Grad. Univ. for Adv. Studies, Tokyo, Japan

fYear

2010

fDate

18-20 Aug. 2010

Firstpage

546

Lastpage

547

Abstract

SIP is a popular signaling protocol. In SIP, RFC4474 (SIP Identity) is used to verify integrity of a flow from a Proxy to a terminal of a callee while RFC3261 (Proxy Authenticate) is used to ensure authenticity of a flow from a terminal of a caller to a Proxy. However Proxy Authenticate only ensures authenticity and cannot verify the integrity of a flow. Thus, the flow from a terminal of caller to a proxy is inherently vulnerable to man-in-the-middle (MITM) attacks. In this paper, a new method is proposed that makes it possible to verify integrity of a SIP flow from a terminal of a callee to a proxy without such a significant effort as PKI requires. By combining this method and SIP Identity, it is realized to verify integrity of SIP signaling flow over the while end-to-end path more easily than using only SIP Identity.

Keywords

cryptographic protocols; public key cryptography; signalling protocols; telecommunication security; PKI; RFC3261; RFC4474; SIP identity; SIP request management; data integrity; man-in-the-middle attacks; proxy authenticity; session initiation protocol; signaling protocol; Authentication; Educational institutions; Information science; Instant messaging; Media; Protocols; SIP; authenticity; man-in-the-middle attack; proxy; signaling protocol;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer and Information Science (ICIS), 2010 IEEE/ACIS 9th International Conference on

Conference_Location

Yamagata

Print_ISBN

978-1-4244-8198-9

Type

conf

DOI

10.1109/ICIS.2010.113

Filename

5590393