Title :
Using end-to-end data encryption to secure SIP device configuration
Author :
Xudong Chen ; Wenjun Fan
Author_Institution :
Sch. of Software Eng., Beijing Jiaotong Univ., Beijing, China
Abstract :
Security between the endpoints is an important requirement for network transmission. One existing solution of End-to-End security is based on the certificate of the third-party enterprise such as the authorization from ISP. And the other methods usually established a virtual private tunnel between the two endpoints. Considering the SIP device configuration basically used tftp protocol to transmit the configuration file, we proposed a free End-to-End security scheme using Application Gateway and data encryption to secure this transmission process. In this paper, Application Gateway used FastCGI programming to protect the HTTP server from attacking. On the other hand, the file encryption approach applied symmetrical encryption to ensure that only the authentic client could share the data from the server.
Keywords :
authorisation; client-server systems; computer network security; cryptography; internetworking; transport protocols; virtual private networks; FastCGI programming; HTTP server attack protection; ISP; SIP device configuration; SIP device configuration security; TFTP protocol; application gateway; authentic clients; authorization; configuration file transmission; data sharing; end-to-end data encryption; end-to-end security; free-end-to-end security scheme; network transmission; symmetrical file encryption approach; third-party enterprise certificate; transmission process security; virtual private tunnel; Encryption; IP networks; Logic gates; Web servers; Application Gateway; End-to-End security; FastCGI; SIP Device Configuration;
Conference_Titel :
Granular Computing (GrC), 2013 IEEE International Conference on
Conference_Location :
Beijing
DOI :
10.1109/GrC.2013.6740381
