摘要
现有关于SIP会议的研究往往只重视系统结构、实用功能和运行性能,而忽视了会议存在的安全性问题.会议安全问题主要概括为两种,分别为由泄密引起的会议机密性问题和由SIP攻击引起的会议可靠性问题.针对SIP会议的这些问题,本文提出一系列改进措施以完善SIP会议标准框架.会议保密技术研究主要包括密码安全和媒体安全两部分,采用主持人验证和加密措施实现双重保险.会议SIP信令可靠性研究主要包括规范性验证、协议扩展和SIP flooding入侵检测,并通过实验验证其合理性.
Existing research on the SIP conferencing always only focuses on system architecture,utility function and running performance,but overlooks security issue in conferences.The security problems mainly summarize to two kinds,which are confidentiality problems caused by leakage and reliability problems caused by SIP attacks.According to these problems in SIP conferencing,this paper proposes a series of methods to advance SIP standard conferencing framework.The conference confidentiality technology research includes password security and media security.We use moderator's authentication and encryption to achieve double insurance.The conference reliability research mainly includes standardized examination,protocol extensions and SIP flooding intrusion detection.We verify the reasonableness via the experiment at last.
出处
《小型微型计算机系统》
CSCD
北大核心
2011年第8期1543-1547,共5页
Journal of Chinese Computer Systems
