摘要
VoIP系统中使用SIP协议进行多媒体会话,存在很多不安全因素。文中主要针对SIP协议的身份认证问题,提出采用基于JFK的SIP身份认证机制,以解决使用SIP协议进行呼叫控制时的身份认证和密钥协商问题,保证SIP消息传输过程中完整性和不可抵赖性。而且,JFK的简单、高效、安全及无状态连接等特点,恰好能满足SIP系统对实时性的要求,防止SIP系统受到重放、消息欺骗、拒绝服务等攻击方式。
VoIP system,by using SIP for multimedia sessions,would have a lot of insecure factors. Aiming at the ID authentication problem of SIP,SIP authentication mechanism based on JFK is proposed to solve the ID authentication and key agreement problem dur-ing the process to use SIP for call control and to ensure the integrity and non-repudiation of SIP message transmission. Moreover,JFK protocol is simple,efficient,safe and non-state for connection,etc.,and could fairly meet the real-time requirements of SIP system,and prevents the system from replay,message spoofing,denial-of-service and other attacks.
出处
《信息安全与通信保密》
2014年第9期170-174,共5页
Information Security and Communications Privacy
