First International Conference on Availability, Reliability and Security (ARES'06) Providing Response Identity and Authentication in IP Telephony Vienna, Austria April 20-April 22 ISBN: 0-7695-2567-9
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2006.99
The traditional circuit switched infrastructure for telephony services are being replaced by Voice over IP (VoIP) for many forthcoming benefits. At the same time, there are some new security issues due to the introduction of new packet switched infrastructure and new VoIP protocols. One of crucial security issues faced by the current VoIP protocols is about the end-to-end user identity and how to authenticate it. This is especially important for guaranteeing integrity and privacy of the response information, because the current proposal solutions fail in many real-world scenarios. In this study, we demonstrate one new mechanism for providing and authenticating response identify, based on Session Initiation Protocol (SIP). In order to prevent several kinds of malicious attacks through response and protect the integrity of response message, another new per-hop authentication mechanism was proposed to handle SIP response. With the combination of these proposed mechanisms, response identity can be securely provided, and Spam IP Telephony (SPIT) or other malicious attacks can be identified and prevented from attacking the VoIP service.
Index Terms:
VoIP Security, Secure Enterprise Architecture, IP Telephony, Voice Spam, Spam in IP Telephony (SPIT),
Citation:
Feng Cao, Cullen Jennings, "Providing Response Identity and Authentication in IP Telephony," ares, pp.198-205, First International Conference on Availability, Reliability and Security (ARES'06), 2006 Usage of this product signifies your acceptance of the Terms of Use. | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb