摘要
针对传统基于软件的SIP安全方案容易被盗用、欺骗和入侵的问题,结合可信计算技术,设计了对终端系统与用户身份的双层认证结构,提出了一种使用SIP进行互联网多媒体通信的安全方案.该方案利用可信平台模块和直接匿名证明算法设计了新的SIP注册协议,提高了多媒体通信系统的安全性.文中还利用可证明安全模型证明了注册协议的安全性,并对整个方案的特点进行了分析.
As the traditional software-based SIP security schemes are vulnerable to embezzlement, deception and invasion, a dual authentication framework combined with the trusted computing technology is proposed for endpoint system and user identity. Then, a new SIP security scheme for Interuet multimedia communication is presented, which takes advantage of the trusted platform module and the direct anonymous attestation algorithm to design a new registration sub-protocol for improving the security of multimedia communication systems. Moreover, the security of the registration sub-protocol is verified by using the provable security model, and the characteristics of the whole scheme are finally analyzed.
出处
《华南理工大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2012年第4期1-7,共7页
Journal of South China University of Technology(Natural Science Edition)
基金
国家"973"计划项目(2009CB320505)
国家科技支撑计划项目(2008BAH37B02
2008BAH37B08)
关键词
互联网多媒体通信
安全性
会话初始协议
可信计算
Internet multimedia communication
security
session initiation protocol
trusted computing