摘要
基于SIP协议的VoIP系统当前正被广泛应用,但由于Internet网络环境及SIP协议自身的特征,导致系统容易遭受攻击,安全性急需改进和提升。文中首先介绍了VoIP系统的特点及SIP协议,并指出所存在的安全问题,然后提出了一种新的解决方案,从身份认证和数据加密两个方面同时入手,采用组合对称密钥技术配合硬件双向认证的模式,实现VoIP系统中用户终端和服务器的可靠性,以及SIP通信终端密钥的安全交换,并采用对称算法加密数据减少延时,最终实现整个系统的可靠、安全和高效。
SIP-based VoIP systems are being used widely recent years,but due to the defects of internet environment and SIP protocol,which causes VoIP systems easily to be attacked,thus the security has to be improved and promoted urgently.In this paper,the characteristics of VoIP systems and concept of SIP protocol are introduced at first,then kinds of secure problems are pointed out.A new solution is proposed next,which considers authentication and encryption aspects,it uses combined symmetric key technology and chip-based mutual authentication to ensure the reliability of SIP terminals and servers in VoIP systems,and the security of key exchange between communication terminals,at the same time it uses symmetric encryption algorithms to reduce data latency,all of above ensure VoIP systems are reliable,safe and efficient.
出处
《计算机与数字工程》
2015年第12期2221-2228,共8页
Computer & Digital Engineering
基金
创新工程Ⅱ-2:云安全密码认证系统研究与开发(编号:PXM2014_178214_000011)资助
关键词
VOIP
SIP协议
组合密钥
硬件模式
双向认证
密钥交换
VoIP
SIP protocol
combined symmetric key
chip-based mode
mutual authentication
key exchange
