论文信息 - A Multifactor Hash Digest Challenge-Response Authentication Scheme for Session Initiation Protocol

A Multifactor Hash Digest Challenge-Response Authentication Scheme for Session Initiation Protocol

Authentication is a process by which the sender and the receiver identify the legal communicating partners prior to commencement of message transactions. Authentication is a kind of security which is ascertained at the time of initiation of the communication between the two communicating entities like client and server. Network communications are found to be vulnerable due to the increase of number of threats from unknown intruders. Session Initiation Protocol (SIP) is used for initializing the session between two communicating devices or entities. This protocol is widely used in multimedia communications. SIP is a powerful signaling protocol which initializes, establishes, maintains, and terminates the session between the communicating devices. Many authentication schemes were proposed for SIP from time to time. Here we propose a new authentication scheme for SIP based on Multifactor Hash Digest Challenge-Response Sequence Count method. This method enhances the SIP authentication and overcomes vulnerability attacks like Password guessing, Server spoofing, Replay, Bucket Brigade and Modification Attacks. This method ensures the Confidentiality and Integrity in SIP Authentication process.

K. Gokulraj | S. Santhosh Babu

[1] S. Santhosh Baboo,et al. A Secure Dynamic Authentication Scheme for Smart Card based Networks , 2010 .

[2] Jon Peterson,et al. Session Initiation Protocol (SIP) Authenticated Identity Body (AIB) Format , 2004, RFC.

[3] Luca Veltri,et al. SIP security issues: the SIP authentication procedure and its processing load , 2002 .

[4] Ibrahim Sogukpinar,et al. SIP Authentication Scheme using ECDH , 2007 .

[5] Lawrence C. Stewart,et al. HTTP Authentication: Basic and Digest Access Authentication , 1999 .

[6] Jari Arkko,et al. Security Mechanism Agreement for SIP Sessions , 2003 .

[7] Jia Lun Tsai. Efficient Nonce-based Authentication Scheme for Session Initiation Protocol , 2009, Int. J. Netw. Secur..

[8] Whitfield Diffie,et al. New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.

[9] Chun-Li Lin,et al. A password authentication scheme with secure password updating , 2003, Comput. Secur..

[10] Chou Chen Yang,et al. Secure authentication scheme for session initiation protocol , 2005, Comput. Secur..