基于能力的轻量级SIP安全机制研究
|
摘要
SIP(Session Initial Protocol)是伴随着互联网的发展而诞生和发展的,并以其简单易用以及良好的扩展性和开放性等优势,已发展成为下一互联网至关重要的应用协议。SIP本身缺乏相应有效的安全机制。现有SIP安全机制普遍存在一定的使用局限性和安全漏洞,并且会带来如服务器负担过重之类的负面影响,从而降低SIP的服务效率和质量,会影响SIP会话网络的安全性和稳定性。同时,SIP的承载运行环境将是高度开放并且分布式异构的下一代互联网,具有很大不确定性和不可靠性,这将给SIP相应功能安全、可靠实现带来极大的隐患。高效、便捷的SIP安全机制对于SIP进一步的发展和推广应用具有十分重要的意义。
SIP安全机制必须从协议本身入手,并结合下一代互联网的特殊性全方位地进行考虑,同时要保持下一代互联网的整体性和一致性等特性。本文首先详细研究了SIP相关重要概念和属性,重点分析了SIP消息规范,包括SIP请求消息和响应消息;随后对SIP安全威胁以及现有IP安全机制进行了详细分析,主要分析了注册劫持、服务器伪装、消息篡改和拒绝服务等安全问题,并对现有的SIP安全认证和加密方式进行了综述,包括HTTP摘要认证、基于身份的安全认证、S/MIME加密、TLS加密、IPSec加密。在此基础上,研究了基于ECDH算法的轻量级SIP安全认证以及密钥协商机制,并引入一次口令机制,提出了基于ECODH的安全验证和密钥协商机制,对其进行了安全性论证,并与现有的RSA加密、DH密钥协商分析对比证明了其高效的轻量特性;同时本文还借鉴了IP路由器利用能力标记选择数据来防御DoS/DDoS的思想,在每个SIP网络域设置边界代理服务器对SIP消息执行“能力”分析处理,对所有过往的SIP消息全程监控和预警,以更好地防御DoS/DDoS安全威胁。这里的“能力”是指边界代理服务器选择处理SIP消息行为的参照依据,包括了符合SIP消息行为特征的相关安全属性与鉴别准则。
本文提出的SIP安全机制更安全、高效和轻便,它解决了ECDH验证和密钥协商用户密码容易被窃取的风险,协商密钥较为简洁,实现过程便捷,并且更为完备地符合标准安全性评估规范。同时,本文引入“能力”标签,对过往SIP消息进行全程监控和预警,变被动防御为主动防御,能更为智能化地对不合法的SIP消息进行过滤,有效抵制DoS/DDoS。另外,对SIP网络拓扑轻量化地优化,便于SIP功能更为快捷地实现。
SIP was brought up and develops along with the Internet development, it has become a critical application protocol for the NGN(Next Generation Network)due to its advantage of simple structure with better extensibility and openness, and its convenience to be carried out. However, SIP has no corresponding effective security mechanism on its own. The existing security mechanisms for SIP have some certain limitations and security vulnerabilities universally. Moreover, these security measures will also bring some negative impacts, such as much heavier burdens for SIP servers during the connections and business process, reducing the efficiency and quality of services through SIP, affecting the security and stability of the SIP Session Network. Meanwhile, the loadbearing circumstance for SIP to run is a highly open and distributed application environment with great uncertainty and unreliability, resulting in serious latent security risks for the corresponding function safely and reliably achieving of SIP. So, an efficient and convenient security mechanism is very important for the further development and application for SIP.
The security mechanism for SIP should be comprehensively considered combining the intrinsic characteristics of protocol itself and the particularity of NGN, maintaining its consistency, integrity and other special features. In this paper, we firstly discuss the important concepts and attributes of SIP, focusing on the specification of SIP message, including the request message and response message of SIP. Secondly,we make classified research about the existing security threats and mechanisms of SIP in detail, such as registration hijacks, server disguising, message tampering, DoS(Denial of Service) and so on, and give detailed study and analysis on existing SIP security authentication and encryption, including HTTP digest authentication, identity-based security authentication, S/MIME encryption, TLS encryption, IPSec encryption. Thirdly, we study an advanced lightweight security authentication and key negotiation mechanism based on ECDH algorithm, in which one-time password authentication, and a new authentication and key negotiation method based on ECODH are introduced. Subsequently , we demonstrate its properties of security according to the Key Negotiation Security Properties Standard. It shows the highly lightweight characteristics of the new protocol by comparison the amount of its calculation with existing RSA encryption, DH key agreement. As we know, the DoS/DDoS defense for IP networks benefits from the capabilities signing during the data selection in routers. In this paper, we combine the instinct characteristics of SIP and the achievement of credibility research for NGN, configuring boundary proxy servers in every SIP network domain to perform capabilities analysis and process to SIP messages, monitoring and prewarning them simultaneously during the whole procedure to well defending DoS/DDoS. Besides, we also improve the topology of SIP network to improve the overall implementation in a lightweight pattern. The capabilities are used for boundary proxy servers to choose the coming SIP messages as the standard reference, including security attributes and identification strategies associated with the SIP message behavioral characteristics.
Based on the above research work, we proposed a more appropriate capabilities-based and lightweight security scheme for SIP, which is more suitable for its further applications in NGN. Comparing to the existing SIP security mechanisms, it is more secure, efficient and portable. The proposed solution is able to avoid the risks of user password being easily stolen for the authentication and key agreement process based on ECDH, and it is characterized of more concise consultation key, easy-to-realization, and conforming to the security assessment specifications perfectly. Also, for our solution monitoring and prewarning SIP messages through capabilities analysis procedure during the whole process, it transforms passive defense into active defense, filtering illegitimate SIP messages more intelligently, and thus defensing DoS/DDoS effectively. Additionally, the lightweight optimization for SIP network topology will make implementation of SIP functions easier and more efficient.
SIP安全机制必须从协议本身入手,并结合下一代互联网的特殊性全方位地进行考虑,同时要保持下一代互联网的整体性和一致性等特性。本文首先详细研究了SIP相关重要概念和属性,重点分析了SIP消息规范,包括SIP请求消息和响应消息;随后对SIP安全威胁以及现有IP安全机制进行了详细分析,主要分析了注册劫持、服务器伪装、消息篡改和拒绝服务等安全问题,并对现有的SIP安全认证和加密方式进行了综述,包括HTTP摘要认证、基于身份的安全认证、S/MIME加密、TLS加密、IPSec加密。在此基础上,研究了基于ECDH算法的轻量级SIP安全认证以及密钥协商机制,并引入一次口令机制,提出了基于ECODH的安全验证和密钥协商机制,对其进行了安全性论证,并与现有的RSA加密、DH密钥协商分析对比证明了其高效的轻量特性;同时本文还借鉴了IP路由器利用能力标记选择数据来防御DoS/DDoS的思想,在每个SIP网络域设置边界代理服务器对SIP消息执行“能力”分析处理,对所有过往的SIP消息全程监控和预警,以更好地防御DoS/DDoS安全威胁。这里的“能力”是指边界代理服务器选择处理SIP消息行为的参照依据,包括了符合SIP消息行为特征的相关安全属性与鉴别准则。
本文提出的SIP安全机制更安全、高效和轻便,它解决了ECDH验证和密钥协商用户密码容易被窃取的风险,协商密钥较为简洁,实现过程便捷,并且更为完备地符合标准安全性评估规范。同时,本文引入“能力”标签,对过往SIP消息进行全程监控和预警,变被动防御为主动防御,能更为智能化地对不合法的SIP消息进行过滤,有效抵制DoS/DDoS。另外,对SIP网络拓扑轻量化地优化,便于SIP功能更为快捷地实现。
SIP was brought up and develops along with the Internet development, it has become a critical application protocol for the NGN(Next Generation Network)due to its advantage of simple structure with better extensibility and openness, and its convenience to be carried out. However, SIP has no corresponding effective security mechanism on its own. The existing security mechanisms for SIP have some certain limitations and security vulnerabilities universally. Moreover, these security measures will also bring some negative impacts, such as much heavier burdens for SIP servers during the connections and business process, reducing the efficiency and quality of services through SIP, affecting the security and stability of the SIP Session Network. Meanwhile, the loadbearing circumstance for SIP to run is a highly open and distributed application environment with great uncertainty and unreliability, resulting in serious latent security risks for the corresponding function safely and reliably achieving of SIP. So, an efficient and convenient security mechanism is very important for the further development and application for SIP.
The security mechanism for SIP should be comprehensively considered combining the intrinsic characteristics of protocol itself and the particularity of NGN, maintaining its consistency, integrity and other special features. In this paper, we firstly discuss the important concepts and attributes of SIP, focusing on the specification of SIP message, including the request message and response message of SIP. Secondly,we make classified research about the existing security threats and mechanisms of SIP in detail, such as registration hijacks, server disguising, message tampering, DoS(Denial of Service) and so on, and give detailed study and analysis on existing SIP security authentication and encryption, including HTTP digest authentication, identity-based security authentication, S/MIME encryption, TLS encryption, IPSec encryption. Thirdly, we study an advanced lightweight security authentication and key negotiation mechanism based on ECDH algorithm, in which one-time password authentication, and a new authentication and key negotiation method based on ECODH are introduced. Subsequently , we demonstrate its properties of security according to the Key Negotiation Security Properties Standard. It shows the highly lightweight characteristics of the new protocol by comparison the amount of its calculation with existing RSA encryption, DH key agreement. As we know, the DoS/DDoS defense for IP networks benefits from the capabilities signing during the data selection in routers. In this paper, we combine the instinct characteristics of SIP and the achievement of credibility research for NGN, configuring boundary proxy servers in every SIP network domain to perform capabilities analysis and process to SIP messages, monitoring and prewarning them simultaneously during the whole procedure to well defending DoS/DDoS. Besides, we also improve the topology of SIP network to improve the overall implementation in a lightweight pattern. The capabilities are used for boundary proxy servers to choose the coming SIP messages as the standard reference, including security attributes and identification strategies associated with the SIP message behavioral characteristics.
Based on the above research work, we proposed a more appropriate capabilities-based and lightweight security scheme for SIP, which is more suitable for its further applications in NGN. Comparing to the existing SIP security mechanisms, it is more secure, efficient and portable. The proposed solution is able to avoid the risks of user password being easily stolen for the authentication and key agreement process based on ECDH, and it is characterized of more concise consultation key, easy-to-realization, and conforming to the security assessment specifications perfectly. Also, for our solution monitoring and prewarning SIP messages through capabilities analysis procedure during the whole process, it transforms passive defense into active defense, filtering illegitimate SIP messages more intelligently, and thus defensing DoS/DDoS effectively. Additionally, the lightweight optimization for SIP network topology will make implementation of SIP functions easier and more efficient.
引文
[1]吴建平,吴茜,徐恪.下一代互联网体系结构基础研究及探索[J].计算机学报,2008,31(9):1536-1548.
[2]郎为民,张昆,宋壮志.下一代网络体系结构研究[J].信息工程大学学报,2007,8(4):411-414.
[3]桂海源,张碧玲.软交换与NGN [M].北京:人民邮电出版社,2009.
[4]黄永峰,李建庆.下一代网络核心控制协议[M].北京:人民邮电出版社,2009.
[5]徐培文,谢水珍,杨从保.软交换与SIP实用技术[M].北京:机械工业出版社,2007.
[6] P.Mehta,S.Udani.Overview of Voice over IP[R],Technical Report MS-CIS-01-31, Department of Computer Information Science,February 2001:36-41.
[7] J.Rosenberg.SIP Session Initiation Protocol[S].RFC3261,June 2002.
[8] J.Rosenberg.Reliability of Provisional Responses in the SIP[S].RFC3262.June 2002.
[9] J.Rosenberg.Session Initiation Protocol(SIP):Locating SIP Servers[S].RFC3263,June 2002.
[10] J.Rosenberg.An Offer/Answer Model with Session[S].RFC3264,June 2002.
[11] J.Rosenberg.Session Initiation Protocol(SIP)-Specific Event Notification[S].RFC3265,June 2002.
[12]方东辉.一种SIP应用层安全机制的设计与实现[D].哈尔滨:哈尔滨工业大学,2007.
[13]林闯,雷蕾.下一代互联网体系结构研究[J].计算机学报.2007,5(30):693-711.
[14]徐培文,谢水珍,杨从保.软交换与SIP实用技术[M].北京:机械工业出版社,2007.
[15]周海华,边恩炯.下一代互联网:SIP原理与应用[M].北京:机械工业出版社,2006.
[16]张智江,张云勇,刘韵洁.SIP协议及其应用[M].北京:人民邮电出版社,2009.
[17]万晓榆,樊自甫,宗晓飞.下一代网络安全技术[M].北京:人民邮电出版社,2007.
[18] Wu Jian-Ping,Xu Ke.Research on next-generation internet architecture[J].Journal of Computer Science and Technology,2006,21(5):723-731.
[19]林闯,任丰原.可控可信可扩展的新一代互联网[J].软件学报,2004,12:1815-1821.
[20] Braden-R , Clark-D , Shenker-S . Integrated services in the Internet architecture:An overview[S].IETF,RFC1633,June 1994.
[21] Carlson-M,Weiss-W,Blake-S et al.An architecture for differentiated services[S].IETF,RFC2475,Dec 1998.
[22] Francis P,Gummadi R.IPNL:A NAT-Extended Internet Architecture[R].Proceedings of the ACM SIGCOMM,San Die2go,CA,2001:69-80.
[23]邱玲.第三代移动通信技术[M].北京:人民邮电出版社,2001.
[24]乔嘉.基于SIP协议的即时通讯系统的研究与实现[D].北京:北京邮电大学硕士学位论文,2006.
[26]刘晓宇.基于SIP的即时通讯系统的实现与应用[D].北京:中国科学院计算机技术研究所硕士学位论文,2006.
[27]徐晓宇,张惠民.SIP会话协议在第三代移动网络中关键问题研究[J].数据通信,2004,2(2):34-37.
[28]陈昌鹏,晋磊,陈凯等.SIP协议的安全分析[J].计算机应用与软件,2007,24(8):172-174.
[29] Cheriton-DR , Gritter-M . TRIAD : A scalable deployable NAT-based Internet architecture[R].Stanford Computer Science Technical Report,2000.
[30] AbdiMidarressi.Control and Management In Next Generation Networks:Challenges and Opportunities[J].IEEE Communications Manazine,2007,39(2 ):94-102.
[31] W.Werapun,A.Abou,EI-Kalam,B.Paillassa,J.Fasson.Solution Analysis for SIP Security Threats[R].Multimedia Computing and Systems,ICMCS'09 International Conference, April 2009:174-180.
[32] J.Seedorf.Security Challenges for P2P-SIP[R],IEEE Network Special Issue on Securing Voice over IP,September 2006.
[33] Y.Rebahi,et Al.SIP Service Providers and the Spam Problem[R].Proceedings of the 2nd Workshop on Securing Voice over IP,June 2005.
[34] D.Geneiatakis,D.Kambourakis,et al.SIP Message Tampering:THE SQL code INJECTION attack[J].IEEE,Sept 2005.
[35] Sven Ehlert,Dimitris Geneiatakis,Thomas Magedanz.Survey of network security systems to counter SIP-based denial-of-service attacks[J].computers&security,29(2010):225-243.
[36] S.El-Sawda,P.Urien,SIP Security Attacks and Solutions:A state of-the-art review[R], Information and Communication Technologies 2006,ICTTA'06,2:3187-3191.
[37] D.Geneiatakis,T.Dagiouklas,e al.Survey of Security Vulnerabilities in SIP[J].IEEE Communications Tutorials and Surveys,Oct 2006:68-81.
[38] J.Arkko,V.Torvinen,G.Camarillo,A.Niemi,T.Haukka.Security Mechanism Agreement for the Session Initiation Protocol (SIP)[S].RFC3329,IETF,January 2003.
[39] SHAMIR-A . Identity-based cryptosystems and signature schemes[A] . Advances in Cryptology-CRYPTO ' 84 , Lecture Notes in Computer Science 196[C] . Berlin :Springer-Verlag,1984:47-53.
[40] BONEH-D,FRANKLIN-M.Identity-based encryption from the weil pairing[A].Advances in Cryptology-CRYPTO2001,Lecture Notes in Computer Science 2139[C].Berlin:Springer-Verlag,2001:213-229.
[41] J.Ring,K.Choo,E.Foo,M.Looi.A new authentication mechanism and key agreement protocol for SIP using Identity-based cryptography[R].Proc.AusCERT2006,May 2006:57-72.
[42] L.Wu,Y.Zhang,F.Wang.A new provably secure authenticationand key agreement protocol for SIP using ECC[J].Comput.Stand.Interfaces,2008.
[43] Jaeduck Choi,Souhwan Jung,Kwangyong Bae,Hokun Moon,A Lightweight Authentication and Hop-by-Hop Security Mechanism for SIP Network[R].International Conference on Advanced Technologies for Communications,2008,235-238.
[44]陆万顺,符云清.一种轻量级SIP安全机制研究[J].网络安全技术与应用,2011,03:64-67.
[45] Ram Sdell B.S/MIME Version 3 Message Sepcification[S].RFC2633,1999:11-12.
[46] Dierks T,C.Allen.The TLS Protocol Version 1.0[S].RFC2246,January 1999.
[47]张雄刚.基于SIP通信的安全性研究[D].武汉:华中科技大学,2007.
[48] J.Halpern,IP Telephony Security in Depth.White Paper[S].Cisco Systems,2002,32-45.
[49] Kent S,R.Atkinson.Security Architecture for the Internet Protocol[S].RFC2401,November 1998,243-268.
[50] E.Y.Chen.Detecting DoS attacks on SIP systems[J].1st IEEE Workshop on VoIP Management and Security,April 2006:53-58.
[51] S.Ehlert,Chengjian-Wang,TMagedanz,D.Sisalem.Specification-Based Denial-of-Service Detection for SIP Voice-over-IP Networks[R] . Internet Monitoring and Protection ,2008.ICIMP'08.The Third International Conference,2008:59-66.
[52] D.Sisalem,J.Kuthan,S.Ehlert.Denial of service attacks targeting a SIP VoIP infrastructure: attack scenarios and prevention mechanisms[J].Network,IEEE,2006, 20:26-31.
[53] Yang-X , Wetherall-David , Anderson-Thomas . TVA : A DoS-Limiting Network Architecture[J].Computer Communication Review,2005,35(4):241-252.
[54] Leslie Lamport.Password Authentication with Insecure Communication[R].Communications of the ACM,November 1981:770-772.
[55]林闯,彭雪海.可信网络研究[J].计算机学报,2005,28(5):751-758.
[56]刘拥民,蒋新华.下一代互联网的可信性[J].信息与控制.2008,3(37):352-357.
[57] Lin C , Peng X-H . Research on network architecture with trustworthiness and controllability[J].Journal of Computer Science and Technology,2006,21(5):732-739
[58] Tom Anderson D W , Roscoe Timothy . Preventing Internet denial-of-service with capabilities[R].ACM SIGCOMM Computer Communication Review,2004,34(1):39-44.
[59] G.Zhang,S.Ehlert,T.Magedanz,D.Sisalem.Denial of service attack and prevention on SIP VoIP infrastructures using DNS flooding[R].Proceedings of the 1st international conference on Principles,systems and applications of IP telecommunications,New York City,New York:ACM,2007:57-66.
[60]罗军舟,韩志耕.一种可信可控的网络体系及协议结构[J].计算机学报,2009,3(32):391-404.
[61]侯孟波,徐秋亮,蒋瀚.构建无证书的两方认证密钥协商协议[J].计算机工程与应用,2010,46(8):1-4.
[62] Blake-Wilson S,Johnson D,Menezes A.Key agreement protocols and their security analysis[C].1997:30-45.
[63] Bellare M,Rogaway P.Entity authentication and key distribution[C].1993:110-125.
[64] Canetti R,Krawczyk H.Analysis of key exchange protocols and their use for building secure channels[C].2001:453-474.
[2]郎为民,张昆,宋壮志.下一代网络体系结构研究[J].信息工程大学学报,2007,8(4):411-414.
[3]桂海源,张碧玲.软交换与NGN [M].北京:人民邮电出版社,2009.
[4]黄永峰,李建庆.下一代网络核心控制协议[M].北京:人民邮电出版社,2009.
[5]徐培文,谢水珍,杨从保.软交换与SIP实用技术[M].北京:机械工业出版社,2007.
[6] P.Mehta,S.Udani.Overview of Voice over IP[R],Technical Report MS-CIS-01-31, Department of Computer Information Science,February 2001:36-41.
[7] J.Rosenberg.SIP Session Initiation Protocol[S].RFC3261,June 2002.
[8] J.Rosenberg.Reliability of Provisional Responses in the SIP[S].RFC3262.June 2002.
[9] J.Rosenberg.Session Initiation Protocol(SIP):Locating SIP Servers[S].RFC3263,June 2002.
[10] J.Rosenberg.An Offer/Answer Model with Session[S].RFC3264,June 2002.
[11] J.Rosenberg.Session Initiation Protocol(SIP)-Specific Event Notification[S].RFC3265,June 2002.
[12]方东辉.一种SIP应用层安全机制的设计与实现[D].哈尔滨:哈尔滨工业大学,2007.
[13]林闯,雷蕾.下一代互联网体系结构研究[J].计算机学报.2007,5(30):693-711.
[14]徐培文,谢水珍,杨从保.软交换与SIP实用技术[M].北京:机械工业出版社,2007.
[15]周海华,边恩炯.下一代互联网:SIP原理与应用[M].北京:机械工业出版社,2006.
[16]张智江,张云勇,刘韵洁.SIP协议及其应用[M].北京:人民邮电出版社,2009.
[17]万晓榆,樊自甫,宗晓飞.下一代网络安全技术[M].北京:人民邮电出版社,2007.
[18] Wu Jian-Ping,Xu Ke.Research on next-generation internet architecture[J].Journal of Computer Science and Technology,2006,21(5):723-731.
[19]林闯,任丰原.可控可信可扩展的新一代互联网[J].软件学报,2004,12:1815-1821.
[20] Braden-R , Clark-D , Shenker-S . Integrated services in the Internet architecture:An overview[S].IETF,RFC1633,June 1994.
[21] Carlson-M,Weiss-W,Blake-S et al.An architecture for differentiated services[S].IETF,RFC2475,Dec 1998.
[22] Francis P,Gummadi R.IPNL:A NAT-Extended Internet Architecture[R].Proceedings of the ACM SIGCOMM,San Die2go,CA,2001:69-80.
[23]邱玲.第三代移动通信技术[M].北京:人民邮电出版社,2001.
[24]乔嘉.基于SIP协议的即时通讯系统的研究与实现[D].北京:北京邮电大学硕士学位论文,2006.
[26]刘晓宇.基于SIP的即时通讯系统的实现与应用[D].北京:中国科学院计算机技术研究所硕士学位论文,2006.
[27]徐晓宇,张惠民.SIP会话协议在第三代移动网络中关键问题研究[J].数据通信,2004,2(2):34-37.
[28]陈昌鹏,晋磊,陈凯等.SIP协议的安全分析[J].计算机应用与软件,2007,24(8):172-174.
[29] Cheriton-DR , Gritter-M . TRIAD : A scalable deployable NAT-based Internet architecture[R].Stanford Computer Science Technical Report,2000.
[30] AbdiMidarressi.Control and Management In Next Generation Networks:Challenges and Opportunities[J].IEEE Communications Manazine,2007,39(2 ):94-102.
[31] W.Werapun,A.Abou,EI-Kalam,B.Paillassa,J.Fasson.Solution Analysis for SIP Security Threats[R].Multimedia Computing and Systems,ICMCS'09 International Conference, April 2009:174-180.
[32] J.Seedorf.Security Challenges for P2P-SIP[R],IEEE Network Special Issue on Securing Voice over IP,September 2006.
[33] Y.Rebahi,et Al.SIP Service Providers and the Spam Problem[R].Proceedings of the 2nd Workshop on Securing Voice over IP,June 2005.
[34] D.Geneiatakis,D.Kambourakis,et al.SIP Message Tampering:THE SQL code INJECTION attack[J].IEEE,Sept 2005.
[35] Sven Ehlert,Dimitris Geneiatakis,Thomas Magedanz.Survey of network security systems to counter SIP-based denial-of-service attacks[J].computers&security,29(2010):225-243.
[36] S.El-Sawda,P.Urien,SIP Security Attacks and Solutions:A state of-the-art review[R], Information and Communication Technologies 2006,ICTTA'06,2:3187-3191.
[37] D.Geneiatakis,T.Dagiouklas,e al.Survey of Security Vulnerabilities in SIP[J].IEEE Communications Tutorials and Surveys,Oct 2006:68-81.
[38] J.Arkko,V.Torvinen,G.Camarillo,A.Niemi,T.Haukka.Security Mechanism Agreement for the Session Initiation Protocol (SIP)[S].RFC3329,IETF,January 2003.
[39] SHAMIR-A . Identity-based cryptosystems and signature schemes[A] . Advances in Cryptology-CRYPTO ' 84 , Lecture Notes in Computer Science 196[C] . Berlin :Springer-Verlag,1984:47-53.
[40] BONEH-D,FRANKLIN-M.Identity-based encryption from the weil pairing[A].Advances in Cryptology-CRYPTO2001,Lecture Notes in Computer Science 2139[C].Berlin:Springer-Verlag,2001:213-229.
[41] J.Ring,K.Choo,E.Foo,M.Looi.A new authentication mechanism and key agreement protocol for SIP using Identity-based cryptography[R].Proc.AusCERT2006,May 2006:57-72.
[42] L.Wu,Y.Zhang,F.Wang.A new provably secure authenticationand key agreement protocol for SIP using ECC[J].Comput.Stand.Interfaces,2008.
[43] Jaeduck Choi,Souhwan Jung,Kwangyong Bae,Hokun Moon,A Lightweight Authentication and Hop-by-Hop Security Mechanism for SIP Network[R].International Conference on Advanced Technologies for Communications,2008,235-238.
[44]陆万顺,符云清.一种轻量级SIP安全机制研究[J].网络安全技术与应用,2011,03:64-67.
[45] Ram Sdell B.S/MIME Version 3 Message Sepcification[S].RFC2633,1999:11-12.
[46] Dierks T,C.Allen.The TLS Protocol Version 1.0[S].RFC2246,January 1999.
[47]张雄刚.基于SIP通信的安全性研究[D].武汉:华中科技大学,2007.
[48] J.Halpern,IP Telephony Security in Depth.White Paper[S].Cisco Systems,2002,32-45.
[49] Kent S,R.Atkinson.Security Architecture for the Internet Protocol[S].RFC2401,November 1998,243-268.
[50] E.Y.Chen.Detecting DoS attacks on SIP systems[J].1st IEEE Workshop on VoIP Management and Security,April 2006:53-58.
[51] S.Ehlert,Chengjian-Wang,TMagedanz,D.Sisalem.Specification-Based Denial-of-Service Detection for SIP Voice-over-IP Networks[R] . Internet Monitoring and Protection ,2008.ICIMP'08.The Third International Conference,2008:59-66.
[52] D.Sisalem,J.Kuthan,S.Ehlert.Denial of service attacks targeting a SIP VoIP infrastructure: attack scenarios and prevention mechanisms[J].Network,IEEE,2006, 20:26-31.
[53] Yang-X , Wetherall-David , Anderson-Thomas . TVA : A DoS-Limiting Network Architecture[J].Computer Communication Review,2005,35(4):241-252.
[54] Leslie Lamport.Password Authentication with Insecure Communication[R].Communications of the ACM,November 1981:770-772.
[55]林闯,彭雪海.可信网络研究[J].计算机学报,2005,28(5):751-758.
[56]刘拥民,蒋新华.下一代互联网的可信性[J].信息与控制.2008,3(37):352-357.
[57] Lin C , Peng X-H . Research on network architecture with trustworthiness and controllability[J].Journal of Computer Science and Technology,2006,21(5):732-739
[58] Tom Anderson D W , Roscoe Timothy . Preventing Internet denial-of-service with capabilities[R].ACM SIGCOMM Computer Communication Review,2004,34(1):39-44.
[59] G.Zhang,S.Ehlert,T.Magedanz,D.Sisalem.Denial of service attack and prevention on SIP VoIP infrastructures using DNS flooding[R].Proceedings of the 1st international conference on Principles,systems and applications of IP telecommunications,New York City,New York:ACM,2007:57-66.
[60]罗军舟,韩志耕.一种可信可控的网络体系及协议结构[J].计算机学报,2009,3(32):391-404.
[61]侯孟波,徐秋亮,蒋瀚.构建无证书的两方认证密钥协商协议[J].计算机工程与应用,2010,46(8):1-4.
[62] Blake-Wilson S,Johnson D,Menezes A.Key agreement protocols and their security analysis[C].1997:30-45.
[63] Bellare M,Rogaway P.Entity authentication and key distribution[C].1993:110-125.
[64] Canetti R,Krawczyk H.Analysis of key exchange protocols and their use for building secure channels[C].2001:453-474.