TY - JOUR
T1 - A secure and efficient SIP authentication scheme for converged VoIP networks
AU - Yoon, Eun Jun
AU - Yoo, Kee Young
AU - Kim, Cheonshik
AU - Hong, You Sik
AU - Jo, Minho
AU - Chen, Hsiao Hwa
N1 - Funding Information:
The authors thank the anonymous reviewers for their constructive comments, which helped us to improve the overall quality of the paper. This research was supported by Ministry of Culture, Sports and Tourism (MCST) and Korea Culture Content Agency (KOCCA) in the Culture Technology (CT) Research & Development Program, the Korean government. This research was supported by the Brain Korea 21 program, Ministry of Education, Science and Technology, the Korean government.
PY - 2010/9/1
Y1 - 2010/9/1
N2 - Session Initiation Protocol (SIP) has been widely used in current Internet protocols such as Hyper Text Transport Protocol (HTTP) and Simple Mail Transport Protocol (SMTP). SIP is a powerful signaling protocol that controls communications on the Internet for establishing, maintaining and terminating sessions. The services that are enabled by SIP are equally applicable to mobile and ubiquitous computing. This paper demonstrates that recently proposed SIP authentication schemes are insecure against attacks such as off-line password guessing attacks, Denning-Sacco attacks and stolen-verifier attacks. In order to overcome such security problems, a new secure and efficient SIP authentication scheme in a converged VoIP network based on elliptic curve cryptography (ECC) is proposed and it works to exploit the key block size, speed, and security jointly.
AB - Session Initiation Protocol (SIP) has been widely used in current Internet protocols such as Hyper Text Transport Protocol (HTTP) and Simple Mail Transport Protocol (SMTP). SIP is a powerful signaling protocol that controls communications on the Internet for establishing, maintaining and terminating sessions. The services that are enabled by SIP are equally applicable to mobile and ubiquitous computing. This paper demonstrates that recently proposed SIP authentication schemes are insecure against attacks such as off-line password guessing attacks, Denning-Sacco attacks and stolen-verifier attacks. In order to overcome such security problems, a new secure and efficient SIP authentication scheme in a converged VoIP network based on elliptic curve cryptography (ECC) is proposed and it works to exploit the key block size, speed, and security jointly.
UR - http://www.scopus.com/inward/record.url?scp=77955431593&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=77955431593&partnerID=8YFLogxK
U2 - 10.1016/j.comcom.2010.03.026
DO - 10.1016/j.comcom.2010.03.026
M3 - Article
AN - SCOPUS:77955431593
SN - 0140-3664
VL - 33
SP - 1674
EP - 1681
JO - Computer Communications
JF - Computer Communications
IS - 14
ER -