A dependable privacy protection for end-to-end VoIP via Elliptic-Curve Diffie-Hellman and dynamic key changes

Wang, Chia-Hui; Liu, Yu-Shun

doi:10.1016/j.jnca.2010.10.011

Cited by 36 publications

(20 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Skype uses its own proprietary secure VoIP communication protocol [22]. All the packets of Skype communication are encrypted with the 256-bit Advanced Encryption Standard (AES) [23].…”

Section: Overviewmentioning

confidence: 99%

A Study of Ten Popular Android Mobile VoIP Applications: Are the Communications Encrypted?

Azfar

Choo

Liu

2014

2014 47th Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

Mobile Voice over Internet Protocol (mVoIP) applications have gained increasing popularity in the last few years, with millions of users communicating using such applications (e.g. Skype). Similar to other forms of Internet and telecommunications, mVoIP communications are vulnerable to both lawful and unauthorized interceptions. Encryption is a common way of ensuring the privacy of mVoIP users. To the best of our knowledge, there has been no academic study to determine whether mVoIP applications provide encrypted communications. In this paper, we examine Skype and nine other popular mVoIP applications for Android mobile devices, and analyze the intercepted communications to determine whether the captured voice and text communications are encrypted (or not). The results indicate that most of the applications encrypt text communications. However, voice communications may not be encrypted in six of the ten applications examined.

show abstract

“…Skype uses its own proprietary secure VoIP communication protocol [22]. All the packets of Skype communication are encrypted with the 256-bit Advanced Encryption Standard (AES) [23].…”

Section: Overviewmentioning

confidence: 99%

A Study of Ten Popular Android Mobile VoIP Applications: Are the Communications Encrypted?

Azfar

Choo

Liu

2014

2014 47th Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

show abstract

“…The first method by Yang et al (2005) proposes an enhanced version of a challenge-response authentication concept, which relies on the difficulty of discrete logarithms. The second method by Wang and Liu (2011) also proposes a similar enhanced two tier challenge-response authentication strategy, by applying the elliptical-curve Diffie-Hellman (ECDH) algorithm and a key generation function (KGF). These methods are able to protect both host and client endpoints against password guessing attacks and server spoofing.…”

Section: Multipoint Video Conferencing Session Protection Structurementioning

confidence: 99%

Software-based serverless endpoint video combiner architecture for high-definition multiparty video conferencing

Baskaran

Chang

Loo

et al. 2013

Journal of Network and Computer Applications

View full text Add to dashboard Cite

“…The SIP proxy server is an intermediate device that receives SIP messages from clients and then forwards them to their destination SIP proxy servers through the WMNs. Compared with common telephone systems, VoIP over WMNs has to face more challenges including not only the speech quality degradation from delay-jitter and packet loss, but also the privacy threats [14][15][16][17]. In [2], A. D. Keromytis surveyed over 200 vulnerabilities in SIP implementations that had been disclosed in the CVE database from 1999 to 2009.…”

Section: Sip-based Secure Voip Communication Over Wmnsmentioning

confidence: 99%

PA-SIP: A Privacy-Aware SIP for VoIP over WMNs

Lin

Yang

2011

2011 7th International Conference on Wireless Communications, Networking and Mobile Computing

View full text Add to dashboard Cite

Voice over Internet Protocol (VoIP) over wireless mesh networks (WMNs) is becoming more and more popular due to its significant cost advantage, higher flexibility and wide coverage. One of the most basic requirements of VoIP is that it must provide privacy and security protection for VoIP clients. Unfortunately, little effort is spent on this area. In this paper, we focus on the privacy security of session initiation protocol (SIP) and propose a privacy-aware SIP called PA-SIP to enhance the VoIP privacy security. PA-SIP extends the SIP and applies a subjective logic based reputation mechanism to detect and isolate the insider malicious nodes. Finally, we analyze the PA-SIP in terms of security and performance.

show abstract

A dependable privacy protection for end-to-end VoIP via Elliptic-Curve Diffie-Hellman and dynamic key changes

Cited by 36 publications

References 17 publications

A Study of Ten Popular Android Mobile VoIP Applications: Are the Communications Encrypted?

A Study of Ten Popular Android Mobile VoIP Applications: Are the Communications Encrypted?

Software-based serverless endpoint video combiner architecture for high-definition multiparty video conferencing

PA-SIP: A Privacy-Aware SIP for VoIP over WMNs

Contact Info

Product

Resources

About