A Kerberos-based single sign-on system for VoIP SIP servers and clients with a terminal mobility capability

Li, Jung-Shian; Kao, Chuan-Kai; Lin, Shiou-Jing

doi:10.1109/3ca.2010.5533772

Cited by 3 publications

(3 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the INTEGRITY-AUTH header cannot be a void the offline password guessing attack .Wu et al [8] presented a new authenticated key exchange protocol (NAKE) to solve the existing problems in SIP original authentication. Jung-Shian Li et al [9] have proposed to use the Kerberos protocol with VOIP SIP.…”

Section: Related Work For Sip Authentication Schemesmentioning

confidence: 99%

Securing Session Initiation Protocol for VOIP Services

Elmahalwy¹,

Youness²,

Elkilani³

2015

IJCA

View full text Add to dashboard Cite

VOIP (voice Over Internet Protocol) has many advantages but at the same time it has security threats not encountered in PSTN (Public Switched Telephone Networks).The paper deals with the security of the widely used protocol for signaling. The Session Initiation protocol (SIP) is considered the most used signaling protocol for calls over the internet. Securing SIP is becoming more and more important. This paper focusing on the SIP security mechanisms of authentication, and proposing an authentication model based on the Kerberos protocol to provide single sign-on, achieving two way authentications, to reduce the computation against authentication checks for each client, and prevent against Session Teardown Attack and Registration Hijacking attack. It acts as a trust third party to allow secure access to VOIP services. In this paper we implemented the SIP-Kerberos system and record the average time that the users need to authenticate at Kerberos and the average time needed to register at SIP server. The measured performance result of the solution is suitable for heavy loads in the SIP architecture.

show abstract

Section: Related Work For Sip Authentication Schemesmentioning

confidence: 99%

Securing Session Initiation Protocol for VOIP Services

Elmahalwy¹,

Youness²,

Elkilani³

2015

IJCA

View full text Add to dashboard Cite

show abstract

“…Similar arguments have applied to home networks, but as such networks link into cloud services more attention needs to be paid to enhanced authentication of users. Some researchers have looked at the use of RFID [26], trusted third party [29], or smart-card [32], [37] technologies. In [26] an RFID tag is used to identify and authenticate users to access a personalized and interactive IPTV service.…”

Section: B Other Modes Of Authentication For Home Networkmentioning

confidence: 99%

“…Other researchers have looked at the use of RFID [26], trusted third party [29], or smart-card [32] technologies. However, the lack of a common interface mechanism to the home network implies that either additional components such as a biometric reader or RFID card would be required and the marginal benefits of user-authentication, over device-authentication have conspired to reinforce the status quo.…”

Section: Introductionmentioning

confidence: 99%