SIP signaling security for end-to-end communication

Ono, Kumiko; Tachimoto, Shinya

doi:10.1109/apcc.2003.1274257

Cited by 5 publications

(4 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…End-to-end security in application layer encryption is offered at the application layer by encryption programs in systems configured as sever and workstations configured as clients. Near the source as allowable is the encryption process, and as nearby as possible to the destination decryption will occur [1,2]. We also discovered from Glissa & Meddeb, (2019) [1], that when you merge end-toend with link layer encryption, it builds an efficient way to offer network protection.…”

Section: Application Layer Encryptionmentioning

confidence: 98%

See 1 more Smart Citation

End-To-End Security in Communication Networks: A Review

Bameyi

Misra

Idachaba

et al. 2021

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

Digital communications and e-commerce reshape corporate processes and add new risks to business activities. The recent outbreak of the coronavirus (COVID 19) pandemic, has led to an increase in the demand for instant messaging and videoconferencing. There has been the need to maximize the availability of messaging, and mostly videoconference platforms. These platforms provide endto-end communications services. Organizations have asked staff to work from home which necessitates work from home as well as meeting up with regular work schedule meetings which are carried out via these platforms mentioned. Communication Networks provide channels for such tasks to be carried out. These networks are used for the transmission for a wide range of valuable and confidential information. As a result, they draw the interest of persons who want to intercept or manipulate data or interrupt or damage the storage or communication of the networks. In this study a review of security as it pertains end-to-end connection is presented, we looked at a brief background of the issues which includes a description of security engineering with attendant examples, made our findings and observations. The paper ends with a brief in the form of a case study of a few ICT firms that provide end-to-end services. Such services fall into the category of instant messaging (IM), videoconferencing and remote management, showing how much they value end-to-end encryption and the impact it could have on their businesses.

show abstract

Section: Application Layer Encryptionmentioning

confidence: 98%

“…The more these communication methods are being used in companies or for remote control; the more critical the security services become. Equipment such as network servers may support users with a compact pack to ensure end-to-end communication [2]. The need for protection is not recent in communication networks.…”

Section: Introductionmentioning

confidence: 99%

End-To-End Security in Communication Networks: A Review

Bameyi

Misra

Idachaba

et al. 2021

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

show abstract

“…For instance, the caller ID in SIP has the form sip:callerID@ip_address and is typically encapsulated in SIP packets in plaintext. Although secured SIP is available to encrypt caller IDs, they are not authenticated [18]. Similar to SIP, caller ID is also transmitted in plaintext in H.323 during the call setup.…”

Section: Protocolsmentioning

confidence: 99%

End-to-End Detection of Caller ID Spoofing Attacks

Mustafa

Sadeghi

et al. 2018

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Caller ID (caller identification) is a service provided by telephone operators where the phone number and/or the name of the caller is transmitted to inform the callee who is calling. Today, most people trust the caller ID information and some banks even use Caller ID to authenticate customers. However, with the proliferation of smartphones and VoIP, it is easy to spoof caller ID information by installing a particular application on the smartphone or by using service providers that offer Caller ID spoofing. As the phone network is fragmented between countries and companies and upgrades of old hardware is costly, no mechanism is available today to let end-users easily detect Caller ID spoofing attacks. In this article, we propose a new approach of using end-to-end caller ID verification schemes that leverage features of the existing phone network infrastructure (CallerDec). We design an SMS-based and a timing-based version of CallerDec that works with existing combinations of landlines, cellular and VoIP networks and can be deployed at the liberty of the users. We implemented both CallerDec schemes as an App for Android-based phones and validated their effectiveness in detecting spoofing attacks in various scenarios.

show abstract

“…Johan Bilien has recommended solutions to secure VoIP using S/MIME, TLS and MIKEY for SIP signaling to provide end-to-end authentication and session key distribution, using SRTP on payload to protect voice media [10] [11]. NTT Network Service Systems Laboratories has proposed two approaches to provide security on both SIP signaling and media streams for end-to-end communication in different scenarios [12]. In the following section, we propose our enhanced view of authentication in VoIP.…”

Section: Comparative Analysis Of Existing Authentication Schemesmentioning

confidence: 99%

A Network Based Authentication Scheme for VoIP

Verma¹

2006

2006 International Conference on Communication Technology

View full text Add to dashboard Cite

This paper presents a VoIP networking solution that incorporates network-based authentication as an inherent feature. The authentication feature that we propose introduces a range of flexibilities not available in the PSTN. Since most calls will likely terminate on the network of another service provider, we also present a mechanism using which networks can mutually authenticate each other to afford the possibility of authentication across networks.

show abstract

SIP signaling security for end-to-end communication

Cited by 5 publications

References 12 publications

End-To-End Security in Communication Networks: A Review

End-To-End Security in Communication Networks: A Review

End-to-End Detection of Caller ID Spoofing Attacks

A Network Based Authentication Scheme for VoIP

Contact Info

Product

Resources

About