Secure authentication and key establishment in the SIP architecture

Abstract

This article deals with security features of SIP and focuses on advanced authentication and key establishment methods. These methods are described and a proposal of comprehensive security for the SIP architecture is presented in this article. The solution provides strong secure authentication of SIP users and protects against various attacks occurring in the SIP architecture. Furthermore, our proposal is implemented and tested. The experimental results from our proof of concept implementation are presented at the end of the text. Moreover, the conventional HTTP Digest method is also implemented and its performance is compared with methods in the proposal.