{"title":"Ipv4域和Ipv6域之间的SIP端到端安全","authors":"Xing Jiang, J. Atwood","doi":"10.1109/SECON.2005.1423294","DOIUrl":null,"url":null,"abstract":"The session initiation protocol (SIP) carries the endpoint IP addresses, as part of its message format. When one end-point is in an IPv4 addressing domain, and the other is in an IPv6 addressing domain, a NAT-PT gateway must be used at the network level, to translate the protocol headers. The message bodies are altered by an application level gateway (ALG), to reflect the changed addresses. However, this alteration causes end-to-end security mechanisms to fail. We describe a proposal for a SIP end-to-end security mechanism between IPv4 networks and IPv6 stub domains, which overcomes the failure. We have validated the proposal using the PROMELA formal specification language and the SPIN validation system.","PeriodicalId":129377,"journal":{"name":"Proceedings. IEEE SoutheastCon, 2005.","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-04-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"SIP end-to-end security between Ipv4 domain and Ipv6 domain\",\"authors\":\"Xing Jiang, J. Atwood\",\"doi\":\"10.1109/SECON.2005.1423294\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The session initiation protocol (SIP) carries the endpoint IP addresses, as part of its message format. When one end-point is in an IPv4 addressing domain, and the other is in an IPv6 addressing domain, a NAT-PT gateway must be used at the network level, to translate the protocol headers. The message bodies are altered by an application level gateway (ALG), to reflect the changed addresses. However, this alteration causes end-to-end security mechanisms to fail. We describe a proposal for a SIP end-to-end security mechanism between IPv4 networks and IPv6 stub domains, which overcomes the failure. We have validated the proposal using the PROMELA formal specification language and the SPIN validation system.\",\"PeriodicalId\":129377,\"journal\":{\"name\":\"Proceedings. IEEE SoutheastCon, 2005.\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-04-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings. IEEE SoutheastCon, 2005.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SECON.2005.1423294\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings. IEEE SoutheastCon, 2005.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SECON.2005.1423294","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
SIP end-to-end security between Ipv4 domain and Ipv6 domain
The session initiation protocol (SIP) carries the endpoint IP addresses, as part of its message format. When one end-point is in an IPv4 addressing domain, and the other is in an IPv6 addressing domain, a NAT-PT gateway must be used at the network level, to translate the protocol headers. The message bodies are altered by an application level gateway (ALG), to reflect the changed addresses. However, this alteration causes end-to-end security mechanisms to fail. We describe a proposal for a SIP end-to-end security mechanism between IPv4 networks and IPv6 stub domains, which overcomes the failure. We have validated the proposal using the PROMELA formal specification language and the SPIN validation system.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
