New Secure Authentication and Key agreement Scheme for Session Initiation Protocol using Elliptic Curve Cryptography

  IJCTT-book-cover
 
International Journal of Computer Trends and Technology (IJCTT)          
 
© 2015 by IJCTT Journal
Volume-30 Number-4
Year of Publication : 2015
Authors : Vaishali P. Bhoge, Dr. Sadhna Mishra, Prof. Bhagat Raghuwanshi
  10.14445/22312803/IJCTT-V30P135

MLA

Vaishali P. Bhoge, Dr. Sadhna Mishra, Prof. Bhagat Raghuwanshi "New Secure Authentication and Key agreement Scheme for Session Initiation Protocol using Elliptic Curve Cryptography". International Journal of Computer Trends and Technology (IJCTT) V30(4):200-205, December 2015. ISSN:2231-2803. www.ijcttjournal.org. Published by Seventh Sense Research Group.

Abstract -
VoIP is new emerging technology for delivery of voice communication and multimedia session over the Internet. In VoIP network voice and signalling are multiplexed and travel as normal data inside the IP network. This growing popularity is due to cost saving factor and flexibility of services. Session Initiation Protocol (SIP) is an application layer control protocol for establish, maintain and terminates user sessions in VoIP network. The SIP authentication is based on HTTP digest authentication scheme which suffer from various security threats and attacks. Many Researchers have proposed different SIP authentication schemes to secure the SIP authentication. Recently, Tang et. al proposed a SIP authentication scheme using Elliptic Curve Cryptography (ECC) but still their scheme suffer from the offline-password guessing attack and registration attack. So to overcome such security threat we proposed A new secure authentication and key agreement scheme for SIP using Elliptic Curve Cryptography.

References
[1] Rosenberg J., Schulzrinne H., Camarillo G., Johnston A., Peterson J., Sparks R., Handley M. and Schooler E. SIP: Session Initiation Protocol , RFC 3261. IETF Network Working Group, June 2002.
[2] Franks J., Hallam-Baker P., Hostetler J., Lawrence S., Leach P., Luotonen A. and Stewart L. HTTP Authentication: Basic and Digest Access Authentication.,RFC 2617, IETF Network Working Group, June 1999.
[3] The Voice over IP Security Alliance VOIPSA, VoIP Security and Privacy Threat Taxonomy – PublicRelease 1.0, October 2005.
[4] Ganesh Sonwane, Mr. B. R. Chandavarkar Security Analysis of Session Initiation Protocol in IPv4 and IPv6 based VoIP network Second International Conference on Advanced Computing, Networking and Security (ADCONS), Dec 2013.
[5] Yang CC,Wang RC, Liu WT Secure authentication scheme for session initiation protocol. ComputSecur 24:381–386, 2005. [6] Durlanik A, Sogukpinar I, SIP Authentication Scheme using ECDH. World EnformatikaSocity. 2005.
[7] Yoon EJ, Yoo KY Cryptanalysis of DS-SIP authentication scheme using ECDH, International Conference on New Trends in Information and Service Science 642–647, 2009.
[8] Chen TH, Yeh HL, Liu PC, Hsiang HC, Shih WK, A secured authentication protocol for SIP using elliptic curves cryptography. CN, CCIS 119:46–55, 2010.
[9] Arshad R, Ikram N, Elliptic curve cryptography based mutual authentication scheme for session initiation protocol. Multimed Tool Appl. doi:10.1007/s11042-011-0787-0, 2011.
[10] David Butcher,Xiangyang Li and Jinhua Guo, Security Challenges and Defense in VOIP Infrastructures. IEEE Transaction On System.Man.and Cybernetics-Part C, 2007.
[11] Franks et al. HTTP authentication: Basic and Digest authentication., RFC 2617, June 1999.
[12] Hongbin Tang, Xinsong Liu, Cryoptonalysis of Arshad et al.’s ECCbased mutual authentication scheme for session initiation protocol. Springer+Business Media, LCC 2012.
[13] H.Hakan kilinc and Tugrul Yanic A Survey of SIP Authentication and Key Agreement Scheme. IEEE Communication Survey and Tutorials vol 16,No.2, 2014.

Keywords
Session Initiation Protocol, Elliptic Curve Cryptography, HTTP digest authenticatoin.