| 一种增强的ZRTP认证机制 |
| |
| 引用本文: | 肖鸿飞,刘长江.一种增强的ZRTP认证机制[J].计算机工程,2011,37(13):119-121,124. |
| |
| 作者姓名: | 肖鸿飞 刘长江 |
| |
| 作者单位: | 解放军信息工程大学电子技术学院,郑州,450004 |
| |
| 摘 要: | ZRTP本身的认证机制在一些特殊的情况下无法抵抗中间人攻击。为此,基于简单密钥协商协议(SAKA)提出一种NSAKA算法,改进ZRTP的认证机制,使用RFC4474中的SIP身份认证模型来安全传输用户预共享的秘密口令。通过分析表明,该方案可以提高ZRTP抵抗中间人攻击的能力,并弥补SAKA算法原有的安全缺陷。
|
| 关 键 词: | SRTP协议 ZRTP协议 中间人攻击 SIP身份认证 简单认证密钥协商协议 |
| 收稿时间: | 2011-01-25 |
Enhanced Authentication Mechanism of ZRTP |
| |
| XIAO Hong-fei,LIU Chang-jiang.Enhanced Authentication Mechanism of ZRTP[J].Computer Engineering,2011,37(13):119-121,124. |
| |
| Authors: | XIAO Hong-fei LIU Chang-jiang |
| |
| Affiliation: | (Institute of Electronic Technology,PLA Information Engineering University,Zhengzhou 450004,China) |
| |
| Abstract: | The original authentication mechanism of Zimmermann RTP(ZRTP) is vulnerable to the Man In The Middle(MITM) attack in certain conditions,although it is a light-weighted and efficient key agreement protocol.This paper introduces a new algorithm named NSAKA to enhance the original mechanism,which is based on the basic concept of Simple Authentication Key Agreement(SAKA).The Session Initiation Protocol(SIP) identity authentication model of RFC4474 is also employed to securely transmit the users’ pre-shared secret password.The scheme can effectively enhance the ability to resist against the MITM attack of ZRTP and remedy the primary vulnerabilities of SAKA |
| |
| Keywords: | Secure RTP(SRTP) Zimmermann RTP(ZRTP) Man In The Middle(M1TM) attack Session Initiation Protocol(SIP) identity authentication Simple Authentication Key Agreement(SAKA) protocol |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
