| Summary: | 碩士 === 國立中正大學 === 資訊工程研究所 === 100 === Network security has become an important issue since various attacks are appearing in the IP network, and the key exchange protocol is one of the most important cryptography mechanisms to protect end-to-end communication by the secret session key encryption. In this paper, we focus on the four-party key exchange protocol in an environment in which two clients are registered under two distinct servers, and both registered parties have to communicate through their corresponding server respectively. We integrate SIP with the three-way key exchange and agreement protocol (TW-KEAP), denoted by SIP+TW-KEAP. The SIP+TW-KEAP uses an attribute (a=crypto) of SDP in the SIP message body to carry key parameters without exchanging any extra message according to RFC 4568 SDES (Session description protocol security descriptions for media streams). It makes two communication parties have a secret session key to protect their subsequent communications on an efficient way, and intends servers to involve with the key exchange procedure to derive the session key for the lawful interception support. In addition, we utilize GNU oSIP library and crypto++ library to implement the proposed scheme. The SIP+TW-KEAP has not only the shortest total service time based on the experimental results but also the shortest queuing delay, wireless transmission delay, and energy consumption from numerical analysis, as compared with the current alternative.
|
|---|
