Abstract: Due to the lack of consideration in Session Initial Protocol(SIP) security, a lot of threats to SIP are emerging and attracting enormous attention. Authentication is one important aspect of SIP security issues. The present authentication-related mechanisms are analyzed. Based on the concept of “trust domain”, a more advanced and effective authentication mechanism scheme is proposed and its implementation process is given. Further research objective in SIP authentication is discussed.

Key words: Session Initial Protocol(SIP), SIP authentication, trust domain

摘要： 会话初始协议(SIP)在设计之初没有考虑太多安全问题，其安全隐患十分严重。针对上述问题，介绍SIP协议的安全特性，针对其可能受到的安全威胁，讨论SIP协议的安全机制问题。在“信任域”的基础上提出一个完善的SIP安全认证机制，描述方案的具体应用场景，并指出SIP认证机制的进一步研究方向。

关键词: 会话初始协议, SIP认证, 信任域

CLC Number: 

• TP309