• The KIPS Transactions:PartC
• /
• v.14C no.1 s.111
• /
• pp.55-64
• /
• 2007

Behind the popularity of VoIP in these days, it may present significant security challenges in privacy and accounting. Authentication and message encryption are considered to be essential mechanisms in VoIP to be comparable to PSTN. SIP is responsible for setting up a secure call in VoIP. SIP employs TLS, DTLS or IPSec combined with TCP, UDP or SCTP as a security protocol in VoIP. These security mechanisms may introduce additional overheads into the SIP performance. However, this overhead has not been understood in detail by the community. In this paper we present the effect of the security protocol on the performance of SIP by comparing the call setup delays among security protocols. We implement a simulation of the various combinations of three security protocols and three transport layer protocols suggested for SIP. UDP with any combination of security protocols performs a lot better than the combination of TCP. TLS over SCTP may impose higher impact on the performance in average because TLS might have to open secure channels as the same number of streams in SCTP. The reasons for differences in the SIP performances are given.

• Proceedings of the Korean Information Science Society Conference
• /
• 2002.10e
• /
• pp.142-144
• /
• 2002

VoIP(Voice over IP) 시스템을 구현함에 있어서 호설정을 처리하는 여러 프로토콜이 제안되고 있는 가운데 IETF(Internet Engineering Task Force)에서 제안한 SIP(Session Initiation Protocol)는 텍스트 기반의 프로토콜로서 구현과 파싱이 쉬운 등 많은 장점을 가지고 있어 차세대 VoIP의 표준으로 자리잡고 있다. 또한, 뛰어난 확장성을 가지고 있어 다양한 서비스에 적용할 수 있는 호설정 프로토콜이다. 본 논문에서는 SIP를 이용한 VoIP 시스템을 구현함에 있어 주요 구성요소 중 하나인 UA(User Agent)를 2002년 6월에 발표된 새로운 SIP 버전에 맞추어 개발하였다. 본 UA는 플랫폼에 독립적으로 기능을 할 수 있도록 자바(Java)를 사용하여 GUI(Graphical User Interface)환경으로 구현하였다 그리고 RTP(Real-time Transport Protocol) 전송 모듈을 통하여 호설정이 이루어진 후 실제 음성과 화상통신이 이루어지는 부분을 포함하였다.

• Proceedings of the Korea Multimedia Society Conference
• /
• 2003.11b
• /
• pp.807-810
• /
• 2003

현재 무선랜은 AP(Acess Point)간 이동시 2계층 로밍을 이용하여 이동성을 제공한다. 그러나 무선랜의 AP간 로밍은 같은 서브넷 내에서는 동일한 IP로 MAC Layer의 접속만을 변경하여 이동성을 제공할 수 있지만, 다른 서브넷으로 이동할 경우에는 DHCP를 이용하여 IP를 새로 할당 받아야 한다. 최근 Hotspot 등 무선랜이 활성화 되어감에 따라 서브넷간 이동시에도 IP 이동성 제공을 위해서는 무선랜에 Mobile IP 도입이 필요하다. 또한 무선 인터넷 사용자의 급증으로 차세대 인터넷 프로토콜로 주목받고 있는 IPv6를 이용하여 이동성을 제공하려는 연구가 활발히 진행되고 있다. 본 논문에서는 SIP 기반의 VoIP 단말기에 FMIPv6를 적용하여 VoIP의 서브넷 간이동성을 제공하기 위하여 핵심프로토콜인 FMIPv6 프로토콜과 SIP 프로토콜을 설계하였다.

• Proceedings of the Korean Information Science Society Conference
• /
• 2001.10c
• /
• pp.598-600
• /
• 2001

지금까지 근거리통신망(LAN) 환경에서 멀티미디어 통신을 지원하는 H.323프로토콜을 인터넷 전화에 적용해 왔으나 이 방식이 새로운 기술에 대한 확장성이 떨어지고 기술개발도 복잡하다는 단점이 있었다. 그러나 SIP는 망 유지보수 및 관리가 편리하고 다른 시스템과 확장성 및 유연성이 뛰어나 H.323의 단점을 극복하고 새로운 대체 프로토콜로 부각되고 있다. 이러한 SIP의 장점을 이용하여 새로이 대두되고 있는 정보가전 기기들의 제어에 적용하기 방법에 대하여 알아보고 실제 구현을 위한 설계 시 고려사항과 SIP의 응용 분야 등에 대하여 알아본다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2008.11a
• /
• pp.1001-1003
• /
• 2008

유비쿼터스 환경을 위해 개별 서비스의 집합으로 정의할 수 있는 컴퓨팅 환경의 이동을 필요로 하고 있다. 이러한 컴퓨팅 환경의 이동을 지원하기 위해 텍스트 기반으로 확장성이 좋고 이동성에도 유용한 SIP 을 이용하였다. 확장된 SIP 을 이용하여 컴퓨팅 환경의 이동을 관리하는 프로토콜을 제안하였다.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.11 no.1
• /
• pp.130-140
• /
• 2010

SIP (Session Initiation Protocol) is a signaling protocol to provide IP-based VoIP (Voice over IP) service. However, many security vulnerabilities exist as the SIP protocol utilizes the existing IP based network. The SIP Malformed message attacks may cause malfunction on VoIP services by changing the transmitted SIP header information. Additionally, there are several threats such that an attacker can extract personal information on SIP client system by inserting malicious code into SIP header. Therefore, the alternative measures should be required. In this study, we analyzed the existing research on the SIP anomaly message detection mechanism against SIP attack. And then, we proposed a Co-occurrence based SIP packet analysis mechanism, which has been used on language processing techniques. We proposed a association rule generation and an attack detection technique by using the actual SIP session state. Experimental results showed that the average detection rate was 87% on SIP attacks in case of using the proposed technique.

• Journal of Digital Convergence
• /
• v.18 no.5
• /
• pp.249-256
• /
• 2020

The session initiation protocol (SIP) is a signaling protocol, which is used to controlling communication session creation, manage and finish over Internet protocol. Based on it, we can implement various services like voice based electronic commerce or instant messaging. Recently, Qiu et al. proposed an enhanced password authentication scheme for SIP. However, this paper withdraws that Qiu et al.'s scheme is weak against the off-line password guessing attack and has denial of service problem. Addition to this, we propose an improved password authentication scheme as a remedy scheme of Qiu et al.'s scheme. For this, the proposed scheme does not use server's verifier and is based on elliptic curve cryptography. Security validation is provided based on a formal validation tool ProVerif. Security analysis shows that the improved authentication scheme is strong against various attacks over SIP.

• Journal of Korea Multimedia Society
• /
• v.9 no.1
• /
• pp.73-88
• /
• 2006

With the development of Next Generation convergence Network, the current Internet needs a new network architecture and new session establishment methods, which can support various applications requiring differentiated traffic processing and high quality of service instead of the conventional best-effort service. It is expected that, in next generation network based on All-IP. SIP will play an important role in the session establishment between the end to end user terminals. In this paper, we propose a new network architecture that can provide quality of service based on SIP using the QoS enabled SIP servers and policy servers, and we also propose a new session establishment method that apply the user's demands participating the session establishment when setting up the session using the SIP. Through simulations under various environments, we show the parameter ranges in terms of server capacity and the number of users in access networks to achieve reasonable delay bounds.

• Journal of Digital Contents Society
• /
• v.17 no.1
• /
• pp.65-70
• /
• 2016

This paper suggests an environment of a CSCW(Computer Supported Cooperative Works) for industry safety service. A good example of industry safety service is gunpowder. This paper proposed a computer-based integrated multimedia for industry safety service running on shepherd and SIP(Session Initiation Protocol). But, conventional framework has not yet fully progressed a shepherd for computer-based integrated multimedia running on SIP(Session Initiation Protocol). Session management include function of session creation, session end, late comer process, and access control. Therefore, this paper described an environment of integrated multimedia based on a shepherd and SIP environment to maintain good session condition.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.12 no.6
• /
• pp.1022-1025
• /
• 2008

Session Initiation Protocol (SIP) has become the call control protocol of choice for Voice over IP (VoIP) networks because of its open and extensible nature. However, the integrity of call signaling between sites is of utmost importance, and SIP is vulnerable to attackers when left unprotected. Currently a herby-hop security model is prevalent, wherein intermediaries forward a request towards the destination user agent sewer (UAS) without a user agent client (UAC) knowing whether or not the intermediary behaved in a trusted manner. This paper presents an integrated security model for SIP-based VoIP network by combining hop-by-hop security and end-to-end security.