计算机工程2011,Vol.37Issue(13):119-121,124,4.DOI:10.3969/j.issn.1000-3428.2011.13.038
一种增强的ZRTP认证机制
Enhanced Authentication Mechanism of ZRTP
肖鸿飞 1刘长江1
作者信息
- 1. 解放军信息工程大学电子技术学院,郑州,450004
- 折叠
摘要
Abstract
The original authentication mechanism of Zimmermann RTP(ZRTP) is vulnerable to the Man In The Middle(MITM) attack in certain conditions, although it is a light-weighted and efficient key agreement protocol. This paper introduces a new algorithm named NSAKA to enhance the original mechanism, which is based on the basic concept of Simple Authentication Key Agreement(SAKA). The Session Initiation Protocol(SIP) identity authentication model of RFC4474 is also employed to securely transmit the users' pre-shared secret password. The scheme can effectively enhance the ability to resist against the MITM attack of ZRTP and remedy the primary vulnerabilities of SAKA.关键词
SRTP协议/ZRTP协议/中间人攻击/SIP身份认证/简单认证密钥协商协议Key words
Secure RTP(SRTP)/ Zimmermann RTP(ZRTP)/ Man In The Middle(MITM) attack/ Session Initiation Protocol(SIP) identity authentication/ Simple Authentication Key Agreement(SAKA) protocol分类
信息技术与安全科学引用本文复制引用
肖鸿飞,刘长江..一种增强的ZRTP认证机制[J].计算机工程,2011,37(13):119-121,124,4.
