Improving SIP Authentication

Date Added: Jul 2011
Format: PDF

The digest access authentication method used in the voice over IP signaling protocol, SIP, is weak. This authentication method is the only method with mandatory support and widespread adoption in the industry. At the same time, this authentication method is vulnerable to a serious real-world attack. This poses a threat to VoIP industry installations and solutions. In this paper, the authors propose a solution that counters attacks on this wide-spread authentication method. The most common protocol pair used for sending Voice over IP (VoIP) is the Session Initiation Protocol (SIP) and Real-time Transport Protocol (RTP).