Providing true end-to-end security in converged voice over IP infrastructures

Computers and Security

Volumn 28, Issue 6, 2009, Pages 433-449

  Palmieri, Francesco ^a   Fiore, Ugo ^a  

^a UNIVERSITY OF NAPLES FEDERICO II   (Italy)

Author keywords

IP telephony; RTP; SIP; Voice codec; VoIP; X.509

Indexed keywords

IP TELEPHONY; RTP; SIP; VOICE CODEC; VOIP; X.509;

AUTHENTICATION; CRYPTOGRAPHY; INTERNET PROTOCOLS; INTERNET TELEPHONY; NETWORK SECURITY; RAPID THERMAL ANNEALING; TELEPHONE CIRCUITS; TELEPHONE SYSTEMS; UBIQUITOUS COMPUTING; WIRELESS LOCAL AREA NETWORKS (WLAN); WIRELESS TELECOMMUNICATION SYSTEMS;

VOICE/DATA COMMUNICATION SYSTEMS;

EID: 67649678799     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2009.01.004     Document Type: Article

References (37)

1. Adams C., and Just M. PKI: ten years later. Proceedings 3rd annual PKI R&D workshop (2004). http://middleware.internet2.edu/pki04/proceedings/pki_ten_years.pdf [accessed 15.08.08]
2. Andersen S., Duric A., Astrom H., Hagen R., Kleijn W., and Linden J. Internet low bit rate codec (iLBC). IETF RFC 3951 (2004)
3. Baugher M., McGrew D., Naslund M., Carrara E., and Norrman K. The Secure Real-Time Transport Protocol (SRTP). IETF RFC 3711 (2004)
4. Diffie W., and Hellmann M.E. New directions in cryptography. IEEE Transactions on Information Theory (1976) 644-654 IT-22
5. Duric A., and Andersen S. Real-time transport protocol (RTP) payload format for Internet low bit rate codec (iLBC) speech. IETF RFC 3952 (2004)
6. Fischer K. End-to-End security for DTLS-SRTP. IETF DRAFT , 2008.
7. Fischl J, Tschofenig H, Rescorla E. Framework for establishing an SRTP security context using DTLS. IETF DRAFT , 2008.
8. Galvin J., Murphy S., Crocker S., and Freed N. Security multiparts for mime: multipart/signed and multipart/encrypted. IETF RFC 1847 (1995)
9. Guo JI, Yen JC, Pai HF, New voice over internet protocol technique with hierarchical data security protection. In: IEE Proceedings vision, image & signal processing, vol. 149, no. 4; 2002. p. 237-43.
10. Handley M., and Jacobson V. SDP: session description protocol. IETF RFC 2327 (1998)
11. Housley R., Ford W., Polk W., and Solo D. Internet X.509 public key infrastructure certificate and CRL profile. IETF RFC 2459 (1999)
12. ITU-T. Coding of speech at 8 Kbit/s using conjugate-structure algebraic-code-excited linear prediction (CS-ACELP). ITU-T Recommendation G.729; 1996.
13. Itu-T. Mean opinion score (MOS). ITU-T recommendation P800; 1996.
14. Itu-T. Provisional planning values for the equipment impairment factor Ie and packet-loss robustness factor Bpl. ITU-T Recommendation G.113 appendix I; 2002.
15. Itu-T. Packet based multimedia communication systems. ITU-T Recommendation H.323; 2003.
16. Keating G. Performance analysis of AES candidates on the 6805 CPU core. Second AES candidate conference (1999), NIST
17. Kent S., and Atkinson R. Security architecture for the Internet protocol. IETF RFC 2401 (1998)
18. Linn J. Trust models and management in public-key infrastructures (2000), RSA Laboratories
19. Modadugu N., and Rescorla E. Datagram transport layer security. IETF RFC 4347 (2006)
20. Mullin J, Smallwood L, Watson A, Wilson G, New techniques for assessing audio and video quality in real-time interactive communications. IHM-HCI Tutorial; 2001.
21. National Institute of Standards and Technology. Advanced Encryption Standard (AES) vol. 97 (2001), FIPS. http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf [accessed 15.09.07]
22. Perlman R. An overview of PKI trust models. IEEE Network 13 6 (1999)
23. Peterson J., and Jennings C. Enhancements for authenticated identity management in the Session Initiation Protocol (SIP). IETF RFC 4474 (2006)
24. PGP Corporation. PGP: encryption for enterprise data protection (2007). http://www.pgp.com [accessed 15.09.07]
25. Ramsdell B. S/MIME version 3 message specification. IETF RFC 2633 (1999)
26. ReSIProcate Staff. ReSIProcate project home page (2007). http://www.resiprocate.org [accessed 15.09.07]
27. Rosenberg J., Schulzrinne H., Camarillo G., Johnston A., Peterson J., and Sparks R. SIP: session initiation protocol. IETF RFC 3261 (2002)
28. Schneier B., and Whiting D. A performance comparison of the five AES finalists. Third AES candidate conference (2000), NIST
29. Schneier B., Kelsey J., Whiting D., Wagner D., Hall C., and Ferguson N. Twofish: a 128 bit block cipher (1998). http://www.counterpane.com/twofish.html [accessed 15.09.07]
30. Shneier B. TwoFish source code (2007). http://www.schneier.com/twofish-download.html [accessed 15.09.07]
31. Skype. Make calls from your computer - free to other people on Skype and cheap to landlines and cell phones around the world (2007). http://www.skype.com [accessed 15.09.07]
32. Stallings W. Cryptography and network security principles and practice. 2nd ed. (1999), Prentice Hall
33. Valin J.M. Speex (2008). http://people.xiph.org/%7Ejm/papers/aes120_speex_vorbis.pdf [accessed 15.02.08]
34. Weiss R., and Nathan Binkert N. A comparison of AES candidates on the Alpha 21264, third AES candidate conference (2000), NIST
35. Wollinger T.J., Guajardo J., and Paar C. How well are high-end DSPs suited for the AES algorithms?. Third AES candidate conference (2000), NIST
36. Wright C.V., Ballard L., Monrose F., and Masson G.M. Language identification of encrypted VoIP traffic: Alejandra y Roberto or Alice and Bob?. Proceedings of the 16th USENIX security symposium (2007), USENIX 43-54
37. Zimmermann P, Media path key agreement for secure RTP. IETF Draft , 2009.