The Research and Implementation of Security in SIP Protocol of Video Surveillance System |
|
Author | LuoYu |
Tutor | MaoXiaoGuang |
School | National University of Defense Science and Technology |
Course | Software Engineering |
Keywords | SIP Video surveillance Safety certification HTTP digest authentication Asymmetric key |
CLC | TP393.08 |
Type | Master's thesis |
Year | 2010 |
Downloads | 62 |
Quotes | 0 |
With the development of information technology , people have become increasingly demanding real-time video surveillance , which are mainly in the aspects of network sex (IP), real-time intelligence . At the same time , the Session Initiation Protocol (SIP - Session Initiation Protocol) is booming , fundamentally able to meet the network requirements of video surveillance . But faced with a variety of security threats , such as registration hijacking , disguised server , tampering with the body of the message , offline password guessing , denial of service , and so on . SIP-based real-time video surveillance system will also be affected by these threats , SIP video surveillance compared with other SIP application to a higher security requirements . This paper analyzes the security risks that exist in the SIP are mainly three categories: confidentiality, integrity and availability . And analyzed several typical confidentiality, security issues , such as the registration hijacking , disguised server , offline password guessing problems, and so on . From the SIP protocol itself , analysis and comparison of the various SIP authentication mechanism . Based on the existing HTTP digest authentication and two-way HTTP digest authentication , given an optimized way - improved bi-directional HTTP digest authentication , this authentication method do still use MD5 summary , security and bi - directional HTTP digest authentication , but efficient. However, this still exist the digest authentication Total hidden . This paper designs an RSA asymmetric key - based mechanism of SIP security authentication mechanism . It includes two ways : asymmetric SIP authentication and signature SIP authentication . Two ways to guarantee the confidentiality of security . And due to The RSA security than MD5 security , the security of this authentication method is superior to the HTTP digest authentication . In this paper, active defense mechanism model verification code to prevent violent attacks , and denial of service attacks can be effective in reducing the threats , and enhance system availability . This paper describes the entire system , the main achievement of embedded real-time playback of H.264 video system and SIP security system , the SIP security authentication using signature - SIP authentication . This article is mainly to solve , improved SIP confidentiality issues , the realization and integrity issues of the the DOS problems in usability issues will be the focus of the later work .