Français
5. SIP security
The security situation in a SIP system is similar to that encountered in H.323 architectures. The requirements are the same, covering aspects such as user and system authentication, message confidentiality (both for signaling and multimedia flows) and message integrity.
The various SIP messages can be encrypted to prevent them from being read by a malicious user, and to prevent the latter from perceiving the communication "pattern" (who is calling whom and how). Three types of encryption are available:
end-to-end encryption of the message body and certain headers (only the sender and recipient know the content);
close-to-close encryption (server-to-server), at network or transport level, using either IPSEC (IP Security) or TLS (Transport Layer Security), like H.235 to prevent eavesdropping...
The Ultimate Scientific and Technical Reference
This article is included in
Networks and Telecommunications
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
SIP security
References
The Ultimate Scientific and Technical Reference
