An anonymous SIP authenticated key agreement protocol based on elliptic curve cryptography

Yanrong Lu; Dawei Zhao

doi:10.3934/mbe.2022003

An anonymous SIP authenticated key agreement protocol based on elliptic curve cryptography

Math Biosci Eng. 2022 Jan;19(1):66-85. doi: 10.3934/mbe.2022003. Epub 2021 Nov 8.

Authors

Yanrong Lu¹, Dawei Zhao²

Affiliations

¹ School of Safety Science and Engineering, Civil Aviation University of China, Tianjin, China.
² Shandong Provincial Key Laboratory of Computer Networks, Shandong Computer Science Center (National Supercomputer Center in Jinan), Qilu University of Technology (Shandong Academy of Sciences), Jinan, China.

PMID: 34902980
DOI: 10.3934/mbe.2022003

Abstract

Designing a secure authentication scheme for session initial protocol (SIP) over internet protocol (VoIP) networks remains challenging. In this paper, we revisit the protocol of Zhang, Tang and Zhu (2015) and reveal that the protocol is vulnerable to key-compromise impersonation attacks. We then propose a SIP authenticated key agreement protocol (AKAP) using elliptic curve cryptography (ECC). We demonstrate the correctness of the protocol using Burrows-Abadi-Needham (BAN), and its security using the AVISPA simulation tool. We also evaluate its performance against those of Zhang, Tang and Zhu, and others.

Keywords: authentication; elliptic curve cryptography; privacy; security; session initial protocol.

Publication types

Research Support, Non-U.S. Gov't

MeSH terms

Computer Security*
Computer Simulation
Internet*