Title :
SIP end-to-end security between Ipv4 domain and Ipv6 domain
Author :
Jiang, Xing ; Atwood, J. William
Author_Institution :
Concordia Univ., Montreal, Que., Canada
Abstract :
The session initiation protocol (SIP) carries the endpoint IP addresses, as part of its message format. When one end-point is in an IPv4 addressing domain, and the other is in an IPv6 addressing domain, a NAT-PT gateway must be used at the network level, to translate the protocol headers. The message bodies are altered by an application level gateway (ALG), to reflect the changed addresses. However, this alteration causes end-to-end security mechanisms to fail. We describe a proposal for a SIP end-to-end security mechanism between IPv4 networks and IPv6 stub domains, which overcomes the failure. We have validated the proposal using the PROMELA formal specification language and the SPIN validation system.
Keywords :
IP networks; telecommunication security; IPv4 addressing domain; IPv6 addressing stub domain; NAT-PT gateway; PROMELA; SIP end-to-end security; SPIN validation system; application level gateway; end-point IP addresses; formal specification language; protocol translation; session initiation protocol; Access protocols; Data security; Formal specifications; Information security; Internet; Level control; Network address translation; Proposals; Transport protocols; Web server;
Conference_Titel :
SoutheastCon, 2005. Proceedings. IEEE
Print_ISBN :
0-7803-8865-8
DOI :
10.1109/SECON.2005.1423294
