Login | Register

Secure SIP between IPv4 endpoints and IPv6 endpoints

Title:

Secure SIP between IPv4 endpoints and IPv6 endpoints

Jiang, Xing (2003) Secure SIP between IPv4 endpoints and IPv6 endpoints. Masters thesis, Concordia University.

[thumbnail of MQ91052.pdf]
Preview
Text (application/pdf)
MQ91052.pdf - Accepted Version
4MB

Abstract

The Internet Protocol version 6 (IPv6) is designed to replace the current version IPv4. However, there will continue to be a demand for IPv4-based end users to access IPv6-based services, and vice versa. Some transition mechanisms are necessary to make IPv6 and IPv4 compatible. Network Address Translation--Protocol Translation (NAT-PT) can provide protocol translation at the network layer. The Session Initiation Protocol (SIP) is an application layer control protocol that can initiate, modify and terminate interactive communication sessions between end users. When SIP is used with NAT-PT, a special Application Level Gateway (ALG) is required to handle the translation of the addresses inside the SIP messages. This thesis introduces an implementation of a SIP-ALG. The SIP-ALG is responsible for translating IPv6 addresses in a SIP packet into the corresponding IPv4 addresses, and vice versa, relying on the functionalities of NAT-PT as the packet traverses across the boundary between IPv6 and IPv4. In addition, this thesis describes and models a SIP end-to-end security solution between IPv4 end points and IPv6 end points, given that involvement of the SIP-ALG seems to be in conflict with the primary requirements of the end-to-end security. The proposed mechanism lets a SIP endpoint authorize a security proxy server to encrypt the SIP bodies on behalf of the end point. The security proxy will discover the capabilities of the receiving party and encrypt the SIP bodies for the other SIP security proxy server in the receiving domain. IP address translation must be done before the encryption at the sending security proxy or after the decryption at the receiving security proxy.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Computer Science and Software Engineering
Item Type:Thesis (Masters)
Authors:Jiang, Xing
Pagination:x, 118 leaves : ill. ; 29 cm.
Institution:Concordia University
Degree Name:M. Comp. Sc.
Program:Dept. of Computer Science
Date:2003
Thesis Supervisor(s):Atwood, J. W
Identification Number:TK 5105.55 J53 2003
ID Code:2362
Deposited By: Concordia University Library
Deposited On:27 Aug 2009 17:27
Last Modified:13 Jul 2020 19:52
Related URLs:
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Research related to the current document (at the CORE website)
- Research related to the current document (at the CORE website)
Back to top Back to top