nach oben

Microsystem Technologies

Erschienen in:

28.01.2017 | Technical Paper

A hybrid session key exchange algorithm for highly-sensitive IP-based institutional communications

verfasst von: Zheng-Yun Zhuang, Yi-Chang Hsu, Kimmo Nurmi, Chih-Yung Chen, Hsing-Hua Liu, Tzu-Shan Tseng

Erschienen in: Microsystem Technologies | Ausgabe 1/2018

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Session key exchange has become an addressed topic in the field of communications security, particularly for the IP-based call session that travels through the public network. This paper proposes a hybrid algorithm for session key exchange. The algorithm is designed based on most of the well-proven algorithms, including RSA, D-H, MAC authentication and SHA one-way function, and most of the popular security concepts such as digital signature, digital certificates and verifications under PKI. With an integration of these security concepts and algorithms, the proposed algorithm inherits the properties of these algorithms and realizes highly secure session key exchanging, to meet the required security level of institutions for sensitive communications. It not only improves the possible deficiencies of the algorithms that are singly based on RSA or D-H, but also expands the limits when a hybrid algorithm is applied. Moreover, using MAC codes to ensure the authenticity of the call itself (in addition to ensuring the authenticity of the call parties) meets the communications security concern (in addition to the information security concerns) which relevant algorithms might fail to consider.

Vorheriger Artikel Investigating the design parameters on spiral micro-channel by using Fibonacci sequence and Taguchi method

Nächster Artikel Application of ZnO micro rods on the composite photo-electrode of dye sensitized solar cells

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Nur mit Berechtigung zugänglich

Andreasen F, Baugher M, Wing D (2006) RFC 4568: Session description protocol (SDP) security descriptions for media streams. Internet Eng Task Force (IETF) ISSN: 2070-1721

Boneh D (1998) The decision Diffie–Hellman problem. In: Buhler JP (ed) ANTS 1998, vol 1423., LNCSSpringer, Heidelberg, pp 48–63

Chang S (2013) "Long Distance Call Minutes was Stolen: The Beijing Company is Accused for Its Rejection to Pay $110,000 for the Incredible Monthly Phone Bill" (Title Translated). http://news.sina.com.tw/article/20130617/9915295.html. Accessed 23 Sept 2013

Dantu R, Fahmy S, Schulzrinne H, Cangussu J (2009) Issues and challenges in securing VoIP. Comput Secur 28(8):743–753CrossRef

Diffie W, Hellman M (1976) New direction in cryptography. IEEE Trans Inf Theory 22(6):644–654MathSciNetCrossRefMATH

DMR (2014) How many people use the 600+ of the top social media, apps and tools? Digital Marketing Ramblings. http://expandedramblings.com/index.php/resource-how-many-people-use-the-top-social-media/#.U8i6HTzloXQ. Accessed 13 July 2014

Dunn J (2014) Expert scares world with VoIP hacking proof. TechWorld. http://news.techworld.com/security/10736/expert-scares-world-with-voip-hacking-proof/. Accessed 10 Feb 2014

Ellison C, Schneier B (2000) Ten risks of PKI: What you’re not being told about public key infrastructure. Comput Secur J 16(1):1–7

Hankerson D, Menezes A, Vanstone SA (2004) Guide to elliptic curve cryptography. Springer, HeidelbergMATH

Hunt R (2001a) Technological infrastructure for PKI and digital certification. Comput Commun 24:1460–1471CrossRef

Hunt R (2001) PKI and digital certification infrastructure. Proceedings of Ninth (2001) IEEE International Conference on Networks, pp 234–239

International Data Corporation (2013) Soft PC Shipments in Fourth Quarter Lead to Annual Decline as HP Holds Onto Top Spot. Business-Wire. http://www.businesswire.com/news/home/20130110006397/en/Soft-PC-Shipments-Fourth-Quarter-Lead-Annual#.U8i4YDzloXQ. Accessed 17 Sept 2013

Karapantazis S, Pavlidou FN (2009) VoIP: A comprehensive survey on a promising technology. Comput Netw 53(12):2050–2090CrossRef

Koblitz N (1987) Elliptic curve cryptosystems. Math Comput 48:203–209MathSciNetCrossRefMATH

Krawczyk H (2011) Perfect forward secrecy InEncyclopedia of Cryptography and Security. Springer, New York, pp 921–922

Krawczyk H, Bellare M, Canetti R (1997) RFC 2104: HMAC: Keyed-Hashing for Message Authentication. Internet Eng Task Force (IETF). ISSN: 2070-1721

Lenstra AK, Wang X, de Weger B (2005) Colliding X. 509 Certificates. IACR cryptology e-print archive 67

Liao YP, Wang SS (2010) A new secure password authenticated key agreement scheme for SIP using self-certified public keys on elliptic curves. Comput Commun 33:372–380CrossRef

Miller V (1985) Use of elliptic curves in cryptography. CRYPTO 85

Pfanner E (2014) Skype, Going Public, Hopes for $100 Million From First Offering. The New York Times. http://www.nytimes.com/2010/08/10/technology/10skype.html?_r=3&th&emc=th. Accessed 10 July 2014

Raymond J, Stiglic A (2000) Security issues in the Diffie–Hellman key agreement protocol. IEEE Trans Inf Theory 22:1–17

Rivest R, Shamir A, Adleman L (1978) A method for obtaining digital signatures and public key cryptosystems. Commun ACM 21:120–126MathSciNetCrossRefMATH

Schneier B (1996) Applied cryptography, 2nd edn. Wiley, New YorkMATH

Shukla J, Sahni B (2013) A Survey on VoIP Security Attacks and their Proposed Solutions. Int J Appl Innov Eng Manag 2(3):159–163

Sutherland B (2013) Stealing the Minutes. Newsweek. http://www.thedailybeast.com/newsweek/2007/03/18/stealing-the-minutes.html. Accessed 23 Sept 2013

US National Institute of Standards and Technology (1994) Escrowed encryption standard. Federal Information Processing Standards (FIPS) publication 185, Maryland, US

US National Institute of Standards and Technology (2001) Advanced encryption standard. Federal Information Processing Standard (FIPS) publication 197, Maryland, USCrossRef

US National Institute of Standards and Technology (2008) Secure hash standard. Federal Information Processing Standard (FIPS) publication 180-3, Maryland, US

US National Institute of Standards and Technology (2013) Recommendation for pair-wise key establishment schemes using discrete logarithm cryptography. Special Publication 800-56A Revision 2, Maryland, US

van der Meulen R (2012) Gartner says 821 million smart devices will be purchased worldwide in 2012; sales to rise to 1.2 billion in 2013. Technical Report Gartner, 2012. http://www.gartner.com/newsroom/id/2227215. Accessed 17 August 2014

Wu L, Zhang Y, Wang F (2009) A new provably secure authentication and key agreement protocol for SIP using ECC. Comput Stand Interfaces 31(2):286–291CrossRef

Yoon EJ, Yoo KY, Kim C, Hong Y, Jo M, Chen HH (2010) A secure and efficient SIP authentication scheme for converged VoIP networks. Comput Commun 33(14):1674–1681CrossRef

Zhang R, Wang X, Farley R, Yang X, Jiang X (2009) On the Feasibility of Launching the Man-in-the-middle Attacks on VoIP from Remote Attackers. Proceedings of the 4th International Symposium on Information, Computer, and Communications Security. pp 61–69

Zhuang Z-Y, Hsu Y-C, Liu H-H, Wu C-H (2016) The centrifuge of cloud service: separated cryptographic and ciphered-storage services. Commun CCISA 22(4):39–64

Zimmermann P, Johnston A, Callas J (2011) “RFC 6189: ZRTP: Media path key agreement for unicast secure RTP. Internet Eng Task Force (IETF) ISSN: 2070-1721

Titel: A hybrid session key exchange algorithm for highly-sensitive IP-based institutional communications
verfasst von: Zheng-Yun Zhuang
Yi-Chang Hsu
Kimmo Nurmi
Chih-Yung Chen
Hsing-Hua Liu
Tzu-Shan Tseng
Publikationsdatum: 28.01.2017
Verlag: Springer Berlin Heidelberg
Erschienen in: Microsystem Technologies / Ausgabe 1/2018
Print ISSN: 0946-7076
Elektronische ISSN: 1432-1858
DOI: https://doi.org/10.1007/s00542-016-3263-y

Neuer Inhalt

Bildnachweise

VDI-Icon, Profil Icon, inhalt2, Springer Professional Modul/© Springer Fachmedien Wiesbaden GmbH, Nachhaltigkeitsaward Key Visual/© Cometis AG/Global ESG Monitor | Daniel Rupp | Generiert mit KI, Search Icon, Banner Hanser, Kryptowährungen/© gopixa / Getty Images / iStock, MG4 aus China auf dem Prüfstand im ADAC-Technik-Zentrum in Landsberg am Lech/© ADAC e.V., Chassis eines Elektrofahrzeugs/© chesky / stock.adobe.com, Zeitschrift Wissensmanagement Cover, PatentFit-Logo/© Springer Fachmedien Wiesbaden GmbH, Sustainibility Finance/© Robert Kneschke / stock.adobe.com / Springer Fachmedien Wiesbaden GmbH, Zukunftswerkstatt Sales Excellence 2024/© AndreyPopov / Getty Images / iStock, 2023_Antrieb/© supervisuell

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Weitere Artikel der Ausgabe 1/2018

Wafer-level micropackaging in thin film technology for RF MEMS applications

Solar cell efficiency improvement employing down-shifting silicon quantum dots

Identity authentication by sensed acoustic voices from a speaking person using an efficient GMM-SVM dual modeling framework

Theoretical and finite element analysis of dynamic deformation in resonating micromirrors

Synthesis and characteristics of the nano-scaled YBO3:sm3+ phosphors applied to improve the efficiency of solar cells

Size control of CH3NH3PbBr3 perovskite cuboid fine crystals synthesized by ligand-free reprecipitation method

Neuer Inhalt

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.