兵工自动化
兵工自動化
병공자동화
ORDNANCE INDUSTRY AUTOMATION
2013年
1期
17-20
,共4页
冯剑川%严承华%杜轶焜%廖巍
馮劍川%嚴承華%杜軼焜%廖巍
풍검천%엄승화%두질혼%료외
IP多媒体子系统%消息会话中继协议%安全邮件协议%安全传输%媒体层安全
IP多媒體子繫統%消息會話中繼協議%安全郵件協議%安全傳輸%媒體層安全
IP다매체자계통%소식회화중계협의%안전유건협의%안전전수%매체층안전
IMS%MSRP%S/MIME%security transmission%media layer security
针对现有IMS网络中文件传输时仅能保护SIP信令层,缺乏面向媒体层的有效安全机制的问题,提出一种基于S/MIME的文件安全传输方案.通过分析IPsec、TLS等安全机制的适用范围和在文件传输时的安全缺陷,依托MSRP协议实现IMS中文件传输,基于S/MIME实现端到端传输安全.仿真测试结果表明:该方案能有效保护传输过程中的文件实体,避免了通过IMS中各呼叫会话控制实体带来的延时,实现了IMS网络中的文件安全传输.
針對現有IMS網絡中文件傳輸時僅能保護SIP信令層,缺乏麵嚮媒體層的有效安全機製的問題,提齣一種基于S/MIME的文件安全傳輸方案.通過分析IPsec、TLS等安全機製的適用範圍和在文件傳輸時的安全缺陷,依託MSRP協議實現IMS中文件傳輸,基于S/MIME實現耑到耑傳輸安全.倣真測試結果錶明:該方案能有效保護傳輸過程中的文件實體,避免瞭通過IMS中各呼叫會話控製實體帶來的延時,實現瞭IMS網絡中的文件安全傳輸.
침대현유IMS망락중문건전수시부능보호SIP신령층,결핍면향매체층적유효안전궤제적문제,제출일충기우S/MIME적문건안전전수방안.통과분석IPsec、TLS등안전궤제적괄용범위화재문건전수시적안전결함,의탁MSRP협의실현IMS중문건전수,기우S/MIME실현단도단전수안전.방진측시결과표명:해방안능유효보호전수과정중적문건실체,피면료통과IMS중각호규회화공제실체대래적연시,실현료IMS망락중적문건안전전수.
The existing IP multimedia subsystem (IMS) network security mechanism mainly focus on the SIP signaling plane protection and lack effective security mechanism for media plane. According to the characteristics of file transferring in IMS and potential security threats, this paper proposes a file safety transmission method based on secure/multipurpose Internet mail extensions (S/MIME). The scheme uses message session relay protocol (MSRP) to realize the IMS file transfer and achieves end-to-end security by S/MIME. It can effectively protect the transmission file entity and decrease the delay by avoiding traverse each call session control function in the IMS. Simulation results prove that the scheme can realize file safety transmission in the IMS network.
