摘要 |
PROBLEM TO BE SOLVED: To provide an authentication technique in SIP protocol with no risk of password leakage.SOLUTION: At the time of registration of a client terminal in the SIP protocol, a client terminal 1 transmits a client challenge to a server. The server 2 signs for the client challenge by using the secret key of the server to generate a server signature, and transmits a server challenge and server signature to the client terminal. The client terminal 1 authenticates the server signature by using the public key of the server, and when the authentication is successful, signs for the server challenge by using the secret key of the client terminal to generate a client terminal signature, and transmits the client terminal signature to the server. The server 2 authenticates the client terminal signature by using the public key of the client terminal, and when the authentication is successful, performs registration of the client terminal in the SIP protocol.SELECTED DRAWING: Figure 1 |