Source Authentication of SIP Signaling

Source authentication of SIP messages, which allows a receiver to verify the identity of the sender of a SIP message, is implemented by letting P-CSCF at the transmitting end insert a so-called P-Asserted-Identity in all SIP messages. This P-Asserted-Identity is removed from the SIP header if and when the message is sent to or received from a node which is not trusted. The idea is that if communication between trusted nodes is protected any node receiving a P-Asserted-Identity can trust that the message was sent from that user. The trust model in IMS is thus that you have transitive trust between network elements within the trusted domain. Hence, if the network has asserted the identity then the mobile terminal will also be able to trust that identity.

0 0

Post a comment