Information security – Access control or authentication – Network
Reexamination Certificate
2007-07-03
2007-07-03
Sheikh, Ayaz (Department: 2131)
Information security
Access control or authentication
Network
C726S011000, C726S012000, C726S013000, C726S015000, C713S150000, C713S151000, C713S152000, C713S153000, C380S225000, C380S226000, C380S227000, C380S228000, C709S227000, C709S228000, C709S229000
Reexamination Certificate
active
10151575
ABSTRACT:
End-to-end authentication capability based on public-key certificates is combined with the Session Initiation Protocol (SIP) to allow a SIP node that receives a SIP request message to authenticate the sender of request. The SIP request message is sent with a digital signature generated with a private key of the sender and may include a certificate of the sender. The SIP request message may also be encrypted with a public key of the recipient. After receiving the SIP request, the receiving SIP node obtains a certificate of the sender and authenticates the sender based on the digital signature. The digital signature may be included in an Authorization header of the SIP request, or in a multipart message body constructed according to the S/MIME standard.
REFERENCES:
patent: 6173173 (2001-01-01), Dean et al.
patent: 6353891 (2002-03-01), Borella et al.
patent: 6865681 (2005-03-01), Nuutinen
patent: 6870848 (2005-03-01), Prokop
patent: 2002/0078153 (2002-06-01), Chung et al.
patent: 2002/0141358 (2002-10-01), Requena
patent: 2002/0150226 (2002-10-01), Gallant et al.
patent: 2002/0157019 (2002-10-01), Kadyk et al.
patent: 2003/0009463 (2003-01-01), Gallant
patent: 2003/0012382 (2003-01-01), Ferchichi et al.
patent: 2003/0081791 (2003-05-01), Erickson et al.
La Tour, Irénée Dupré “A Secure Authentication Infrastructure for Mobile Communication Services over the Internet” (Mar. 2001) PhD Thesis, University of Ottawa. Chapters 7-9. Complete document at http://beethoven.site.uottawa.ca/dsrg/PublicDocuments/.
IETF “RFC 2543—SIP: Session Initiation Protocol” (Mar. 1999).
Rosenberg et al. “draft-ietf-sip-rfc2543bis-09.txt—SIP: Session Initiation Protocol” (Feb. 27, 2002) Section 23 : S/MIME. Complete document at http://www.potaroo.net/ietf/idref/draft-ietf-sip-rfc2543bis/.
Network Associates. “How PGP works” (1999) http://www.pgpi.org/doc/pgpintro/.
“UMTS AKA in SIP,” Nokia, 3GPP TSG SA WG3 Security—S3#14, Osla, Norway, Aug. 4, 2000, 3 pages.
“Re: Kerberos Authentication and Authentication (proxy ticket forwarding),” Apache Development Mailing List: Re: Kerberos authentication an, Nov. 6, 1999 ronald@innovation.ch, http://hypermail.linkford.com
ew-httpd.old/1999/Nov/0106.html, 2 pages.
Byerly, Bryan J. and David Williams, “SIP Authentication using CHAP-Password,” Internet Engineering Task Force, Internet Draft, Oct. 2000, 12 pages.
“Kerberos on the Web: Protocol Example,” http://www.monkey.org/—duosong/krb-www/kapache/KRB—PROT.HTM [last accessed Feb. 14, 2006].
U.S. Appl. No. 10/151,747, filed Jan. 2, 2003, Nikhil Bobde.
Buch Jeremy T.
Simons David J.
Chai Longbit
Microsoft Corporation
Perkins Coie LLP
Sheikh Ayaz
LandOfFree
End-to-end authentication of session initiation protocol... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with End-to-end authentication of session initiation protocol..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and End-to-end authentication of session initiation protocol... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3795302