公开(公告)号：WO2012177287A2

公开(公告)日：2012-12-27

申请号：PCT/US2012000208

申请日：2012-04-18

Applicant: TELECOMM SYSTEMS INC

Inventor： BURTON VICTOR ,  SATHYANARAYANAN AMAR ,  MCFARLAND KEITH A ,  RAMAN BABY ,  KESSER DOUG

IPC: G06F21/02

CPC classification number: H04L63/08 ,  H04L29/06197 ,  H04L29/06217 ,  H04L29/06265 ,  H04L29/06285 ,  H04L29/06326

Abstract: A security broker (SB) that provides network based authorization of secure VoIP services, triggered upon attempted user access. The security broker (SB) intercepts a SIP transaction during session setup to transmit a network based security challenge to a SIP application attempting to access (secure) IP based services. A network based security challenge is transmitted to a participating SIP application on both the origination and termination legs of a SIP transaction. The network based security challenge prompts a SIP application to return subscriber authorization/authentication credentials (e.g. a username/password combination). If credentials returned by the SIP application are valid, the security broker (SB) authorizes the network to permit session completion, and access to secure IP services is granted. Alternatively, if credentials returned by the VoIP application are invalid, the security broker (SB) terminates the corresponding session attempt, hence preventing unauthorized access to (secure) IP based services.

Abstract translation: 提供安全VoIP服务的基于网络的授权的安全代理（SB），在尝试用户访问时触发。 安全代理（SB）在会话建立期间拦截SIP事务，以将基于网络的安全挑战传送到尝试访问（安全）基于IP的服务的SIP应用。 基于网络的安全挑战在SIP事务的始发和终止两端都被发送到参与SIP应用。 基于网络的安全挑战提示SIP应用程序返回用户授权/认证凭证（例如用户名/密码组合）。 如果SIP应用返回的凭证有效，则安全代理（SB）授权网络允许会话完成，并且授予对安全IP服务的访问。 或者，如果VoIP应用返回的凭证无效，则安全代理（SB）终止对应的会话尝试，从而防止未经授权的访问（安全）基于IP的服务。