{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T16:48:34Z","timestamp":1781110114385,"version":"3.54.1"},"reference-count":23,"publisher":"IGI Global Scientific Publishing","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012,1,1]]},"abstract":"<p>The IP multimedia subsystem (IMS) is a basis for a significant new architecture which offers network operators the opportunity to expand their services, by integrating voice and multimedia communications and delivering them into new environments with new purposes. Basically, the IMS is an overlay network on top of IP layer that uses Session Initiation Protocol (SIP) as the primary signaling mechanism. SIP works at the application layer in IP networks. It is thus faced to not only the IP-networks security issues, but also to new issues which are related to the SIP protocol directly. Consequently, using IMS bears several new security challenges. This paper presents the most relevant SIP-related security vulnerabilities and threats, and the implementation and simulation test bed to experiment two versions of the SIP Asterisk software to emphasize these threats. The different security mechanisms that can be deployed to overcome the SIP security issues while putting emphasis the most important ones are discussed. Afterwards, the authors propose adaptable solutions to the SIP threats already identified for a specific service (access information from anywhere) in IMS context. Finally, conclusions are drawn and some perspectives are introduced to improve the security of multimedia applications.<\/p>","DOI":"10.4018\/jmcmc.2012010101","type":"journal-article","created":{"date-parts":[[2012,4,5]],"date-time":"2012-04-05T09:16:06Z","timestamp":1333617366000},"page":"1-17","source":"Crossref","is-referenced-by-count":0,"title":["A Secure Architecture for Nomadic User in IMS Network"],"prefix":"10.4018","volume":"4","author":[{"given":"A. Abou","family":"El Kalam","sequence":"first","affiliation":[{"name":"Universit\u00e9 de Toulouse, France, and Universit\u00e9 Cadi-Ayyad, Morocco"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"M.","family":"Maachaoui","sequence":"additional","affiliation":[{"name":"Universit\u00e9 de Toulouse, France, and Universit\u00e9 Cadi-Ayyad, Morocco"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"N.","family":"Idboufker","sequence":"additional","affiliation":[{"name":"Universit\u00e9 Cadi-Ayyad, Morocco"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"H. Ait","family":"Lahcen","sequence":"additional","affiliation":[{"name":"Universit\u00e9 de Toulouse, France, and Universit\u00e9 Cadi-Ayyad, Morocco"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"A.Ait","family":"Ouahman","sequence":"additional","affiliation":[{"name":"Universit\u00e9 Cadi-Ayyad, Morocco"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jmcmc.2012010101-0","doi-asserted-by":"crossref","unstructured":"Atkins, D., & Austein, R. (2004). RFC 3833: Threat Analysis of the Domain Name System (DNS). Retrieved from http:\/\/www6.ietf.org\/rfc\/rfc3833.txt","DOI":"10.17487\/rfc3833"},{"key":"jmcmc.2012010101-1","doi-asserted-by":"crossref","unstructured":"Baugher, M., McGrew, D., Naslund, M., Carrara, E., & Norrman, K. (2004). RFC 3711: The Secure Real-time Transport Protocol (SRTP). Retrieved from http:\/\/www.ietf.org\/rfc\/rfc3711.txt","DOI":"10.17487\/rfc3711"},{"key":"jmcmc.2012010101-2","doi-asserted-by":"crossref","unstructured":"Calhoun, P., Loughney, J., Guttman, E., Zorn, G., & Arkko, J. (2003). RFC 3588: Diameter Base Protocol. Retrieved from http:\/\/www.rfc-editor.org\/rfc\/rfc3588.txt","DOI":"10.17487\/rfc3588"},{"key":"jmcmc.2012010101-3","doi-asserted-by":"crossref","unstructured":"Dierks, T., & Allen, C. (1999). RFC 2246: The TLS protocol version 1.0. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc2246.txt","DOI":"10.17487\/rfc2246"},{"key":"jmcmc.2012010101-4","doi-asserted-by":"crossref","unstructured":"Droms, R. (1997). RFC 2131: Dynamic Host Configuration Protocol. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc2131.txt","DOI":"10.17487\/rfc2131"},{"key":"jmcmc.2012010101-5","doi-asserted-by":"crossref","unstructured":"Droms, R., Bound, J., Volz, B., Lemon, T., Perkins, C., & Carney, M. (2003). RFC 3315: Dynamic Host Configuration Protocol for IPv6 (DHCPv6). Retrieved from http:\/\/www.ietf.org\/rfc\/rfc3315.txt","DOI":"10.17487\/rfc3315"},{"key":"jmcmc.2012010101-6","doi-asserted-by":"crossref","unstructured":"Faltstrom, P., & Mealling, M. (2004). RFC 3761: The E.164 to Uniform Resource Identifiers (URI) Dynamic Delegation Discovery System (DDDS) Application (ENUM). Retrieved from http:\/\/www.rfc-editor.org\/rfc\/rfc3761.txt","DOI":"10.17487\/rfc3761"},{"key":"jmcmc.2012010101-7","unstructured":"Franks, J., Hallam-Baker, P., Hostetler, J., Lawrence, S., Leach, P., Luotonen, A., & Stewart, L. (1999). RFC 2617: HTTP Authentication. Retrieved from http:\/\/tools.ietf.org\/html\/rfc2617"},{"key":"jmcmc.2012010101-8","unstructured":"Global Digital Forensics. (2011). Maxpatrol. Retrieved from http:\/\/www.evestigate.com\/maxpatrolsecurityscanner.html"},{"key":"jmcmc.2012010101-9","doi-asserted-by":"crossref","unstructured":"Handley, M., Jacobson, V., & Perkins, C. (2006). RFC 4566: SDP: Session Description Protocol. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4566.txt","DOI":"10.17487\/rfc4566"},{"key":"jmcmc.2012010101-10","doi-asserted-by":"crossref","unstructured":"Harkins, D., & Carrel, D. (1998). RFC 2409: The Internet Key Exchange (IKE). Retrieved from http:\/\/tools.ietf.org\/html\/rfc2409","DOI":"10.17487\/rfc2409"},{"key":"jmcmc.2012010101-11","author":"H.-F.Huang","year":"2006","journal-title":"A new efficient authentication scheme for Session Initiation Protocol"},{"key":"jmcmc.2012010101-12","doi-asserted-by":"crossref","unstructured":"Kent, S., & Atkinson, R. (1998). RFC 2401: Security Architecture for the Internet Protocol. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc2401.txt","DOI":"10.17487\/rfc2401"},{"key":"jmcmc.2012010101-13","unstructured":"Newport Networks. (2008). SIP: Security and Session Border Controllers. Retrieved from http:\/\/www.cyneric.com\/documentation\/pdf\/SIP_Security_and_Session_Controllers.pdf"},{"key":"jmcmc.2012010101-14","unstructured":"Peterson, J. (2004). RFC 3853: S\/MIME Advanced Encryption Standard (AES). Retrieved from http:\/\/tools.ietf.org\/html\/rfc3853"},{"key":"jmcmc.2012010101-15","unstructured":"RADVISION. (2006). IMS SIP and Signaling - The RADVISION Perspective: A Technology Overview. Retrieved from http:\/\/www.radvision.com\/NR\/rdonlyres\/FC60D840-1FE5-4F82-A6A2-088D2D4AADCB\/0\/IMS"},{"key":"jmcmc.2012010101-16","unstructured":"rd Generation Partnership Project (3GPP). (2002). 3GPP TS 29.228: Technical Specification Core Network; IP Multimedia Subsystem Cx and Dx Interfaces; Signaling Flows and Message Contents (Release 5). Retrieved from http:\/\/www.3gpp.org\/"},{"key":"jmcmc.2012010101-17","unstructured":"rd Generation Partnership Project (3GPP). (2002). 3GPP TS 29.229: Technical Specification Core Network; Cx and Dx Interfaces Based on the Diameter Protocol; Protocol Details. Retrieved from http:\/\/www.3gpp.org\/"},{"key":"jmcmc.2012010101-18","doi-asserted-by":"crossref","unstructured":"Rescorla, E. (1999). RFC 2631: Diffie-Hellman Key Agreement Method. Retrieved from http:\/\/tools.ietf.org\/html\/rfc2631","DOI":"10.17487\/rfc2631"},{"key":"jmcmc.2012010101-19","doi-asserted-by":"crossref","unstructured":"Rescorla, E., & Modadugu, N. (2006). RFC 4347: Datagram Transport Layer Security. Retrieved from http:\/\/tools.ietf.org\/html\/rfc4347","DOI":"10.17487\/rfc4347"},{"key":"jmcmc.2012010101-20","doi-asserted-by":"crossref","unstructured":"Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Spark, R., et al. (2002). RFC 3261: Session Initiation Protocol. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc3261.txt","DOI":"10.17487\/rfc3261"},{"key":"jmcmc.2012010101-21","doi-asserted-by":"crossref","unstructured":"Schulzrinne, H., Casner, S., Frederick, R., & Jacobson, V. (2003). RFC 3550: RTP: A Transport Protocol for Real-Time Applications. Retrieved from http:\/\/tools.ietf.org\/html\/rfc3550","DOI":"10.17487\/rfc3550"},{"key":"jmcmc.2012010101-22","doi-asserted-by":"crossref","unstructured":"Sher, M., & Magedanz, T. (2007). Protecting IP Multimedia Subsystem (IMS) service delivery platform from time independent attacks. In Proceedings of the Third IEEE International Symposium on Information Assurance and Security (pp. 171-176).","DOI":"10.1109\/IAS.2007.78"}],"container-title":["International Journal of Mobile Computing and Multimedia Communications"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=63047","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,2]],"date-time":"2022-06-02T00:51:03Z","timestamp":1654131063000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jmcmc.2012010101"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2012,1,1]]},"references-count":23,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2012,1]]}},"URL":"https:\/\/doi.org\/10.4018\/jmcmc.2012010101","relation":{},"ISSN":["1937-9412","1937-9404"],"issn-type":[{"value":"1937-9412","type":"print"},{"value":"1937-9404","type":"electronic"}],"subject":[],"published":{"date-parts":[[2012,1,1]]}}}