Patent Number: 7,770,007

Title: Method and system for integrating security mechanisms into session initiation protocol request messages for client-proxy authentication

Abstract: A method and system is provided to integrate the Kerberos security mechanism into the message flow of the signaling operation under the Session Initiation Protocol to allow a SIP client and a SIP proxy to authenticate each other. When the SIP proxy receives an request message, such an INVITE request, from the SIP client, it responds with a challenge message indicating that authentication based on Kerberos is required. In response, the SIP client sends a second request message with a proxy authorization header containing authentication data, including a Kerberos server ticket for the Proxy, to allow the proxy to authenticate the client's user.

Inventors: Bobde; Nikhil (Redmond, WA), Demirtjis; Ann (Redmond, WA), Han; Mu (Redmond, WA)

Assignee: Microsoft Corporation

International Classification: H04L 9/32 (20060101); G06F 17/00 (20060101); H04L 29/06 (20060101)

Expiration Date: 8/03/12018