本文選題：VoIP + RTP　； 參考：《電子科技大學(xué)》2014年碩士論文

【摘要】：隨著網(wǎng)絡(luò)技術(shù)朝著數(shù)字化、綜合化、智能化的方向飛速發(fā)展,網(wǎng)絡(luò)已經(jīng)深深融入了人們的日常生活、工作中,通過IP網(wǎng)絡(luò)提供語音、視頻、傳真、數(shù)據(jù)等多媒體綜合業(yè)務(wù)已成為實時通信發(fā)展的趨勢和目標(biāo)。這種利用IP網(wǎng)絡(luò)為人們提供實時信息交互的技術(shù),隨著網(wǎng)絡(luò)應(yīng)用的進(jìn)一步普及,已成為人們相互聯(lián)絡(luò)的重要手段。然而為IP終端設(shè)備提供服務(wù)的IP網(wǎng)絡(luò)存在著各種各樣的安全隱患,網(wǎng)絡(luò)上傳輸?shù)腎P數(shù)據(jù)包極易為黑客所截獲,從而造成關(guān)鍵信息的丟失或被竊聽。本文的目標(biāo)是設(shè)計并實現(xiàn)一種高速VoIP安全網(wǎng)關(guān),該安全網(wǎng)關(guān)和項目團(tuán)隊同步研制的安全終端以及管理設(shè)備共同組成一個VoIP加密系統(tǒng)。安全網(wǎng)關(guān)對RTP(Real-Time transport protocol,實時傳輸協(xié)議)報文進(jìn)行加解密處理,從而為用戶提供安全的VoIP語音通信。本文首先對VoIP通信系統(tǒng)以及該系統(tǒng)應(yīng)用到的相關(guān)協(xié)議進(jìn)行了闡述和分析,對當(dāng)前主流的幾種呼叫控制協(xié)議和加解密算法進(jìn)行分析與比較,確定采用以AES(高級加密標(biāo)準(zhǔn))作為RTP媒體報文的加密算法,設(shè)計并實現(xiàn)了VoIP安全網(wǎng)關(guān)。主要的工作分為軟、硬件兩部分:軟件方面主要包括驅(qū)動開發(fā),數(shù)據(jù)封裝協(xié)議和密鑰分發(fā)協(xié)議的設(shè)計和調(diào)試;硬件方面則是對主要芯片的選型,原理框圖的設(shè)計,外圍電路的搭建以及AES算法的FPGA實現(xiàn)。本文詳細(xì)介紹了硬件電路和關(guān)鍵模塊的Verilog代碼,軟件部分的具體實現(xiàn)不屬于本論文的研究內(nèi)容,未做詳細(xì)說明。最后,通過在內(nèi)部測試網(wǎng)絡(luò)中搭建一套開源SIP服務(wù)器,筆者測試了本論文設(shè)計的安全網(wǎng)關(guān)對VoIP語音業(yè)務(wù)的加密功能和加密性能,另外,通過抓包的方式對VoIP通信的安全性進(jìn)行了驗證。
[Abstract]:With the rapid development of network technology in the direction of digitalization, integration and intelligence, the network has been deeply integrated into people's daily life and work, providing voice, video, fax through IP network. Multimedia integrated services such as data has become the trend and goal of real-time communication. With the popularization of network application, the technology of using IP network to provide real-time information interaction has become an important means for people to communicate with each other. However, there are various security risks in IP networks serving IP terminal devices. The IP packets transmitted on the network are easily intercepted by hackers, resulting in the loss of critical information or eavesdropping. The goal of this paper is to design and implement a high speed VoIP security gateway. The security gateway, the security terminal and the management equipment developed by the project team synchronously constitute a VoIP encryption system. The security gateway encrypts and decrypts the RTP(Real-Time transport protocol (real-time transmission protocol) packets to provide the users with secure VoIP voice communication. In this paper, firstly, the VoIP communication system and the related protocols used in the system are described and analyzed, and several popular call control protocols and encryption and decryption algorithms are analyzed and compared. AES (Advanced encryption Standard) is adopted as the encryption algorithm of RTP media message. The VoIP security gateway is designed and implemented. The main work is divided into software and hardware: software mainly includes driver development, data encapsulation protocol and key distribution protocol design and debugging, hardware is the selection of the main chip, schematic design, The construction of peripheral circuit and the FPGA implementation of AES algorithm. This paper introduces the hardware circuit and the Verilog code of the key module in detail. The realization of the software part does not belong to the research content of this paper, and has not been explained in detail. Finally, by building an open source SIP server in the internal test network, the author tests the encryption function and performance of the security gateway designed in this paper for VoIP voice services. The security of VoIP communication is verified by packet capture.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TN915.05
，

本文編號：1801327