Today, Peer-to-Peer SIP based communication systems have attracted much attention from both academia and industry. The decentralized nature of P2P might provide the distributed peer-to-peer communication system without help of the traditional SIP server. However, it comes to the cost of reduced manageability and therefore causes security problems, e.g. distrust, privacy leaks, unpredictable availability, etc. In this paper, we investigate on P2PSIP security issues and propose a proxy-based system architecture that improves security during P2PSIP session initiation. The main issues considered in this architecture include Source inter-working, Encryption & Decryption, Policy Management, Destination inter-working, etc. We also implement a prototype with 16 Chord Secure Proxys (CSPs) and 496 P2PSIP peers. After that we analyze this system architecture in several aspects: number of hops and delay, trust upgrading, and the protection of security breaches (e.g. malicious or compromised intermediate peer). We take Chord as the P2PSIP overlay as example. However, this system architecture is independent of Chord overlay and could be extended to the other DHT (Distributed Hash Table) technologies.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Kundan Singh , Henning Schulzrinne, Peer-to-peer internet telephony using SIP, Proceedings of the international workshop on Network and operating systems support for digital audio and video, June 13-14, 2005, Stevenson, Washington, USA  [doi>10.1145/1065983.1065999]
	2	David A. Bryan , Bruce B. Lowekamp , Cullen Jennings, SOSIMPLE: A Serverless, Standards-based, P2P SIP Communication System, Proceedings of the First International Workshop on Advanced Architectures and Algorithms for Internet Delivery and Applications, p.42-49, June 15-15, 2005  [doi>10.1109/AAA-IDEA.2005.15]
	3	P2PSIP. p. http://www.p2psip.org.
	4	C. Jennings, B. Lowekamp, E. Rescorla, S. Baset, H. Schulzrinne, REsource LOcation And Discovery (RELOAD). draft-bryan-p2psip-reload-04, June, 2008.
	5	Frank Dabek , Jinyang Li , Emil Sit , James Robertson , M. Frans Kaashoek , Robert Morris, Designing a DHT for low latency and high throughput, Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation, p.7-7, March 29-31, 2004, San Francisco, California
	6	David A. Bryan, P. Matthews, E. Shim, D. Willis, S. Dawkins, Concepts and Terminology for Peer to Peer SIP. draft-ietf-p2psip-concepts-02, July, 2008.
	7	G. Camarillo, P.Nikander, J. Hautakorpi, HIP BONE: Host Identity Protocol (HIP) Based Overlay Networking Environment. draft-camarillo-hip-bone-01, Feb, 2008.
	8	David A. Bryan, Bruce B. Lowekamp, Marcia Zangrilli, The Design of a Versatile, Secure P2PSIP Communications Architecture for the Public Internet, in IEEE International Symposium on Parallel and Distributed Processing, IPDPS. April, 2008.
	9	Marcin Matuszewski, E. Kokkonen, Mobile P2PSIP--Peer-to-Peer SIP Communication in Mobile Communities, in 5th IEEE Consumer Communications and Networking Conference. Jan. 2008.
	10	David Karger , Eric Lehman , Tom Leighton , Rina Panigrahy , Matthew Levine , Daniel Lewin, Consistent hashing and random trees: distributed caching protocols for relieving hot spots on the World Wide Web, Proceedings of the twenty-ninth annual ACM symposium on Theory of computing, p.654-663, May 04-06, 1997, El Paso, Texas, United States  [doi>10.1145/258533.258660]
	11	Jani Hautakorpi , Gonzalo Camarillo, Evaluation of DHTs from the viewpoint of interpersonal communications, Proceedings of the 6th international conference on Mobile and ubiquitous multimedia, p.74-83, December 12-14, 2007, Oulu, Finland  [doi>10.1145/1329469.1329479]
	12	XingFeng Jiang, H. Zheng, C. Macian, V. Pascual, Service Extensible P2P Peer Protocol. draft-jiang-p2psip-sep-01, Feb, 2008.
	13	Apache Derby. p. http://db.apache.org/derby/.
	14	Wireshark: Go deep.: p. http://www.wireshark.org/.
	15	Audun Jøsang , Ross Hayward , Simon Pope, Trust network analysis with subjective logic, Proceedings of the 29th Australasian Computer Science Conference, p.85-94, January 16-19, 2006, Hobart, Australia
	16	Vladimir Oleshchuk, Trust-based Framework for Security Enhancement of Wireless Sensor Networks, in 4th IEEE Workshop on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS 2007) Sep, 2007.
	17	Xianghan Zheng, Vladimir Oleshchuk, Trust-based Framework for Security Enhancement of P2PSIP Communications Systems, 4th International Conference for Internet Technology and Secured Transaction (ICITST-2009) Nov, 2009.
	18	Xianghan Zheng , Vladimir Oleshchuk, Improving Chord Lookup Protocol for P2PSIP-Based Communication Systems, Proceedings of the 2009 International Conference on New Trends in Information and Service Science, p.1309-1314, June 30-July 02, 2009  [doi>10.1109/NISS.2009.210]
	19	Xianghan Zheng, Vladimir Oleshchuk, Hongzhi Jiao, A System Architecture for SIP/IMS-based Multimedia Services in International Joint Conferences on Computer, Information, and Systems Sciences, and Engineering (CISSE). Dec, 2007.