The invention discloses an end-to-end secret key negotiation method for VoIP (Voice Over
Internet Protocol) real-
time data safety transmission, which is applicable to
mobile phone terminals. The method comprises the following steps of (1) in a
signal security transmission stage, adopting a TLS (
Transport Layer Security) protocol to bidirectionally authenticating and protecting an SIP (
Session Initiation Protocol)
signal; (2) in an end-to-end secret key negotiation stage, adopting a two-layer
encryption way, at a first layer, respectively adopting the TLS protocol to protect between a communication initiator and a
server as well as between the
server and a communication
receiver, and at a second layer, respectively using SM2 (
Signal Module) public keys of the communication initiator and the communication
receiver to protect secret key negotiation parameter information of the communication initiator and the communication
receiver. According to the end-to-end secret key negotiation method for VoIP (Voice Over
Internet Protocol) real-
time data safety transmission, the two-layer
encryption way is adopted to protect the secret key negotiation parameters, and the
signal is bidirectionally authenticated and protected at the signal transmission stage, so that the safety of
information transmission is greatly improved.