• Save
Realtime communication security - SIP, XMPP and others
Upcoming SlideShare
Loading in...5
×
 

Realtime communication security - SIP, XMPP and others

on

  • 3,972 views

A short presentation on issues we face with realtime security - too many solutions and too few customer requirements and a lack of demand on the market.

A short presentation on issues we face with realtime security - too many solutions and too few customer requirements and a lack of demand on the market.

Statistics

Views

Total Views
3,972
Views on SlideShare
2,530
Embed Views
1,442

Actions

Likes
3
Downloads
0
Comments
0

8 Embeds 1,442

http://www.voip-forum.com 1304
http://edvina.net 120
http://translate.googleusercontent.com 8
http://webcache.googleusercontent.com 3
http://www.linkedin.com 3
https://www.linkedin.com 2
http://87.248.112.8 1
https://twitter.com 1
More...

Accessibility

Upload Details

Uploaded via as Apple Keynote

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n

Realtime communication security - SIP, XMPP and others Realtime communication security - SIP, XMPP and others Presentation Transcript

  • REALTIMECOMMUNICATION SECURITY Olle E. Johansson * oej@edvina.net * Twitter oej Copyright Edvina AB, Sollentuna, Sweden 2011. All rights reserved.
  • From this...
  • to this
  • Talk Video Chat Application sharing3D holographic 7.1 conferences
  • COMMUNICATION BETWEEN TWO OR MORE PEOPLE
  • OUT OF SCOPE TODAY. Tommy the system intruder Christina the network sniffer Adrian the BOT network manager
  • IN SCOPEYou Me
  • WHAT IS THE PROBLEM? The usual security issues...
  • WHO’S TALKING?You Me Identity
  • WHO IS LISTENING?You Me 3rd party Confidentiality
  • DID YOU REALLY WRITE THAT? You Me Integrity
  • YOU CAN’T DO THAT.You Me Authorization
  • WHO AM I? IP Phone Pad Softphone Set-top-box Chat client LaptopMe Car Cell phone
  • THE SIP WORLDDATACOM TELECOM
  • NETWORK SECURITYYou Me Our problem
  • TELECOM SECURITY MODEL You Me In the telco we trust.
  • END2END OR THROUGH PROXY SERVER? Do you wantsomeone else to handle your keys? You Me Do you want to set up a secure session between you and me? If so, how?
  • THIS APPLIES TO MANY PROTOCOLS SIP RTCWEB XMPP ?
  • SIP SECURITY TLS DTLS/SRTPSIGNALLING MEDIA S/MIMESIP IDENTITY INTEGRITYHTTP DIGEST MSRP/TLS AUTH CHAT
  • ASTERISK 1.8 TLS ACLsSRTP SDES TLS very, very experimental
  • KAMAILIO SIP SERVER 3.1 TLS ACLs DOS prevention TLS very, very good!
  • WHAT’S THE ISSUEWITH REAL TIME SECURITY? No one asks for it. Therefore no one implements it. Which means lack of experience.
  • WHAT I DO NOT UNDERSTAND. Why does nobody care, really?
  • FINAL QUESTION: What’s a secure session for you?
  • H E L P.THANK YOU.