Realtime communication security - SIP, XMPP and others

From this...

to this

Talk Video Chat Application sharing3D holographic 7.1 conferences

COMMUNICATION BETWEEN TWO OR MORE PEOPLE

OUT OF SCOPE TODAY. Tommy the system intruder Christina the network sniffer Adrian the BOT network manager

IN SCOPEYou Me

WHAT IS THE PROBLEM? The usual security issues...

WHO’S TALKING?You Me Identity

WHO IS LISTENING?You Me 3rd party Conﬁdentiality

DID YOU REALLY WRITE THAT? You Me Integrity

YOU CAN’T DO THAT.You Me Authorization

WHO AM I? IP Phone Pad Softphone Set-top-box Chat client LaptopMe Car Cell phone

THE SIP WORLDDATACOM TELECOM

NETWORK SECURITYYou Me Our problem

TELECOM SECURITY MODEL You Me In the telco we trust.

END2END OR THROUGH PROXY SERVER? Do you wantsomeone else to handle your keys? You Me Do you want to set up a secure session between you and me? If so, how?

THIS APPLIES TO MANY PROTOCOLS SIP RTCWEB XMPP ?

SIP SECURITY TLS DTLS/SRTPSIGNALLING MEDIA S/MIMESIP IDENTITY INTEGRITYHTTP DIGEST MSRP/TLS AUTH CHAT

ASTERISK 1.8 TLS ACLsSRTP SDES TLS very, very experimental

KAMAILIO SIP SERVER 3.1 TLS ACLs DOS prevention TLS very, very good!

WHAT’S THE ISSUEWITH REAL TIME SECURITY? No one asks for it. Therefore no one implements it. Which means lack of experience.

WHAT I DO NOT UNDERSTAND. Why does nobody care, really?

FINAL QUESTION: What’s a secure session for you?

H E L P.THANK YOU.

http://www.voip-forum.com	1228
http://edvina.net	19
http://translate.googleusercontent.com	8
http://webcache.googleusercontent.com	3
http://87.248.112.8	1

Realtime communication security - SIP, XMPP and others

by Olle E Johansson on Feb 24, 2011

Accessibility

Categories

Tags

Upload Details

Usage Rights

5 Embeds 1,259

Statistics

Realtime communication security - SIP, XMPP and others — Presentation Transcript