Reboot the Open Realtime Revolution - #MoreCrypto (Fall 2014)

5,500 views

Published on

My talk at Voip2day 2014 in Madrid, Spain and Elastix World 2014 in Santiago, Chile. Asterisk is now 15 years old and the revolution has faded away and is now part of regular business. It's time to restart and look forward, build new things and include security by default. Security needs to be in focus for everyone in VoIP and realtime communication during the coming year.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
5,500
On SlideShare
0
From Embeds
0
Number of Embeds
3,929
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Reboot the Open Realtime Revolution - #MoreCrypto (Fall 2014)

  1. 1. 10 The Open Communication Revolution © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. 4 1 @oej
  2. 2. Once upon a time…
  3. 3. 1999 December 5th
  4. 4. Mark Spencer created Asterisk. 15 years ago this year.
  5. 5. 2002
  6. 6. And the protocol wars began.
  7. 7. 2004
  8. 8. VON 2004 SAN JOSE, USA
  9. 9. Astricon 2004 Atlanta!
  10. 10. ASTERISK © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. VONAGE WANNABEES KILL THE TELCO OPEN SOURCE
  11. 11. A different time. 10 years ago.
  12. 12. We need to move forward, make new mistakes.
  13. 13. 2014
  14. 14. Where are we?
  15. 15. Where are we? Open Source is accepted in business and for personal use (Android!) © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. Open Source telephony is used by carriers and enterprises world wide. SIP is taking over from ISDN. Everywhere. We are no longer the cool guerilla. We’re just doing normal business.
  16. 16. 2014 Examples from the life of an Open Source contributor.
  17. 17. EXECUTIVE SUMMARY KAMAILIO SIP NETWORKS © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. LYNC CERTIFICATION OF ASTERISK IETF WORK ON IPv6, DANE AND SIP ASTERISK IMPROVEMENTS
  18. 18. INTENO ASTERISK EMBEDDED IN BROADBAND ROUTER HOME TELEPHONY AND SMALL BUSINESS PBX CARE PHONES/ALARMS REMOTE HOLD, DNS SRV AND OTHER ASTERISK IMPROVEMENTS © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  19. 19. BRESSNER Technology ASTERISK EMBEDDED IN ISDN GATEWAY LYNC CERTIFICATION SMALL BUSINESS PBX COMFORT NOICE/SILENCE SUPPRESSION IN ASTERISK © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  20. 20. CARRIERS: Lync trunks ASTERISK FOR LYNC RTCP/RTP IMPROVEMENTS PRACK CAUSE CODE HANDLING, PACKET REORDERING © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  21. 21. CARRIERS (Just SIP, not Lync) SCALABLE SIP PLATFORMS TLS/SRTP TRIALS KAMAILIO EVERYWHERE TRAINING, ARCHITECTURE, INSTALLATION, TESTS © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  22. 22. CALL CENTERS SCALABLE SIP PLATFORMS ASTERISK AT CORE RTP/RTCP IMPORTANT MEDIA IN FOCUS © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  23. 23. SWEDISH PUBLIC RADIO KAMAILIO SIP NETWORK HIGH AUDIO QUALITY RADIO BROADCAST EBU STANDARD © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  24. 24. IETF & The SIP Forum SIP IPv6 DUAL STACK SIP CERTIFICATES IN DNSSEC - DANE WEBRTC STUN/DANE © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  25. 25. ASTERISK IMPROVEMENTS CAUSE CODE HANDLING COMFORT NOICE/ SILENCE SUPPRESSION REMOTE HOLD RTCP CALL QUALITY RECORDS © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. DNS SRV DONE RIGHT PRACK SUPPORT DTMF DURATION PACKET REORDERING
  26. 26. WHERE? IN MY PRIVATE VERSION OF ASTERISK AND ON DIGIUM’S SVN SERVER. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. NOT IN THE ASTERISK OFFICIAL CODE BASE.
  27. 27. WILL I STILL BUILD LIKE THIS TWO YEARS FROM NOW? KAMAILIO © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. ASTERISK
  28. 28. WHERE DOES WEBRTC FIT IN? I DON’T THINK WE ARE EVEN CLOSE TO UNDERSTAND THAT. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. BIG CHANGES TAKE TEN YEARS
  29. 29. Where we are going SIP RECORDING WEBRTC SERVICE © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. ??? MEDIA BACKBONE MIXER TRANSCODI NG EFFECTS
  30. 30. This part is missing RECORDING MEDIA BACKBONE MIXER TRANSCODI © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. NG Project X EFFECTS
  31. 31. What about NOW?
  32. 32. INTERNET COMMUNICATION OTT Everything is IP. Bypassing carriers over IP. BECOME THE TELCO OPEN SOURCE! Push the telco down the stack. Get a quick start.
  33. 33. WINNERS
  34. 34. SIP RTP © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. API HTTPS XMPP HTTP
  35. 35. LOOSERS.
  36. 36. YOU. The user. The customer.
  37. 37. BRAND NAMES © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. PRIVATE PROTOCOLS ISOLATED ISLANDS VENTURE CAPITAL
  38. 38. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. Not moving SIP forward. Where are you??? RFC 3261
  39. 39. A BROKEN OLD NETWORK
  40. 40. IPV4 NAT CARRIER GRADE NAT © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. NETWORKING KNOWLEDGE
  41. 41. THE MOST IMPORTANT PROBLEM…
  42. 42. LOSS OF CUSTOMER TRUST.
  43. 43. We can work on all of that. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  44. 44. Open Source can move fast and is a community effort. A shared resource.
  45. 45. (Unless there are too much bureaucracy in the way. Which can happen to Open Source projects too.)
  46. 46. BENEFITS OF OPEN SOURCE LOWER COSTS FOR EVERYONE FASTER ADAPTION TO CUSTOMER NEEDS. SECURITY COMES NATURALLY COMPETITIVE MARKETPLACE © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  47. 47. Open Source will take you there. • Low cost per customer • Innovation, security and (sometimes) stability • Open Standards and Interoperability © Copyright 2010, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  48. 48. Open.
  49. 49. Open. SYSTEMS PROTOCOLS NETWORKS SOURCE © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  50. 50. Internet © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  51. 51. Internet INTEROPERABILITY.
  52. 52. INTEROPERABILITY. What every network engineer gets paid to work with. But too many forget…
  53. 53. INTEROPERABILITY. Take it back. You have earned it.
  54. 54. 10 4 1 © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  55. 55. 2005-2012: 10 to-do list items OPEN SOURCE SECURITY 10 IPv6 © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. ENVIRONMENT FEDERATE INTEROPERABILITY OVERLOAD. …
  56. 56. 4 2013: FOUR THINGS SECURITY IPv6 © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. FEDERATE OPUS!
  57. 57. LET’S FOCUS ON ONE THING. 1
  58. 58. Ready? © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  59. 59. The Internet is under attack. #moreCrypto © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  60. 60. OPPURTUNISTIC SECURITY. A BASE LAYER OF INTEGRITY. NOT FULL SECURITY, BUT BETTER THAN NOTHING.
  61. 61. BUILD TRUST. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. SECURITY BY DEFAULT. BUILD GOOD STUFF.
  62. 62. LET’S GET EVERYONE ABOARD. PROVIDER:CE OP^2 © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. 2015 is the year of realtime security. OPENSIPS ELASTIX FREEPBX KAMAILIO YATE OPENBTS FREESWITCH ASTERISK BLINK SYLKSERVER JSSIP BARESIP ???? EKIGA EKIGA RESIPROCATE PJSIP EDVx REPRO ZOIPER
  63. 63. 1 TODO-LIST FOR 2015 SECURE ALL COMMUNICATION BY DEFAULT © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  64. 64. WHAT THIS MEANS FOR SIP CALLS USE TLS ALWAYS. TEST IF IT IS OPEN AND USE IT. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. INVITE WITH SRTP. IF IT FAILS, OPTIONALLY FALL BACK.
  65. 65. We are leaving the commercial CA SIPDANE Using DNSsec to verify TLS certificates. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  66. 66. WHEN BUYING SIP TRUNKS REQUIRE TLS. REQUIRE SRTP. REQUIRE DNS. REQUIRE IPv6. © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.
  67. 67. Different needs. Different solutions. SECURE CALLS: TLS AUTHENTICATION/CRYPTO DTLS SRTP KEY EXCHANGE WE CAN IMPROVE SECURITY FOR ALL CALLS, © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved. YOU DO NOT WANT TO LOOSE THE TRUST OF YOUR USERS AND CUSTOMERS. REGARDLESS OF DEFAULT CONFIGURATION.
  68. 68. When do we start?
  69. 69. Now. Here. In Realtime.
  70. 70. #morecrypto in SIP, XMPP, RTP. WEBRTC and other realtime platforms. Thank you.
  71. 71. 1 TODO-LIST FOR 2015 SECURE ALL COMMUNICATION BY DEFAULT @oej @realtimesec © Copyright 2014 Edvina AB, Sollentuna, Sweden. All rights reserved.

×