Watch out - The Norwegian Version

834 views

Published on

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
834
On SlideShare
0
From Embeds
0
Number of Embeds
6
Actions
Shares
0
Downloads
12
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Watch out - The Norwegian Version

  1. 1. Watchout!The SIP world is changing.Don’t stay in the past. Olle E. oej@edvina.net Johansson * oej@edvina.net * Twitter oej © Copyright Edvina AB, Sollentuna, Sweden 2011. All rights reserved.
  2. 2. Warning.High rate of slides/min...
  3. 3. Me. Twitter: @oej @sipv6 @edvina Blog: www.voip-forum.com
  4. 4. AftenpostenIDAG! Aftenposten idag
  5. 5. Where are we?• SIP is ten years old• Mostly used for PSTN over IP• Narrowband audio• Insecure implementations• Insecure deployments
  6. 6. BAD! We can do better.Our customers deserve better.
  7. 7. WE SHOULD BE ASHAMED!
  8. 8. The network is changing.• We have more smart phones, tablets and other devices than PCs These devices have multimedia - video, audio• Multimedia is changing - wideband, stereo, 7-1, screen sharing• The number of users is exploding
  9. 9. The network is reaching and end. And a beginning. • We have no more IPv4 addresses to allocate • How are we going to build new cloud services, add new devices and build a larger Internet? • Do you want carrier grade NAT’s?© Copyright 2010, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  10. 10. The network is falling apart. • We lack a lot of knowledge about networking out there. • The NAT and Firewall devices are just good enough to handle a minimum level of traffic and predeterimed applications • Customers need to wake up. Otherwise the clouds will be rain clouds with dangerous thunderstorms.© Copyright 2010, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  11. 11. The network is out of control There’s no ”inside” and ”outside” any more. If there ever was. The realtime platform requires better security.© Copyright 2010, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  12. 12. Good news! There are alternatives
  13. 13. SkypeYet another telco monopoly. Only this time, it’s Internet-based.
  14. 14. Just joking.Let’s take a look at real alternatives.
  15. 15. Building solutions on IP Asterisk, Asterisk SCF andtelephony FreeSwitch and... Old stuff
  16. 16. IP Chat Screen Video Gamestelephony Presence sharing Systemintegration Social networks RSS ? SIP Internet & IP networks
  17. 17. Welcome to therealtime Internet. The social multimedia network. SIP Internet & IP networks
  18. 18. Welcome to therealtime Internet. This is not just about telephony. SIP Internet & IP networks
  19. 19. What is SIP?• A protocol to find each other in real time• A protocol to manage sessions between people REALTIME I T ’ S A L L A B O U T N OW.
  20. 20. Building this requiresa bit more than good old SIP INVITE 200 OK ACK
  21. 21. Learn new things. GIN - pbx ICE registrationsSIP outbound SIP identity WebRTC GRUU RTP multiplexing TLS MSRP
  22. 22. WebRTC The new kid on the block• Cooperation between the W3C and IETF• Bidirectional media between browsers• Audio, video, text• The platform for new services• SIP in the browser (listen to Iñaki!)
  23. 23. WebRTC The vision• An open service where we can communicate freely with each other from any device and any network• First wave propably just between users of the same web service• Many of us wants open federation - it requires a shared address space and protocol
  24. 24. WebRTC Dependencies• The architecture is still discussed• Will propably depend on ICE, which means dependencies on TURN/STUN as well• OverSIP and jsSIP presented here today is a good example of the future!
  25. 25. WebRTC WebRTC• Platform for new cool • We’ll still have NAT applications and firewall issues• Built into the web • Will it be standardized browser enough• Security-enabled from • Will we need SBCs to start handle the connections?+ -
  26. 26. ICE ICETaking us out of the NAT darkness.
  27. 27. ICE Ice: Show me yours, and I’ll show you mine. NATted network • All UAs find all their SIP addresses, using STUN SIP Alice • May allocate an address using TURN • Sends all addresses as candidates in SDP • Receipient tries to contact addresses and select best media path Turn • Supports both IPv4 and IPv6 Bob Media relay • IPv6 UAs allocate IPv4 NATted network Turn address Cecilia
  28. 28. ICE ICE • Finds the best media path • Takes time at call between two nodes setup • Supports IPv4 and IPv6 • Hard for b2bua’s to deployments support • Binds SIP+SDP to actual • Complex for media developers • Used by Microsoft, Apple (FaceTime), Google + - Hangouts
  29. 29. Globally Routable device addressesGRUU Example.com SIP SIP Alice The AOR for Alice and Bob belongs to their proxy. Bob has one Builds on SIP outbound AOR for multiple UAs. UUID URN’s. SIP astritech.com Bob The GRUU points to a device. It is allocatedNATted network at registration and belongs to the domain, thus Bob can be used globally!
  30. 30. GRUU Device URIs• Makes transfers and • Complex RFC other SIP in-dialog functions work across • Adds a bit of domains complexity to the UA• A Contact without IPv4/ IPv6 dependencies• Opens up for multi- device calls (SPLICES)+ -
  31. 31. IDENTITY RFC 4474- SIP identity • A domain implements an authentication service that signs an identity on outbound messages SIP • Users identify themselves to domain server (proxy) by other means (Digest, TLS) Identity • Signs the From: URI (AOR) Local Local SIP SIP HTTP auth or TLS auth AUDIO
  32. 32. IDENTITY Can this be connected to federated identity?• Shibboleth/SAML 2.0/FEIDE • Draft exists, but no progress. Needs work.• OpenID• Oauth
  33. 33. IDENTITY SIP identity• Enables trust of identities • Complex RFC between domains • PKI is always• Adds integrity check of complicated SIP messages • Not many• Together with TLS for implementations, thus connections, part of trust platform for an open very few tests of federation interoperability+ -
  34. 34. What’s missing? Proper solution Implementationsfor TLS and a PKI.of DTLS SRTP Customers with the key exchange guts to do something End to end different. Management security. of security and configurations.
  35. 35. The next generation realtime network. • We’ve learned a lot in 10 years of SIP. • Why hasn’t the IP phones changed? • New models coming - see Goji for smartphones, Skycall on Norwegian and Panasonic Android SIP phones
  36. 36. Ask yourselves theimportant question. Have you become one of the old PBX-huggers? The ones that just doesn’t let go. Why doesn’t mobile office solutions have blinking lamps and all that stuff?
  37. 37. Summary• IETF realized that NAT is a big issue and developed GRUU, ICE and Outbound. Use it.• For security, there’s TLS, S/MIME and SIP/Identity• A properly architectured SIP architecture can handle much more than telephony.• Look at Skype, Microsoft Lync and AG Projects product suite for inspiration.• Only the last company in the list is using open standards!
  38. 38. REALTIMEI T ’ S A L L A B O U T N OW.
  39. 39. OPEN UNIFIEDCOMMUNICATION ACCORDING TO EDVINA The road ahead: 10 bullet points to remember!
  40. 40. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 1. Use Open Network Protocols TCP/IP * SIP * XMPP© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  41. 41. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 2. Use Open Source COOPERATIVE SOFTWARE© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  42. 42. @ OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 3. Use e-mail style addresses. One address that rule them all!© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  43. 43. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 4. Implement with Integrity and Security BUILDING TRUST FOR NEW SOLUTIONS© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  44. 44. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 5. Implement green anti-travel solutions VIDEO IS IMPORTANT.© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  45. 45. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 6. Corporate Social Responsibility Building and connecting to a network for everyone. OPEN SOURCE = AVAILABILITY FOR THE 3RD WORLD© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  46. 46. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 7. Everything is and should be building blocks EVERYTHING SHOULD HAVE AN AN OPEN API© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  47. 47. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 8. Don’t disconnect from the world. IPv6 NOW© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  48. 48. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 9. Don’t wait for demand Deliver services to your users.© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  49. 49. OPEN UNIFIED COMMUNICATION ACCORDING TO EDVINA 10. Think different. The new telephony platform is not about telephony.© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net
  50. 50. REALTIMEI T ’ S A L L A B O U T N OW.
  51. 51. ...and for theseideas to come true, you’ll need...
  52. 52. Slides available soon on slideshare.net/oej Thank you! Any questions? Twitter: @oej - the rest oej@edvina.net© Copyright 2012, Edvina AB, Sollentuna, Sweden. All rights reserved. Approved distribution only. info@edvina.net

×