Presentation is loading. Please wait.

Presentation is loading. Please wait.

H.235 Authentication, Integrity and Encryption Adi Regev Sr. Director Sales Engineering & Customer Support.

Published byAnna Douglas Modified over 10 years ago

Similar presentations

Presentation on theme: "H.235 Authentication, Integrity and Encryption Adi Regev Sr. Director Sales Engineering & Customer Support."— Presentation transcript:

1 H.235 Authentication, Integrity and Encryption Adi Regev Sr. Director Sales Engineering & Customer Support

2 2 Overview H.235

3 3 H.235 Annex D Baseline Security Profile (H.323V4 Scope) Provides Authentication or/and Integrity Hop-by-hop processing Password based security Shared Secret-Key Digest (Hashing) Algorithm - HMAC-SHA1-96

4 4 (Voice) Encryption Security Profile Applicable for any RTP Stream Depends on (part of) H.235 Annex D Uses DH (Diffie-Hellman) secret key for session keys distribution Mechanism for Session-Key update and synchronization Encryption Algorithms - DES, Triple DES, RC2 Anti-Spamming protection

5 5 H.235 Annex E Provides Authentication or/and Integrity Signature Profile – Public Key Infrastructure (PKI) Certificate Based Security Scalable - applicable for Global IP Telephony Hop-by-Hop and End-to-End security Digest Algorithms - MD5 or SHA1 signatures

6 6 H.235v3 Annex F Hybrid Security Profile Uses Annex E signatures (when required) Uses Annex D otherwise More secure than Annex D More lightweight than Annex E Scalable - Applicable for Global IP telephony

7 7 Status H.235

8 8 H.235 Status The Good News… RADVISION ECS supports H.235 Annex D (Basic Profile) Authentication and Integrity On the roadmap - Encryption and Annex E The Bad News… No Multimedia Endpoints (to date) support H.235 Some are working on it or provide proprietary authentication Workarounds exists – Pre-Defining EPs, Using LDAP for authentication, etc.

9 www.radvision.com adi@radvision.com

Download ppt "H.235 Authentication, Integrity and Encryption Adi Regev Sr. Director Sales Engineering & Customer Support."

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
Cryptography Ch-1 prepared by: Diwan.

Cryptography Ch-1 prepared by: Diwan.
Cisco Router as a VPN Server. Agenda VPN Categories of VPN – Secure VPNs – Trusted VPN Hardware / Software Requirement Network Diagram Basic Router Configuration.

Cisco Router as a VPN Server. Agenda VPN Categories of VPN – Secure VPNs – Trusted VPN Hardware / Software Requirement Network Diagram Basic Router Configuration.
Symmetric Message Authentication Codes Prof. Ravi Sandhu.

Symmetric Message Authentication Codes Prof. Ravi Sandhu.
PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.

PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
IP Security Nick Feamster CS 6262 Spring 2009. IP Security have a range of application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS.

IP Security Nick Feamster CS 6262 Spring IP Security have a range of application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS.
Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.
Doc.: IEEE 802.11-98/178 Submission July 2000 A. Prasad, A. Raji Lucent TechnologiesSlide 1 A Proposal for IEEE 802.11e Security IEEE 802.11 Task Group.

Doc.: IEEE /178 Submission July 2000 A. Prasad, A. Raji Lucent TechnologiesSlide 1 A Proposal for IEEE e Security IEEE Task Group.
U M T S F o r u m © UMTS 2002 UMTS Security aspects UMTS Forum ICTG Chair Bosco Fernandes Siemens AG

U M T S F o r u m © UMTS 2002 UMTS Security aspects UMTS Forum ICTG Chair Bosco Fernandes Siemens AG
Authentication Applications Kerberos And X.509. Kerberos Motivation –Secure against eavesdropping –Reliable – distributed architecture –Transparent –

Authentication Applications Kerberos And X.509. Kerberos Motivation –Secure against eavesdropping –Reliable – distributed architecture –Transparent –
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
An Introduction to Distributed Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.

An Introduction to Distributed Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.
L8. Reviews Rocky K. C. Chang, May 2011. Foci of this course 2 Rocky K. C. Chang  Understand the 3 fundamental cryptographic functions and how they are.

L8. Reviews Rocky K. C. Chang, May Foci of this course 2 Rocky K. C. Chang  Understand the 3 fundamental cryptographic functions and how they are.
Web security: SSL and TLS

Web security: SSL and TLS
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.

1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.
1 Voice over Internet Protocol (VoIP) Security Affects on the IP Network Architecture Conference ICS – Wireless Group Meeting Tempe, Arizona.

1 Voice over Internet Protocol (VoIP) Security Affects on the IP Network Architecture Conference ICS – Wireless Group Meeting Tempe, Arizona.
ECS and LDAP Karen Krivaa Product Marketing Manager.

ECS and LDAP Karen Krivaa Product Marketing Manager.
1 The Critical Role of Sip&H.323 Internetworking in Next- Generation Telephony Dr. Samir Chatterjee Associate Professor School of Information Science 909-607-4651;

1 The Critical Role of Sip&H.323 Internetworking in Next- Generation Telephony Dr. Samir Chatterjee Associate Professor School of Information Science ;

Similar presentations

Ads by Google