STIR In-Band Signature Transport draft-kaplan-stir-ikes-out-00 Hadriel Kaplan.

Slides:



Advertisements
Similar presentations
SIP Session-ID draft-kaplan-sip-session-id-02 Hadriel Kaplan.
Advertisements

MARTINI WG Interim draft-kaplan-martini-with-olive-00 Hadriel Kaplan.
DTMF-Relay Info-Package draft-kaplan-dispatch-info-dtmf-package-00 Hadriel Kaplan.
Rfc4474bis-01 IETF 89 (London) STIR WG Jon & Cullen.
Secure Telephone Identity Revisited STIR IETF 88.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
1 © NOKIA MitM.PPT/ 6/2/2015 / Kaisa Nyberg (NRC/MNW), N.Asokan (NRC/COM) The Insecurity of Tunnelled Authentication Protocols N. ASOKAN, VALTTERI NIEMI,
Homework #4 Solutions Brian A. LaMacchia Portions © , Brian A. LaMacchia. This material is provided without.
1 IP Security Outline of the session –IP Security Overview –IP Security Architecture –Key Management Based on slides by Dr. Lawrie Brown of the Australian.
A “net head” view on SIP Henning Schulzrinne Columbia University IRT Lab Siemens Munich -- January 2003.
K. Salah1 Security Protocols in the Internet IPSec.
Homework #5 Solutions Brian A. LaMacchia Portions © , Brian A. LaMacchia. This material is provided without.
Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.
Binary Arithmetic Math For Computers.
Identity in SIP (and in-band) STIR BoF Berlin, DE 7/30/2013.
Session-ID Requirements for IETF84 draft-ietf-insipid-session-id-reqts-00 1 August 2012 Paul Jones, Gonzalo Salgueiro, James Polk, Laura Liess, Hadriel.
Early Media in SIP: Problem Statement, Requirements, and Analysis of Solutions draft-barnes-sip-em-ps-req-sol Richard Barnes BBN Technologies IETF 68,
Programming Satan’s Computer
MIME Object Security Services (MOSS). Privacy Enhanced Mail (PEM) was the first Internet standard to address security in messages. The MOSS protocol.
Digital Signatures A primer 1. Why public key cryptography? With secret key algorithms Number of key pairs to be generated is extremely large If there.
Exercises Information Security Course Eric Laermans – Tom Dhaene.
Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.
Credentials Roadmap STIR WG IETF 90 (Toronto) Sean Turner
PPSP NAT traversal Lichun Li, Jun Wang, Wei Chen {li.lichun1, draft-li-ppsp-nat-traversal-02.
Karlstad University IP security Ge Zhang
IPsec Introduction 18.2 Security associations 18.3 Internet Security Association and Key Management Protocol (ISAKMP) 18.4 Internet Key Exchange.
IPSec ● IP Security ● Layer 3 security architecture ● Enables VPN ● Delivers authentication, integrity and secrecy ● Implemented in Linux, Cisco, Windows.
Draft-elwell-sipping- redirection-reason-00 Author: John Elwell
IP Security: Security Across the Protocol Stack. IP Security There are some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS.
Draft-johnston-sipping-rtcp-summary-01.txt RTCP Summary Report Delivery to SIP Third Parties draft-johnston-sipping-rtcp-summary-01.txt Alan Johnston –
1 IETF 72 SIP WG meeting SIP Identity issues John Elwell et alia.
SIP INFO Event Framework (draft-kaplan-sip-info-events-00) Hadriel Kaplan Christer Holmberg 70th IETF, Vancouver, Canada.
1 IETF 88 (Vancouver) November 6, 2013 Cullen Jennings V3.
1 CSC 143 Two' s complement. 2 10's complement  How to represent negative numbers?  Use a sign → but −0 is the same as +0  10's complement  Example.
MWIF Confidential MWIF-Arch Security Task Force Task 5: Security for Signaling July 11, 2001 Baba, Shinichi Ready for MWIF Kansas.
IP security Ge Zhang Packet-switched network is not Secure! The protocols were designed in the late 70s to early 80s –Very small network.
Network Security Continued. Digital Signature You want to sign a document. Three conditions. – 1. The receiver can verify the identity of the sender.
Making SIP NAT Friendly Jonathan Rosenberg dynamicsoft.
Nov. 8, 2006IDR WG Meeting1 IPv6 Next Hop for IPv4 Prefix In BGP Updates, NH not necessarily of same address family as NLRI Currently deployed examples:
SIP PUBLISH Method Jonathan Rosenberg dynamicsoft.
RFC3261 (Almost) Robert Sparks. SIPiT 10 2 Status of the New SIP RFC Passed IETF Last Call In the RFC Editor queue Author’s 48 hours review imminent IMPORTANT:
Currently Open Issues in the MIPv6 Base RFC MIPv6 security design team.
Ch 6: DNSSEC and Beyond Updated DNSSEC Objectives of DNSSEC Data origin authentication – Assurance that the requested data came from the genuine.
Call Completion using BFCP draft-roach-sipping-callcomp-bfcp IETF 67 – San Diego November 7, 2006.
IPSec is a suite of protocols defined by the Internet Engineering Task Force (IETF) to provide security services at the network layer. standard protocol.
IETF70, Vancouver, December 2007draft-wing-sip-identity-media-011 SIP Identity using Media Path draft-wing-sip-identity-media-01 Dan Wing,
GIN with Literal AoRs for SIP in SSPs (GLASS) draft-kaplan-martini-glass-00 Hadriel Kaplan.
Secure Socket Layer SSL and TLS. SSL Protocol Peer negotiation for algorithm support Public key encryptionPublic key encryption -based key exchange and.
March 20th, 2001 SIP WG meeting 50th IETF SIP WG meeting Overlap signalling handling
OSPF WG Security Extensions for OSPFv2 when using Manual Keying Manav Bhatia, Alcatel-Lucent Sam Hartman, Huawei Dacheng Zhang, Huawei IETF 80, Prague.
RSA Data Security, Inc. PKCS #13: Elliptic Curve Cryptography Standard Burt Kaliski RSA Laboratories PKCS Workshop October 7, 1998.
Introduction to Elliptic Curve Cryptography CSCI 5857: Encoding and Encryption.
1 End-to-middle Security in SIP Kumiko Ono NTT Corporation March 1, 2004 draft-ietf-sipping-e2m-sec-reqs-01.txt draft-ono-sipping-end2middle-security-01.txt.
K. Salah1 Security Protocols in the Internet IPSec.
Andrew Allen ROUTING OUT OF DIALOG REQUESTS draft-allen-dispatch-routing-out-of-dialog-request-01 Dispatch IETF 92 March 23 rd 2015.
Doc.: Submission February 5, 2013 René Struik (Struik Security Consultancy)Slide 1 FILS Handling of Large Objects Date: Authors:
SIP Congestion Safety Open Issues. Background SIP over UDP uses retransmissions timers within each transaction with exponential backoffs to provide reliability.
Lecture 10 Page 1 CS 236 Online Encryption and Network Security Cryptography is widely used to protect networks Relies on encryption algorithms and protocols.
draft-rescorla-fallback-01
Encryption and Network Security
STIR WG / IETF 94 Yokohama, Nov 2015 Jon
Transporting User to User Call Control Information in SIP for ISDN Interworking draft-johnston-sipping-cc-uui-07 Alan Johnston
SIP Identity issues John Elwell, Jonathan Rosenberg et alia
RFC PASSporT Construction 6.2 Verifier Behavior
RFC PASSporT Construction 6.2 Verifier Behavior
RFC PASSporT Construction 6.2 Verifier Behavior
RFC Verifier Behavior Step 4: Check the Freshness of Date
TDR authentication requirements
IETF 102 (Montreal) STIR WG Jul 2018
Presentation transcript:

STIR In-Band Signature Transport draft-kaplan-stir-ikes-out-00 Hadriel Kaplan

The Problem(s) SIP isn’t the only call control protocol – SS7/ISUP, ISDN, H.323, BICC, XMPP, etc. The originator and terminator can’t enforce everyone uses SIP Choices: ignore or accommodate Ent-A SSP-B SSP-C SSP-D How do we get STIR through here? Ent-E SIP SS7 SIP SS7

Proposed Solution: IKES Define rules for generating the info which must be signed, in a protocol-agnostic fashion – The resulting “info” is not specific to SIP, SS7, etc. Sign the information using a private key Define protocol-specific encoding rules for carrying the info and signature – E.g., a SIP header, or ISUP parameter Define rules for verifying the info

Passing STIRaight Through For SIP, XMPP: define the header/xml For SS7, ISDN, H.323: put it in a UUI Interworking can be done by gateways or SBCs But... this won’t always work: – UUI doesn’t normally survive across multiple SS7 domains – For ISDN, UUI is often used for inter-PBX calls Though we probably don’t need to care about that scenario for STIR

How is this different from 4474? 4474 is SIP-specific – To, From, Date, Contact, Call-ID, etc. are all SIP- specific fields (so is SDP obviously) IKES takes a minimalistic approach – only sign what is absolutely needed for caller-id 4474 tried to prevent MitM as well as replay – IKES doesn’t: replay is only prevented against different targets

What are the drawbacks? Only 128 bytes available in UUI – For ISUP we can also use the Call Reference parameter to get another 3 bytes, but not in ISDN This impacts signature algorithm and key size – With 1024-bit RSA that’s the signature size – ECC is smaller Key index size is also limited – Currently up to 8k indices in draft-01 No signing of SDP/body/random-stuff

What are the benefits? It’s not a lot of work to define it in a RFC – Even if no one implements it for SS7 or ISDN Forcing size restrictions keeps the SIP message size lower Keeps the information used for signing SIP- agnostic – Someday there may be a new protocol (SIPv3?) – Proprietary protocols can do it too E.g.: IAX, WebRTC-based, Facetime, TIP, Skype

The Questions Do we care about anything other than SIP? Do we care about SS7 or ISDN? How many indices do we need? Can we use ECC instead of RSA? What’s a better name than “IKES”?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.