Presentation is loading. Please wait.

Presentation is loading. Please wait.

Session Announcement Protocol Colin Perkins University College London.

Published byRalf Gordon Modified over 9 years ago

Similar presentations

Presentation on theme: "Session Announcement Protocol Colin Perkins University College London."— Presentation transcript:

1 Session Announcement Protocol Colin Perkins University College London

2 Status In Washington DC we thought this was ready for last call, after minor revision This was conducted earlier this year and showed that a number of open issues remain Two more revisions of the draft have addressed some of these –draft-ietf-mmusic-sap-v2-06.txt We have to resolve the rest today

3 Summary of changes (I) Timer reconsideration algorithm updated to match RTCP Remove references to "client" in the text, now talks about SAP announcers and listeners only. Clarify that TTL scoping is discouraged –Use administrative scoping instead Clarify section on session deletion

4 Summary of changes (II) Remove the optional timeout field from the packet format It was only used for encrypted SAP, for those cases where a proxy didn't have the decryption key. We now rely on either: –the receiver of an announcement understands the payload, and can derive the session timeout from it (common case) –the announcer sends explicit deletion packets –the receiver will timeout an announcement

5 Summary of changes (III) Clarify why we use application level authentication, not IPsec –very little IPsec deployment –unclear how to setup the necessary authentication infrastructure for multicast IPsec, when the sender doesn’t know the receivers Instead we leverage application level authentication, with well defined mechanisms –PGP, CMS

6 Summary of changes (IV) Make all authentication schemes optional –Previously, authentication was optional but if implemented PGP had to be supported –Now it’s optional, with no mandated algorithms PGP and CMS are specified

7 Open issue How do we perform authentication? Authenticated payload –Uniform authentication mechanism per payload format Authenticated transport –SAP is payload independent, this allows us to authenticate the sender of any form of announcement...and prevent spoofing of deletion messages... Proposal: include authentication in SAP, separate development of payload authentication if desired.

8 What next? Resolve authentication issues A new working group last call, for experimental

Download ppt "Session Announcement Protocol Colin Perkins University College London."

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
IPSec.

IPSec.
External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.

External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.
Copyright © 2003 Colin Perkins SDP Specification Update Colin Perkins

Copyright © 2003 Colin Perkins SDP Specification Update Colin Perkins
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
1/32 Internet Architecture Lukas Banach Tutors: Holger Karl Christian Dannewitz Monday 26.09.2005 C. Today I³SI³HIPHI³.

1/32 Internet Architecture Lukas Banach Tutors: Holger Karl Christian Dannewitz Monday C. Today I³SI³HIPHI³.
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.

Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.
COS 420 Day 18. Agenda Group Project Discussion Program Requirements Rejected Resubmit by Friday Noon Protocol Definition Due April 12 Assignment 3 Due.

COS 420 Day 18. Agenda Group Project Discussion Program Requirements Rejected Resubmit by Friday Noon Protocol Definition Due April 12 Assignment 3 Due.
IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.

IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.
TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.
Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.

Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.
Cryptography and Network Security

Cryptography and Network Security
TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.
7/31200048. IETF, Pittsburgh Ott/Perkins/Kutscher Mbus Update draft-ietf-mmusic-mbus-transport-02.txt Jörg Colin

7/ IETF, Pittsburgh Ott/Perkins/Kutscher Mbus Update draft-ietf-mmusic-mbus-transport-02.txt Jörg Colin
Session-based Security Model for SNMPv3 (SNMPv3/SBSM) David T. Perkins Wes Hardaker IETF November 12, 2003.

Session-based Security Model for SNMPv3 (SNMPv3/SBSM) David T. Perkins Wes Hardaker IETF November 12, 2003.
What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.

What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.
SYSTEM ADMINISTRATION Chapter 13 Security Protocols.

SYSTEM ADMINISTRATION Chapter 13 Security Protocols.
TLS 1.2 and NIST SP 800-56A Tim Polk November 10, 2006.

TLS 1.2 and NIST SP A Tim Polk November 10, 2006.

Similar presentations

Ads by Google