DTLS-SRTP Handling in SIP B2BUAs draft-ram-straw-b2bua-dtls-srtp IETF-91 Hawaii, Nov 12, 2014 Presenter: Tirumaleswar Reddy Authors: Ram Mohan, Tirumaleswar.

Slides:



Advertisements
Similar presentations
Authentication in SIP Jon Peterson NeuStar, Inc Internet2 Member Meeting Los Angeles, CA - Nov 2002.
Advertisements

July 20, 2000H.323/SIP1 Interworking Between SIP/SDP and H.323 Agenda Compare SIP/H.323 Problems in interworking Possible solutions Conclusion Q/A Kundan.
SIP and IMS Enabled Residential Gateway Sergio Romero Telefónica I+D Jan Önnegren Ericsson AB Alex De Smedt Thomson Telecom.
Enabling SIP to the Enterprise Steve Johnson, Ingate Systems Security: How SIP Improves Telephony.
H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.
© 2006 Solegy LLC Internal Use Only Getting Connected with SIP Encryption _______________________________ By Eric Hernaez Solegy LLC May 16, 2007.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
A “net head” view on SIP Henning Schulzrinne Columbia University IRT Lab Siemens Munich -- January 2003.
SIP Greg Nelson Duc Pham. SIP Introduction Application-layer (signaling) control protocol for initiating a session among users Application-layer (signaling)
End-to-End SIP Session-ID at IETF84 draft-jones-insipid-session-id-00 1 August 2012 James Polk, Paul Jones Gonzalo Salgueiro, Chris Pearce.
Proxy Authentication of the Emergency Status of SIP Calls draft-barnes-ecrit-auth-00 Richard Barnes IETF 69, Chicago, IL, USA.
IT Expo SECURITY Scott Beer Director, Product Support Ingate
Session-ID Requirements for IETF84 draft-ietf-insipid-session-id-reqts-00 1 August 2012 Paul Jones, Gonzalo Salgueiro, James Polk, Laura Liess, Hadriel.
Security Data Transmission and Authentication
What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.
1 SIP WG meeting 73rd IETF - Minneapolis, MN, USA November, 2008 Return Routability Check draft-kuthan-sip-derive-00 Jiri
MICE Mobility with ICE draft-wing-mmusic-ice-mobility-02 IETF85 Nov Authors: D.Wing, P. Patil, T. Reddy, P. Martinsen.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 9: Securing Network Traffic Using IPSec.
March 10, 2008SIPPING WG IETF-711 Secure Media Recording and Transcoding with the Session Initiation Protocol draft-wing-sipping-srtp-key-03 Dan Wing Francois.
B2BUA – A New Type of SIP Server Name: Stephen Cipolli Title: System Architect Date: Feb. 12, 2004.
Session Initiation Protocol (SIP). What is SIP? An application-layer protocol A control (signaling) protocol.
SIP Security BY, Vivek Nemarugommula. vulnerabilities Registration Hijacking.
Draft-khan-ip-serv-peer-arch-03.txt SPEERMINT Peering Architecture IETF-66, Montreal, Canada Sohel Khan, Ph.D. Technology Strategist.
A Conference Gateway Supporting Interoperability Between SIP and H.323 Jiann-Min Ho (Presenter) Jia-Cheng Hu Information Networking Institute Peter Steenkiste.
1 R 255 G 211 B 8 R 255 G 175 B 0 R 127 G 16 B 162 R 163 G 166 B 173 R 137 G 146 B 155 R 175 G 0 B 51 R 52 G 195 B 51 R 0 G 0 B 0 R 255 G 255 B 255 Primary.
IETF 60 – San Diegodraft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Aravind.
Presented By Team Netgeeks SIP Session Initiation Protocol.
1 Security Protocols in the Internet Source: Chapter 31 Data Communications & Networking Forouzan Third Edition.
Elin Sundby Boysen Lars Strand Norwegian Defence Research Establishment (FFI) Norwegian Computing Center (NR) University Graduate Center (UNIK) November.
Network Security David Lazăr.
Session Recording Protocol Requirements IETF 75, Stockholm (Leon Portman on behalf of the team)
7/6/20061 Speermint Use Case for Cable IETF 66 Yiu L. Lee JULY 2006.
1 SPEERMINT Use Cases for Cable IETF 66 Montreal 11 JULY 2006 Presented by Yiu L. Lee.
Slide title In CAPITALS 50 pt Slide subtitle 32 pt RTSP 2.0 TLS handling Magnus Westerlund draft-ietf-mmusic-rfc2326bis-12.
Security, NATs and Firewalls Ingate Systems. Basics of SIP Security.
Security Many secure IT systems are like a house with a locked front door but with a side window open -somebody.
Session Recording (SIPREC) Protocol (draft-ietf-siprec-protocol-09) Leon Portman Henry Lum
IETF67 DIME WG Towards the specification of a Diameter Resource Control Application Dong Sun IETF 67, San Diego, Nov 2006 draft-sun-dime-diameter-resource-control-requirements-00.txt.
SIP and SIPPING WGsMay, IETF Interim Meeting Orit levin Conferencing Requirements for SIP Based Applications.
MWIF Confidential MWIF-Arch Security Task Force Task 5: Security for Signaling July 11, 2001 Baba, Shinichi Ready for MWIF Kansas.
Security fundamentals Topic 10 Securing the network perimeter.
CSE5803 Advanced Internet Protocols and Applications (14) Introduction Developed in recent years, for low cost phone calls (long distance in particular).
SAML for SIP Hannes Tschofenig, Jon Peterson, James Polk, Douglas Sicker, Marcus Tegnander.
1 Media Session Authorization Dan Wing draft-wing-session-auth-00.txt.
© 2006 Intertex Data AB 1 Connect your LAN to the SIP world, while keeping your existing firewall*! The IX67 LAN SIParator (Part of the SIP Switch option.
The Session Initiation Protocol - SIP
1 End-to-middle Security in SIP Kumiko Ono NTT Corporation March 1, 2004 draft-ietf-sipping-e2m-sec-reqs-01.txt draft-ono-sipping-end2middle-security-01.txt.
Session-ID Requirements for Interim-3 draft-ietf-insipid-session-id-reqts-00 Paul Jones, Gonzalo Salgueiro, James Polk, Laura Liess, Hadriel Kaplan.
Security Data Transmission and Authentication Lesson 9.
SECURITY. Security Threats, Policies, and Mechanisms There are four types of security threats to consider 1. Interception 2 Interruption 3. Modification.
SOSIMPLE: A Serverless, Standards- based, P2P SIP Communication System David A. Bryan and Bruce B. Lowekamp College of William and Mary Cullen Jennings.
1 Session Recording Protocol Requirements IETF 75, Stockholm (Leon Portman on behalf of the team) Draft authors: Rajnish Jain, Leon Portman, Vijay Gurbani,
Session-ID Requirements at IETF83 draft-jones-ipmc-session-id-reqts-01 Paul Jones, Gonzalo Salgueiro, James Polk, Laura Liess, Parthasarathi Ravindran,
SIP AAI a possibility for TF-EMC2 and TF-ECS cooperation
VoIP ALLPPT.com _ Free PowerPoint Templates, Diagrams and Charts.
End-to-middle Security in SIP
Dan Wing IETF83 - March 2012 RTCWEB Working Group Media Security: A chat about RTP, SRTP, Security Descriptions, DTLS-SRTP, EKT, the past.
IP Telephony (VoIP).
Computer Communication & Networks
Transcoding Framework
Session Initiation Protocol (SIP)
Session-ID Requirements at IETF83
Message Digest Cryptographic checksum One-way function Relevance
BRIA Android Configuration
Figure 1-7: Eavesdropping on a Dialog
SIP Authentication using CHAP-Password
Transcoding Framework
Ingate & Dialogic Technical Presentation
TDR authentication requirements
Presentation transcript:

DTLS-SRTP Handling in SIP B2BUAs draft-ram-straw-b2bua-dtls-srtp IETF-91 Hawaii, Nov 12, 2014 Presenter: Tirumaleswar Reddy Authors: Ram Mohan, Tirumaleswar Reddy, Gonzalo Salgueiro, Victor Pascual 1

Agenda B2BUA modes and possible MITM attacks 2

B2BUA Modes 1.Media Relay 2.Media Aware 3.Media Terminator 3

Legitimate Media Relay  Media  Forwards packets without inspection or modification  Only modifies the L3 and L4 headers  Signaling  It MUST forward the received certificate fingerprint without any modifications 4

Malicious Media Relay  Media  Forwards packets with inspection or modification  Signaling  Modifies the certificate fingerprint and signals its own fingerprint 5

Possible Mitigation  Mandate authenticated identity management in SIP ( draft-ietf-stir- rfc4474bis)  signed-identity-digest carries the signed hash of certificate fingerprint  Mandate Identity headers to be present 6

2. The outbound proxy for the Alice’s domain verifies that this is from Alice and adds an assertion(based of 4474bis) that is it from 3. This assertion is signed with the atlanta.com certificate from a well known certificate authority 4. The B2BUA here just changes UDP/IP header and does not modify payload INVITE Challenge INVITE Alice atlanta.com 1.Alice calls Bob Authenticated identity management Alice Alice’s Proxy SIP Cloud bob Alice’s B2BUA (Back-to-Back User Agent)

B2BUA Modes 1.Media Relay 2.Media Aware 3.Media Terminator 8

Legitimate Media Aware  Media  Modifies the RTP header  Signaling  Terminates the DTLS connection and acts as a DTLS proxy -Changes the certificate fingerprint and signals its own fingerprint -Decrypts and re-encrypts the payload 9

Malicious Media Aware  Media  Inspects or modifies the payload. 10

2. The outbound proxy for the Alice’s domain verifies that this is from Alice and adds an assertion(based of 4474bis) that is it from 3. This assertion is signed with the atlanta.com certificate from a well known certificate authority 4. The B2BUA changes the RTP header INVITE Challenge INVITE Alice atlanta.com 1.Alice calls Bob B2BUA in the same administrative domain Alice Alice’s Proxy SIP Cloud bob Alice’s B2BUA (Back-to-Back User Agent)

Possible mitigations  Option 1> SRTP for cloud services (draft- cheng-srtp-cloud-00) proposes a mechanism where confidentiality and message authentication is independent of the RTP header  Option 2> Trust the B2BUA 12

2. The outbound proxy for the Alice’s domain verifies that this is from Alice and adds an assertion(based of 4474bis) that is it from 3. This assertion is signed with the atlanta.com certificate from a well known certificate authority 4. The B2BUA changes the RTP header INVITE Challenge INVITE Alice atlanta.com ISP 1.Alice calls Bob B2BUA in different administrative domain Alice Alice’s Proxy SIP Cloud bob B2BUA (Back-to-Back User Agent)

Possible mitigation  SRTP for cloud services (draft-cheng-srtp- cloud-00) proposes a mechanism where confidentiality and message authentication is independent of the RTP header 14

B2BUA Modes 1.Media Relay 2.Media Aware 3.Media Terminator 15

Media Terminator  Media terminator modifies the payload  Terminates the DTLS connection, acts as a DTLS proxy -Changes the certificate fingerprint and signals its own fingerprint -Decrypts and re-encrypts the payload 16

Possible attacks  Breaks end-to-end security. 17

2. The outbound proxy for the Alice’s domain verifies that this is from Alice and adds an assertion(based of 4474bis) that is it from 3. This assertion is signed with the atlanta.com certificate from a well known certificate authority 4. The B2BUA modifies the payload INVITE Challenge INVITE Alice atlanta.com ISP 1.Alice calls Bob B2BUA in same administrative domain Alice Alice’s Proxy SIP Cloud bob B2BUA (Back-to-Back User Agent)

Possible mitigations  Clients can be configured to maintain the B2BUA server's certificate fingerprints. This way the client is aware that B2BUA is playing the role of a media-proxy. 19

2. The outbound proxy for the Alice’s domain verifies that this is from Alice and adds an assertion(based of 4474bis) that is it from 3. This assertion is signed with the atlanta.com certificate from a well known certificate authority 4. The B2BUA modifies the payload INVITE Challenge INVITE Alice atlanta.com ISP 1.Alice calls Bob B2BUA in different administrative domain Alice Alice’s Proxy SIP Cloud bob B2BUA (Back-to-Back User Agent)

Possible mitigations Discourage media terminator mode. 21

Next Steps 22 DTLS-SRTP Handling in SIP B2BUAs

Backup 23

B2BUA Modes Media Relay - Only changes UDP/IP header- e.g.: topology hiding, privacy Media Aware - relay which can change RTP/RTCP headers- e.g.: monitors RTCP for QoS, mux/demuxes RTP/RTCP on same 5-tuple Media Terminator - Transcoders, Conference Servers 24

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.