A Lightweight Scheme for Securely and Reliably Locating SIP Users Lei Kong Vijay A. Balasubramaniyan Mustaque Ahamad.

Slides:

Advertisements

Similar presentations

SIP and Instant Messaging. SIP Summit SIP and Instant Messaging What Does Presence Have to Do With SIP? How to Deliver.

Advertisements

VON Europe /19/00 SIP and the Future of VON Protocols SIP and the Future of VON Protocols: Presence and IM Jonathan Rosenberg.

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.

Saif Bin Ghelaita Director of Technologies & Standards TRA UAE

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Information-Centric Networks09c-1 Week 9 / Paper 3 VoCCN: Voice Over Content-Centric Networks –V. Jacobson, D. K. Smetters, N. H. Briggs, M. F. Plass,

SIP issues with S/MIME and CMS Rohan Mahy SIP, SIPPING co-chair.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

The study and demonstration on SIP security vulnerabilities Mahidhar Penigi Vamsi Krishna Karnati.

1 Kommunikatsiooniteenuste arendus IRT0080 Loeng 5 Avo Ots telekommunikatsiooni õppetool, TTÜ raadio- ja sidetehnika inst.

6 The IP Multimedia Subsystem Selected Topics in Information Security – Bazara Barry.

Page # Advanced Telecommunications/Information Distribution Research Program (ATIRP) Authentication Scheme for Distributed, Ubiquitous, Real-Time Protocols.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

1 ITEC 809 Securing SIP in VoIP Domain Iyad Alsmairat Supervisor: Dr. Rajan Shankaran.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Key Management public-key encryption helps address key distribution problems have two aspects of this: –distribution of public keys –use of public-key.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

Supporting Groupware in Mobile Networks Idit Keidar, Technion – I.I.T Joint work with N. Lavi and I. Cidon.

A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.

SIP Update Spring VON 1999 Jim Nelson - founder, co-ceo.

VoIP and IP conferencing over satellites Workshop on VoIP Technology: Research and Standards for reliable applications PIMRC 08, Cannes France 15 September.

12/05/2000CS590F, Purdue University1 Sip Implementation Protocol Presented By: Sanjay Agrawal Sambhrama Mundkur.

SIP Security Henning Schulzrinne Columbia University.

OpenID And the Future of Digital Identity Alicia Bozyk April 1, 2008.

A Gateway For SIP Event Interworking - Sasu Tarkoma & Thalainayar Balasubramanian Ramya.

Security Management.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

SIP Greg Nelson Duc Pham. SIP Introduction Application-layer (signaling) control protocol for initiating a session among users Application-layer (signaling)

InterSwyft Technology presentation. Introduction InterSwyft brings secured encrypted transmission of SMS messages for internal and external devices such.

Issues of HIP in an Operators Network Nick Papadoglou Thomas Dietz.

Session Initiation Protocol Team Members: Manjiri Ayyar Pallavi Murudkar Sriusha Kottalanka Vamsi Ambati Girish Satya LeeAnn Tam.

Wireless and Security CSCI 5857: Encoding and Encryption.

 Introduction  VoIP  P2P Systems  Skype  SIP  Skype - SIP Similarities and Differences  Conclusion.

RFC 3361: DHCP Option for SIP Servers Speaker: Chung yu Wu Teacher: Quincy Wu.

Architectural Considerations for GEOPRIV/ECRIT Presentation given by Hannes Tschofenig.

SecureMR: A Service Integrity Assurance Framework for MapReduce Author: Wei Wei, Juan Du, Ting Yu, Xiaohui Gu Source: Annual Computer Security Applications.

Call Control with SIP Brian Elliott, Director of Engineering, NMS.

An Integrated QoS, Security and Mobility Framework for Delivering Ubiquitous Services Across All IP-based Networks Haitham Cruickshank University of Surrey.

Session Initiation Protocol (SIP) 王承宇張永霖.

Common Servers in a Workplace Environment Brandon Reynolds Computer Electronic Networking Dept. of Technology, Eastern Kentucky University.

PRIVACY PRESERVING SOCIAL NETWORKING THROUGH DECENTRALIZATION AUTHORS: L.A. CUTILLO, REFIK MOLVA, THORSTEN STRUFE INSTRUCTOR DR. MOHAMMAD ASHIQUR RAHMAN.

A Security Architecture Concept for Vehicular Network Nodes 蔡嘉翔許閔傑.

TEL500-Voice Communications SIP-based VoIP Traffic Behavior Profiling and Its Application Devesh Mendiratta & Sameer Deshmukh MS-Telecommunication State.

Author(s) Politehnica University of Bucharest Automatic Control and Computers Faculty Computer Science Department Implementation of GRUU in SIP Vladut-Stefan.

Communicating Security Assertions over the GridFTP Control Channel Rajkumar Kettimuthu 1,2, Liu Wantao 3,4, Frank Siebenlist 1,2 and Ian Foster 1,2,3 1.

7/6/20061 Speermint Use Case for Cable IETF 66 Yiu L. Lee JULY 2006.

Agile Survivable Store PIs: Mustaque Ahamad, Douglas M. Blough, Wenke Lee and H.Venkateswaran PhD Students: Prahlad Fogla, Lei Kong, Subbu Lakshmanan,

ZRTP: Media Path Key Agreement for Unicast Secure RTP April 2011, RFC 6189 Author(s): P. Zimmermann, A. Johnston, J. Callas Speaker :Ted 1.

Authentication of Signaling in VoIP Applications Authors: Srinivasan et al. (MIT Campus of Anna University, India) Source: IJNS review paper Reporter:

Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

ECE509 Cyber Security : Concept, Theory, and Practice Key Management Spring 2014.

1 Secure VoIP: call establishment and media protection Johan Bilien, Erik Eliasson, Joachim Orrblad, Jon-Olov Vatn Telecommunication Systems Laboratory.

A Cooperative SIP Infrastructure for Highly Reliable Telecommunication Services BY Sai kamal neeli AVINASH THOTA.

Detection and Mitigation of Spam in IP Telephony Networks using Signaling Protocol Analysis MacIntosh, R Vinokurov, D Advances in Wired and Wireless Communication,

Using SAML for SIP H. Tschofenig, J. Peterson, J. Polk, D. Sicker, M. Tegnander.

1 Distributed Systems Distributed Object-Based Systems Chapter 10.

1 An Ordered Multi-Proxy Multi-Signature Scheme Authors: Min-Shiang Hwang, Shiang-Feng Tzeng, Shu-Fen Chiou Speaker: Shu-Fen Chiou.

1 Developing Aerospace Applications with a Reliable Web Services Paradigm Pat. P. W. Chan and Michael R. Lyu Department of Computer Science and Engineering.

KAIS T Comparative studies on authentication and key exchange methods for wireless LAN Jun Lei, Xiaoming Fu, Dieter Hogrefe, Jianrong Tan Computers.

Analysis of SIP security Ashwini Sanap ( ) Deepti Agashe ( )

S Postgraduate Course in Radio Communications. Application Layer Mobility in WLAN Antti Keurulainen,

PARALLEL AND DISTRIBUTED PROGRAMMING MODELS U. Jhashuva 1 Asst. Prof Dept. of CSE om.

1/18 Talking to Strangers: Authentication in Ad-Hoc Wireless Networks Dirk Balfanz 외 2 명 in Xerox Palo Alto Research Center Presentation: Lee Youn-ho.

Dhc WG 3/2/2004, IETF 59, Seoul. 3/2/2004dhc WG - IETF 59, Seoul2 Agenda Administrivia, Agenda bashing Ralph Droms 05 minutes DHCP Option for Proxy Server.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

- Richard Bhuleskar “At the end of the day, the goals are simple: safety and security” – Jodi Rell.

The study and demonstration on SIP security vulnerabilities

ATIS Cybersecurity DOCUMENT #: GSC13-GTSC6-12 FOR: Presentation

DISTRIBUTED SYSTEMS Principles and Paradigms Second Edition ANDREW S

Presentation transcript:

A Lightweight Scheme for Securely and Reliably Locating SIP Users Lei Kong Vijay A. Balasubramaniyan Mustaque Ahamad

Introduction Mapping SIP address to contact address is an important function in VOIP systems Key requirements:  Integrity  Availability  Performance and scalability Our solution  Lightweight scheme to meet these requirements

SIP Trapezoid

Related Work SIPS DNS security extension Authentication Service Others

Our Approach Proxies have certificates User contact address signed with locally generated public key SIP proxies protect user public key exchange Balancing between two extremes: PGP/SSH End user certificates Other SIP message fields can also be protected

Using SIP Infrastructure to Protect User Public Key Exchange Proxy awareness of user public keys User public key is registered with local proxies User public key is completely managed by end points

Initial Session Setup

Session Setup after Public Key Exchange

High Availability Via Replication Byzantine fault model Replication schemes  For stateful proxy Consistency requirement  For stateless proxy Optimistic assumption and parallel session setup

Stateful Example

Stateless Example

Preliminary Evaluation

Conclusions and Future Work Lightweight approach for securing contact address and other SIP message fields Availability with Byzantine failure Preliminary performance results show better scalability Future performance study and SIP extension RFC proposal