Presentation is loading. Please wait.

Presentation is loading. Please wait.

RTP Encryption for 3G Networks Rolf Blom, Elisabetta Carrara, Karl Norrman, Mats Näslund Communications Security Lab Ericsson.

Published bySharlene Mason Modified over 9 years ago

Similar presentations

Presentation on theme: "RTP Encryption for 3G Networks Rolf Blom, Elisabetta Carrara, Karl Norrman, Mats Näslund Communications Security Lab Ericsson."— Presentation transcript:

1 RTP Encryption for 3G Networks Rolf Blom, Elisabetta Carrara, Karl Norrman, Mats Näslund Communications Security Lab Ericsson

2 “Conversational Multimedia Security in 3G Networks” draft-blom-cmsec-3G-00.txt “RTP Encryption for 3G Networks” draft-blom-rtp-encrypt-00.txt

3 to end up with a service as attractive as today’s CS (cost and speech quality) Objective Confidentiality of media streams in Conversational Multimedia scenarios (cellular environment)

4 Scenario Conversational Multimedia IP-all-the-way Heterogeneous environment (including wireless)

5 Requirements for the encryption scheme Target BER over the air link  error-robustness Delay (processing time, thin client)  efficiency Packet-loss and non-ordered delivery (IP)  "fast-forward/rewind" property Classification and demux of the traffic  selective payload encryption

6 Requirements (cont.) Bandwidth  message-size expansion and added fields limitation Header Compression (ROHC)  unencrypted IP/UDP/RTP headers Unequal Error Protection  UEP classes independence

7 Message Integrity and Authentication Two issues: bandwidth consumption (96/128/160 bits of MAC) even using a very short MAC (with lower security), still it has cost impact, and what should it cover? Message integrity and authentication as optional

8 IPsec Applicability IPsec is the promising security solution for the All-IP scenario and ROHC supports IPsec hc but ‘transport ESP’ – the most efficient ROHC profile does not work –IPsec header ‘tunnel ESP’ –header overhead AH and ESP+NULL –bandwidth

9 Encryption Algorithm BLOCK CIPHERS STREAM CIPHERS BLOCK CIPHERS used as STREAM ( ) Cons: padding, error prop if random-access property

10 Conclusions We have to accept the cost/security trade-off to get an attractive service We go for –application encryption –only the RTP payload is encrypted –a block cipher used as a stream cipher –careful analysis of message authentication usage We promote the use of security profiles.

11 Our proposal Objective: confidentiality of the media session Use the f8 mode of operation with AES It satisfies all the requirements, plus it is flexible (any secure block cipher as core) and the sync is given by the IV on a per- packet base

12 IV m k AES in f8-mode AES ct=2ct=1 AES From the RTP header 128 bits, may be the same for all RTP sessions  media session Public sec evaluation doc available

13 Open issues Adding a MAC per-packet is unacceptable for cost (optional) realtime aspects + f8 sync mechanism make attacks difficult, at least in conversational multimedia the main danger (as usual): DoS RTCP key management

14 Implementation Running testbed AES/Rijndael 128 40-60 Mbit/s 6 microsec initialization

15 Conclusions Our proposal {f8+AES on RTP payload} as a low cost method, to allow full hc, and low complexity implementation RTPEncrypt achieves confidentiality of the media session also in the most demanding scenario (conversational multimedia) local policies decide the sec scheme (profiles)

16 RTPEncrypt and SRTP Similarities confidentiality by per- packet appl of block cipher bandwidth saving (hc) low computational cost Differences f8 vs CTM authentication cost RTCP keying

Download ppt "RTP Encryption for 3G Networks Rolf Blom, Elisabetta Carrara, Karl Norrman, Mats Näslund Communications Security Lab Ericsson."

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
IP security over ATM CS 329 Hwajung Lee Computer and Communications Security The George Washington University.

IP security over ATM CS 329 Hwajung Lee Computer and Communications Security The George Washington University.
IPSec.

IPSec.
Robust Header Compression Mikael Degermark Co-chair, ROHC WG (to be) University of Arizona/ Ericsson Research.

Robust Header Compression Mikael Degermark Co-chair, ROHC WG (to be) University of Arizona/ Ericsson Research.
CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.

Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.
Impacts of Security Protocols on Real- time Multimedia Communications Kihun Hong 1, Souhwan Jung 1, Luigi Lo Iacono 2, Christoph.

Impacts of Security Protocols on Real- time Multimedia Communications Kihun Hong 1, Souhwan Jung 1, Luigi Lo Iacono 2, Christoph.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.

ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.

1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.
IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Internet Protocol Security An Overview of IPSec. Outline:  What Security Problem?  Understanding TCP/IP.  Security at What Level?  IP Security. 

Internet Protocol Security An Overview of IPSec. Outline:  What Security Problem?  Understanding TCP/IP.  Security at What Level?  IP Security. 
1 Solutions to Performance Problems in VOIP over 802.11 Wireless LAN Wei Wang, Soung C. Liew Presented By Syed Zaidi.

1 Solutions to Performance Problems in VOIP over Wireless LAN Wei Wang, Soung C. Liew Presented By Syed Zaidi.
Activities in the field of header compression. Center for TeleInFrastructure 2 ROHC working group RFC 3095 ROHC (Framework + RTP. UDP, ESP, uncompressed)

Activities in the field of header compression. Center for TeleInFrastructure 2 ROHC working group RFC 3095 ROHC (Framework + RTP. UDP, ESP, uncompressed)
1 CS 577 “TinySec: A Link Layer Security Architecture for Wireless Sensor Networks” Chris Karlof, Naveen Sastry, David Wagner UC Berkeley Summary presented.

1 CS 577 “TinySec: A Link Layer Security Architecture for Wireless Sensor Networks” Chris Karlof, Naveen Sastry, David Wagner UC Berkeley Summary presented.
TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.
Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.

Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.
TinySec: Link Layer Security Chris Karlof, Naveen Sastry, David Wagner University of California, Berkeley Presenter: Todd Fielder.

TinySec: Link Layer Security Chris Karlof, Naveen Sastry, David Wagner University of California, Berkeley Presenter: Todd Fielder.

Similar presentations

Ads by Google