Session Initiation Protocol Security Mechanisms - PowerPoint PPT Presentation

Loading...

PPT – Session Initiation Protocol Security Mechanisms PowerPoint presentation | free to download - id: 2195dd-ZDc1Z



Loading


The Adobe Flash plugin is needed to view this content

Get the plugin now

View by Category
About This Presentation
Title:

Session Initiation Protocol Security Mechanisms

Description:

IETF RFC protocol standard for signaling. Set up and tear down VoIP connections ... 3-way handshaking mechanism. SSL/TLS 3 way handshaking ... – PowerPoint PPT presentation

Number of Views:54
Avg rating:3.0/5.0
Slides: 16
Provided by: open77
Category:

less

Write a Comment
User Comments (0)
Transcript and Presenter's Notes

Title: Session Initiation Protocol Security Mechanisms


1
Session Initiation Protocol Security Mechanisms
  • Prantap Bedi

2
Session Initiation Protocol
  • IETF RFC protocol standard for signaling
  • Set up and tear down VoIP connections
  • Versatile, Scalable, Extensible, Simple
  • sipusera_at_somehost.en

3
SIP Architecture
  • Four major components
  • User Agents
  • Registrar Servers
  • Proxy Servers
  • Redirect Servers

4
SIP Architecture
5
Current Internet Security Requirements
  • How are they exploited?
  • Authentication
  • Authorization
  • Confidentiality
  • Integrity
  • Non-repudiation
  • Availability
  • Possible Attacks

6
SIPs Internal Security Mechanisms
  • HTTP 1.1 Digest
  • SIPS
  • S/MIME

7
HTTP 1.1 Digest
8
SIPS
  • SIP Secure
  • Similar to HTTPS
  • A difference between SIP and SIPS is in the
    address field sipsbob_at_zhwin.ch
  • Uses MIME bodies and TLS to ensure integrity and
    confidentiality

9
S/MIME
  • End-to-end protocol inherited from SMTP
  • Message bodies are signed using the private key
    of the sender and encrypted with the public key
    of the receiver
  • Public keys must be installed and obtained for
    the encryption from the certificate authority
    (CA)?

10
SIPs External Security Mechanisms
  • IPSec
  • SSL/TLS

11
IPSec
  • Network layer security mechanism
  • Provides a secure medium
  • 4 security features
  • Encryption
  • Integrity validation
  • Authentication
  • Anti-replay

12
SSL/TLS
  • Transport layer security mechanism
  • Hop-by-hop mechanism
  • 3-way handshaking mechanism

13
SSL/TLS 3 way handshaking
  • The client sends out the ClientHello message with
    a list of cipher suites, compression methods, and
    the highest protocol version it supports.
  • The server responses back with a ServerHello
    which contains its choices of cipher suite,
    compression methods, and protocol version.
  • After the different connection parameters are
    known, the client and server exchange
    certificates and identity information. This is
    the authentication part of the TLS and if the
    server decides to request a certificate from the
    client, then this is known as mutual
    authentication.
  • The client and server then negotiate a common
    secret key called the master secret which is
    usually derived from the Diffie-Hellman
    algorithm.

14
Conclusion
  • SIP is an easy to use and simple protocol for
    VoIP
  • Limit internal security mechanisms
  • Increase external security mechanisms
  • Provide for a much easier implementation without
    too much concern for context

15
Thank You! QA
About PowerShow.com