Design and Implementation of SCTP-aware DTLS
نویسندگان
چکیده
There is currently no widely accepted and deployed approach to provide security for the Stream Control Transmission Protocol (SCTP). A promising new approach is to use the Datagram Transport Layer Security (DTLS) protocol, adding an encryption and authentication layer between transport and application protocol. The adaption for SCTP supports all features without compromising security or requiring major changes in already standardized protocols. Therefore, this solution has been introduced into the Internet Engineering Task Force (IETF) standardization by the authors. This paper analyses existing solutions to outline the requirements and how SCTP-aware DTLS has to be designed in detail to meet them. Performance measurements show that an SCTP association secured by using the modified DTLS provides almost the performance of a TCP connection secured with TLS.
منابع مشابه
RFC 6083 DTLS for SCTP January 2011
This document describes the usage of the Datagram Transport Layer Security (DTLS) protocol over the Stream Control Transmission Protocol (SCTP). DTLS over SCTP provides communications privacy for applications that use SCTP as their transport protocol and allows client/server applications to communicate in a way that is designed to prevent eavesdropping and detect tampering or message forgery. A...
متن کاملPlaintext-Recovery Attacks Against Datagram TLS
The Datagram Transport Layer Security (DTLS) protocol provides confidentiality and integrity of data exchanged between a client and a server. We describe an efficient and full plaintext recovery attack against the OpenSSL implementation of DTLS, and a partial plaintext recovery attack against the GnuTLS implementation of DTLS. The attack against the OpenSSL implementation is a variant of Vauden...
متن کاملEngineering Task Force ( IETF ) X
The General Internet Signaling Transport (GIST) protocol currently uses TCP or Transport Layer Security (TLS) over TCP for Connection mode operation. This document describes the usage of GIST over the Stream Control Transmission Protocol (SCTP) and Datagram Transport Layer Security (DTLS).
متن کاملRFC 6084 GIST over SCTP and DTLS
This document defines an Experimental Protocol for the Internet community. This document is a product of the Internet Engineering Task Force (IETF). It represents the consensus of the IETF community. It has received public review and has been approved for publication by the Internet Engineering Steering Group (IESG). Not all documents approved by the IESG are a candidate for any level of Intern...
متن کاملThe Design and Implementation of Datagram TLS
A number of applications have emerged over recent years that use datagram transport. These applications include real time video conferencing, Internet telephony, and online games such as Quake and StarCraft. These applications are all delay sensitive and use unreliable datagram transport. Applications that are based on reliable transport can be secured using TLS, but no compelling alternative e...
متن کامل