1 / 10

Presents Fall Forum 2002

Presents Fall Forum 2002. H.235 Security Status Quo and Perspectives. Presented by Martin Euchner, Rapporteur Q.G/16 Siemens AG. Outline. Status Quo of H.235 Some insights into work under development. Evolution of H.235. Improvement and Additions. 1st Deployment. Consolidation.

avye-summers
Download Presentation

Presents Fall Forum 2002

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Presents Fall Forum 2002

  2. H.235 SecurityStatus Quo and Perspectives Presented byMartin Euchner, Rapporteur Q.G/16 Siemens AG

  3. Outline • Status Quo of H.235 • Some insights into work under development IMTC Fall Forum – November 2002 – New York, NY, USA

  4. Evolution of H.235 Improvementand Additions 1st Deployment Consolidation Core SecurityFrameworkEngineering H.235V3 consent H.235 Annex Gconsent H.235V2 Annex D Annex E approved Security Profiles Annex D Annex E started Annex F H.530 consent H.235V1 approved Initial Draft H.323V5 H.323V4 H.323V2 1997 1998 1999 2000 2001 2002 2003 1996 IMTC Fall Forum – November 2002 – New York, NY, USA

  5. Status of H.235 and related Recommendations Approved and published: • H.235 Version 2 (2000): Main text includingAnnex D “Baseline Security Profile”Annex E “Signature Security Profile” • H.235 Annex F “Hybrid PKI Security Profile“ • H.323 Annex J “Security for SETs” • H.530 “Mobility Security in H.510” IMTC Fall Forum – November 2002 – New York, NY, USA

  6. Work under development Scheduled for consent AAP: 5/2003 • Draft H.235 V3 • Draft H.235 Annex G “SRTP Usage“ IMTC Fall Forum – November 2002 – New York, NY, USA

  7. Draft H.235 Version 3 Features • Annex D “Authentication-Only” Option for improved NAT/FW traversal of the security protocol • Acknowledged and more robust key update mechanism • Encrypted H.245 inband DTMF signaling • OIDs for AES encryption algorithm and (E)OFB mode • 1536-bit Diffie-Hellman group defined for high security • Key distribution procedure on the RAS channel • Enhanced error return codes • Secure multiple payload stream and secure MoIP (tbd) • … IMTC Fall Forum – November 2002 – New York, NY, USA

  8. Draft H.235 Annex G “SRTP Usage“Goals • Make IETF Secure RTP Protocol available to H.235-based systems • Be interoperable with other SRTP terminals • Use a stream cipher for improved performance, robustness and security • Yield the improved security for RTCP protection • Obtain improved integrity spanning the entire RTP/RTCP packet • Deploy state-of-the art AES encryption algorithm, • Use session encryption/authentication keys derived from a pseudo-random function at both ends IMTC Fall Forum – November 2002 – New York, NY, USA

  9. H.235 Annex G Approach • Provide integration with key management for SRTP and SRTCP • Address fast connect with forward and reverse logical channels • Negotiate SRTP features • Negotiate a SRTP master key(s) and derive SRTP/SRTCP session keys • Use also IETF MIKEY Key Management??? IMTC Fall Forum – November 2002 – New York, NY, USA

  10. Thank You! It's time for Questions... IMTC Fall Forum – November 2002 – New York, NY, USA

More Related