SlideShare a Scribd company logo

Secure Multicast Conferencing

Download as PPT, PDF
blogzilla, profile picture
blogzilla

The document discusses securing multicast conferencing. It describes how multicast conferencing involves sharing audio, video and whiteboards but securing it is challenging due to the need to share keys between group members. It proposes using session descriptions distributed via secure means like S/MIME email or TLS-protected web servers to distribute security parameters to authorized members to enable secure multicast conferencing. New techniques are still needed to allow for encrypted data to be processed by intermediate nodes like proxies without revealing security keys.

BusinessTechnology
1 of 15
Downloaded 18 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
Secure multicast conferencing Peter Kirstein, Ian Brown and Edmund Whelan University College London IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL
Video IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Multicast conferencing involves... Audio Shared whiteboard
Confidentiality: only authorised conference members can access conference data Integrity: you can be sure data has not been altered in transit Authentication: of conference announcers and participants IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Security provides...
Each link is secured using a standard communications security protocol: IPSEC, SSL/TLS, SSH Extremely wasteful of bandwidth Multipoint control units are security risks IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Point-to-point conferencing security is easy...
Multicast doesn’t fit the “point-to-point” model of current security protocols There is no standard method of sharing keys between group members IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL But multicast is more tricky...
Use Real-time Transport Protocol (RTP) to send data Users announce conferences and invite users by sending a session invitation via e-mail, the Session Announcement or Session Invitation Protocols IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Insecure conferences
RTP allows data to be encrypted with DES - implemented in UCL’s tools We want to move to IPSEC to remove need for cryptographic code in applications and take advantage of its wide range of ciphersuites and protocol and implementation security IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Secure transport
Now standardised by IETF (RFC 2411) Provides network-layer protection for all packets sent between compatible machines Not yet finished for multicast IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL IP security extensions
The Internet Key Exchange (IKE) allows two hosts to negotiate security parameters for an IPSEC connection But multicast IKE is much harder, and being investigated by the IRTF IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Key distribution problem
We use secure session invitations to distribute security parameters Sent using secure SAP, SIP, or e-mail (S/MIME) or retrieved via the World Wide Web (TLS) IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Conferencing solution
Session descriptions are stored on a secure Web server Authorised conference members can retrieve descriptions over a TLS link IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Web distribution
Users don’t like having to remember many long passphrases Mobile users need access to keys from many different systems Software keys are vulnerable to theft Smartcards alleviate all these problems IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Smartcards
In-network code can reduce bandwidth requirements, convert between coding schemes, provide multicast connectivity, etc. etc. IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Active services
You can give proxies the session keys needed for them to access and process data We are developing proxies that can work without this security risk IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Processing encrypted data
Multicast conference data can be secured at the network or application layer Until multicast key distribution is standardised, lightweight methods based on session descriptions can be used New techniques are needed to allow in-network processing of encrypted data IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Conclusions

More Related Content

PDF
Network Security Applications
Hatem Mahmoud
 
PPTX
Presentation network security
cegonsoft1999
 
PDF
Wi-Fi security – WEP, WPA and WPA2
Fábio Afonso
 
PPTX
WEP
Sudeep Kulkarni
 
PPTX
Wireless security using wpa2
Tushar Anand
 
PPTX
Wireless network security
Shahid Beheshti University
 
PPT
Lesson 2 Cryptography tools
MLG College of Learning, Inc
 
PPT
Wi fi protected-access
bhanu4ugood1
 
Network Security Applications
Hatem Mahmoud
 
Presentation network security
cegonsoft1999
 
Wi-Fi security – WEP, WPA and WPA2
Fábio Afonso
 
WEP
Sudeep Kulkarni
 
Wireless security using wpa2
Tushar Anand
 
Wireless network security
Shahid Beheshti University
 
Lesson 2 Cryptography tools
MLG College of Learning, Inc
 
Wi fi protected-access
bhanu4ugood1
 

What's hot (20)

PPTX
Wireless Security
Università Degli Studi Di Salerno
 
PPTX
Wireless Network security
Fathima Rahaman
 
PPT
Ch06 Wireless Network Security
Information Technology
 
PDF
Computer Security - CCNA Security - Lecture 1
Mohamed Loey
 
PDF
CipherLoc_OverviewBrochure (1)
Michael DeLaGarza
 
PPTX
JDMDE Specialisation KaHo Sint-Lieven
KaHo Sint-Lieven
 
PPS
Iuwne10 S04 L05
Ravi Ranjan
 
PPTX
Wpa vs Wpa2
Nzava Luwawa
 
PPTX
Wi Fi Security
yousef emami
 
PPTX
Network security
Nkosinathi Lungu
 
PPTX
802.11 Wireless, WEP, WPA lecture
Martyn Price
 
PPSX
WPA2
Mshari Alabdulkarim
 
PDF
Pentesting Wireless Networks and Wireless Network Security
Ayoma Wijethunga
 
PPTX
Wifi Security
Shital Kat
 
PPT
Ch32
bitistu
 
PDF
8 Authentication Security Protocols
guestfbf635
 
PPTX
WPA 3
diggu22
 
PPTX
Network security
Madhumithah Ilango
 
PPT
Wifi Security
Agris Ameriks
 
PPTX
Wpa2 psk security measure
Shivam Singh
 
Wireless Security
Università Degli Studi Di Salerno
 
Wireless Network security
Fathima Rahaman
 
Ch06 Wireless Network Security
Information Technology
 
Computer Security - CCNA Security - Lecture 1
Mohamed Loey
 
CipherLoc_OverviewBrochure (1)
Michael DeLaGarza
 
JDMDE Specialisation KaHo Sint-Lieven
KaHo Sint-Lieven
 
Iuwne10 S04 L05
Ravi Ranjan
 
Wpa vs Wpa2
Nzava Luwawa
 
Wi Fi Security
yousef emami
 
Network security
Nkosinathi Lungu
 
802.11 Wireless, WEP, WPA lecture
Martyn Price
 
WPA2
Mshari Alabdulkarim
 
Pentesting Wireless Networks and Wireless Network Security
Ayoma Wijethunga
 
Wifi Security
Shital Kat
 
Ch32
bitistu
 
8 Authentication Security Protocols
guestfbf635
 
WPA 3
diggu22
 
Network security
Madhumithah Ilango
 
Wifi Security
Agris Ameriks
 
Wpa2 psk security measure
Shivam Singh
 
Ad

Similar to Secure Multicast Conferencing (20)

PDF
CDE Marketplace: SQR Systems
Defence and Security Accelerator
 
PPTX
fundamental of network security
Manish Tiwari
 
PPT
Security in bluetooth, cdma and umts
Ankit Gupta
 
PPT
Security in bluetooth, cdma and umts
Ankit Gupta
 
PDF
Internet Protocol Security as the Network Cryptography System
Universitas Pembangunan Panca Budi
 
PPT
Download
Videoguy
 
PPT
Download
Videoguy
 
PPTX
Asymmetric Cryptography-Public key Cryptosystems3lecture_topic_pkc_unit2.pptx
archibhartiya
 
PDF
day2_research_200-250.pdfday2_research_200-250.pdfday2_research_200-250.pdf
scribd573057
 
PDF
Virtual private networks
UBT - Higher Education Institution
 
PDF
8th International Conference on Networks and Security (NSEC 2024)
ClaraZara1
 
PPT
saag-3.ppt
HazemElabed2
 
PDF
Cns unit4
PRADEEPJ30
 
PDF
Cns unit4
PRADEEPJ30
 
PDF
Virtual private network a veritable tool for network security
eSAT Publishing House
 
PPTX
CRYPTOGRAPHY & NETWORK SECURITY.pptx
NavanathDarwante1
 
PDF
Analysis of network_security_threats_and_vulnerabilities_by_development__impl...
Tương Hoàng
 
PDF
12th International Conference on Communications Security & Information Assura...
pijans
 
PDF
Lan Virtual Networks
Nicole Gomez
 
PPTX
Ipsecurity
Jyoshna Cec Cse Staf bejjam
 
CDE Marketplace: SQR Systems
Defence and Security Accelerator
 
fundamental of network security
Manish Tiwari
 
Security in bluetooth, cdma and umts
Ankit Gupta
 
Security in bluetooth, cdma and umts
Ankit Gupta
 
Internet Protocol Security as the Network Cryptography System
Universitas Pembangunan Panca Budi
 
Download
Videoguy
 
Download
Videoguy
 
Asymmetric Cryptography-Public key Cryptosystems3lecture_topic_pkc_unit2.pptx
archibhartiya
 
day2_research_200-250.pdfday2_research_200-250.pdfday2_research_200-250.pdf
scribd573057
 
Virtual private networks
UBT - Higher Education Institution
 
8th International Conference on Networks and Security (NSEC 2024)
ClaraZara1
 
saag-3.ppt
HazemElabed2
 
Cns unit4
PRADEEPJ30
 
Cns unit4
PRADEEPJ30
 
Virtual private network a veritable tool for network security
eSAT Publishing House
 
CRYPTOGRAPHY & NETWORK SECURITY.pptx
NavanathDarwante1
 
Analysis of network_security_threats_and_vulnerabilities_by_development__impl...
Tương Hoàng
 
12th International Conference on Communications Security & Information Assura...
pijans
 
Lan Virtual Networks
Nicole Gomez
 
Ipsecurity
Jyoshna Cec Cse Staf bejjam
 
Ad

More from blogzilla (20)

PDF
Interoperability for SNS competition
blogzilla
 
PPTX
Transatlantic data flows following the Schrems II judgment
blogzilla
 
PPTX
Lessons for interoperability remedies from UK Open Banking
blogzilla
 
PPTX
Covid exposure apps in England and Wales
blogzilla
 
PPTX
Key issues in data protection policy
blogzilla
 
PPTX
Trusted government access to private sector data
blogzilla
 
PDF
Interoperability in the Digital Services Act
blogzilla
 
PPTX
Making effective policy use of academic expertise
blogzilla
 
PPTX
Introduction to Cybersecurity for Elections
blogzilla
 
PPTX
Cyber Essentials for Managers
blogzilla
 
PDF
Privacy and Data Protection in South Africa
blogzilla
 
PPTX
Human rights and the future of surveillance - Lord Anderson QC
blogzilla
 
PDF
Data science and privacy regulation
blogzilla
 
PPTX
Where next for encryption regulation?
blogzilla
 
PPTX
Where next for the Regulation of Investigatory Powers Act?
blogzilla
 
PPTX
Regulation and the Internet of Things
blogzilla
 
PPTX
Global Cyber Security Capacity Centre
blogzilla
 
PPTX
Privacy post-Snowden
blogzilla
 
PPTX
Keeping our secrets? Shaping Internet technologies for the public good
blogzilla
 
PPT
The Data Retention Directive: recent developments
blogzilla
 
Interoperability for SNS competition
blogzilla
 
Transatlantic data flows following the Schrems II judgment
blogzilla
 
Lessons for interoperability remedies from UK Open Banking
blogzilla
 
Covid exposure apps in England and Wales
blogzilla
 
Key issues in data protection policy
blogzilla
 
Trusted government access to private sector data
blogzilla
 
Interoperability in the Digital Services Act
blogzilla
 
Making effective policy use of academic expertise
blogzilla
 
Introduction to Cybersecurity for Elections
blogzilla
 
Cyber Essentials for Managers
blogzilla
 
Privacy and Data Protection in South Africa
blogzilla
 
Human rights and the future of surveillance - Lord Anderson QC
blogzilla
 
Data science and privacy regulation
blogzilla
 
Where next for encryption regulation?
blogzilla
 
Where next for the Regulation of Investigatory Powers Act?
blogzilla
 
Regulation and the Internet of Things
blogzilla
 
Global Cyber Security Capacity Centre
blogzilla
 
Privacy post-Snowden
blogzilla
 
Keeping our secrets? Shaping Internet technologies for the public good
blogzilla
 
The Data Retention Directive: recent developments
blogzilla
 

Recently uploaded (20)

PDF
Solaris Resources Presentation - Corporate August 2025.pdf
pchambers2
 
PDF
NewBase 12 August 2025 Energy News issue - 1812 by Khaled Al Awadi_compresse...
Khaled Al Awadi
 
PPTX
sales presentation، Training Overview.pptx
hamdullahazimi3
 
PDF
BsN 7th Sem Course GridNNNNNNNN CCN.pdf
ZAMANYousufzai1
 
PDF
Family Law: The Role of Communication in Mediation (www.kiu.ac.ug)
publication11
 
PDF
Booking.com The Global AI Sentiment Report 2025
agatadrynko
 
PDF
Cours de Système d'information about ERP.pdf
pha nguyen
 
PPT
Lecture 3344;;,,(,(((((((((((((((((((((((
princessbliss09
 
PDF
Introduction to Generative Engine Optimization (GEO)
seoplus+
 
PDF
Comments on Crystal Cloud and Energy Star.pdf
Brij Consulting, LLC
 
PDF
TyAnn Osborn: A Visionary Leader Shaping Corporate Workforce Dynamics
CIO WOMEN MAGAIZNE CIO WOMEN MAGAIZNE
 
PDF
Charisse Litchman: A Maverick Making Neurological Care More Accessible
The lifescience magaizne
 
PPTX
Slide gioi thieu VietinBank Quy 2 - 2025
hoadm5190
 
PDF
Module 2 - Modern Supervison Challenges - Student Resource.pdf
OmoobaOrun1
 
PDF
SIMNET Inc – 2023’s Most Trusted IT Services & Solution Provider
sidnik500
 
PDF
Nante Industrial Plug Factory: Engineering Quality for Modern Power Applications
gdhdgee963
 
PDF
Building a Smart Pet Ecosystem: A Full Introduction to Zhejiang Beijing Techn...
fuijfsdsazdyu
 
PPTX
operations management : demand supply ch
JayeshJaiswal23
 
PDF
Technical Architecture - Chainsys dataZap
Chainsys SEO
 
PPTX
3. HISTORICAL PERSPECTIVE UNIIT 3^..pptx
ZAMANYousufzai1
 
Solaris Resources Presentation - Corporate August 2025.pdf
pchambers2
 
NewBase 12 August 2025 Energy News issue - 1812 by Khaled Al Awadi_compresse...
Khaled Al Awadi
 
sales presentation، Training Overview.pptx
hamdullahazimi3
 
BsN 7th Sem Course GridNNNNNNNN CCN.pdf
ZAMANYousufzai1
 
Family Law: The Role of Communication in Mediation (www.kiu.ac.ug)
publication11
 
Booking.com The Global AI Sentiment Report 2025
agatadrynko
 
Cours de Système d'information about ERP.pdf
pha nguyen
 
Lecture 3344;;,,(,(((((((((((((((((((((((
princessbliss09
 
Introduction to Generative Engine Optimization (GEO)
seoplus+
 
Comments on Crystal Cloud and Energy Star.pdf
Brij Consulting, LLC
 
TyAnn Osborn: A Visionary Leader Shaping Corporate Workforce Dynamics
CIO WOMEN MAGAIZNE CIO WOMEN MAGAIZNE
 
Charisse Litchman: A Maverick Making Neurological Care More Accessible
The lifescience magaizne
 
Slide gioi thieu VietinBank Quy 2 - 2025
hoadm5190
 
Module 2 - Modern Supervison Challenges - Student Resource.pdf
OmoobaOrun1
 
SIMNET Inc – 2023’s Most Trusted IT Services & Solution Provider
sidnik500
 
Nante Industrial Plug Factory: Engineering Quality for Modern Power Applications
gdhdgee963
 
Building a Smart Pet Ecosystem: A Full Introduction to Zhejiang Beijing Techn...
fuijfsdsazdyu
 
operations management : demand supply ch
JayeshJaiswal23
 
Technical Architecture - Chainsys dataZap
Chainsys SEO
 
3. HISTORICAL PERSPECTIVE UNIIT 3^..pptx
ZAMANYousufzai1
 

Secure Multicast Conferencing

  • 1. Secure multicast conferencing Peter Kirstein, Ian Brown and Edmund Whelan University College London IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL
  • 2. Video IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Multicast conferencing involves... Audio Shared whiteboard
  • 3. Confidentiality: only authorised conference members can access conference data Integrity: you can be sure data has not been altered in transit Authentication: of conference announcers and participants IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Security provides...
  • 4. Each link is secured using a standard communications security protocol: IPSEC, SSL/TLS, SSH Extremely wasteful of bandwidth Multipoint control units are security risks IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Point-to-point conferencing security is easy...
  • 5. Multicast doesn’t fit the “point-to-point” model of current security protocols There is no standard method of sharing keys between group members IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL But multicast is more tricky...
  • 6. Use Real-time Transport Protocol (RTP) to send data Users announce conferences and invite users by sending a session invitation via e-mail, the Session Announcement or Session Invitation Protocols IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Insecure conferences
  • 7. RTP allows data to be encrypted with DES - implemented in UCL’s tools We want to move to IPSEC to remove need for cryptographic code in applications and take advantage of its wide range of ciphersuites and protocol and implementation security IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Secure transport
  • 8. Now standardised by IETF (RFC 2411) Provides network-layer protection for all packets sent between compatible machines Not yet finished for multicast IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL IP security extensions
  • 9. The Internet Key Exchange (IKE) allows two hosts to negotiate security parameters for an IPSEC connection But multicast IKE is much harder, and being investigated by the IRTF IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Key distribution problem
  • 10. We use secure session invitations to distribute security parameters Sent using secure SAP, SIP, or e-mail (S/MIME) or retrieved via the World Wide Web (TLS) IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Conferencing solution
  • 11. Session descriptions are stored on a secure Web server Authorised conference members can retrieve descriptions over a TLS link IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Web distribution
  • 12. Users don’t like having to remember many long passphrases Mobile users need access to keys from many different systems Software keys are vulnerable to theft Smartcards alleviate all these problems IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Smartcards
  • 13. In-network code can reduce bandwidth requirements, convert between coding schemes, provide multicast connectivity, etc. etc. IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Active services
  • 14. You can give proxies the session keys needed for them to access and process data We are developing proxies that can work without this security risk IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Processing encrypted data
  • 15. Multicast conference data can be secured at the network or application layer Until multicast key distribution is standardised, lightweight methods based on session descriptions can be used New techniques are needed to allow in-network processing of encrypted data IDC’99, Madrid 23 Sept. 1999 Ian Brown, UCL Conclusions

Editor's Notes