From f529efe21a486def8b65f5b9b5354560e5e513b9 Mon Sep 17 00:00:00 2001 From: Othmar Gsenger Date: Fri, 27 Apr 2007 15:45:39 +0000 Subject: encryption --- internet-draft-satp.html | 32 +++++++++++++++++++-- internet-draft-satp.txt | 74 ++++++++++++++++++++++++++++++++++++++++++------ internet-draft-satp.xml | 29 +++++++++++++++++-- 3 files changed, 122 insertions(+), 13 deletions(-) diff --git a/internet-draft-satp.html b/internet-draft-satp.html index ba9e4db..f0b1b8a 100644 --- a/internet-draft-satp.html +++ b/internet-draft-satp.html @@ -430,8 +430,36 @@ HEX

4.8.  Encryption

-

Encryption is done in the same way as for SRTP (Baugher, M., McGrew, D., Naslund, M., Carrara, E., and K. Norrman, “The Secure Real-time Transport Protocol (SRTP),” March 2004.) [1]. This section will only discuss some small changes that HAVE TO be made. Please read SRTP RFC3711 section 3-9 (Baugher, M., McGrew, D., Naslund, M., Carrara, E., and K. Norrman, “The Secure Real-time Transport Protocol (SRTP),” March 2004.) [1] for details. SSRC is replaced by the sender ID +

Encryption is done in the same way as for SRTP (Baugher, M., McGrew, D., Naslund, M., Carrara, E., and K. Norrman, “The Secure Real-time Transport Protocol (SRTP),” March 2004.) [1]. This section will only discuss some small changes that HAVE TO be made. Please read SRTP RFC3711 section 3-9 (Baugher, M., McGrew, D., Naslund, M., Carrara, E., and K. Norrman, “The Secure Real-time Transport Protocol (SRTP),” March 2004.) [1] for details.

+

The least significant bits of SSRC are replaced by the sender ID and the rest is filled with zeros. For the SRTP SEQ the 16 least significant bits of the SATP sequence number are used and the 16 most significant bits of the sequence number replace the 16 least significant bits of the SRTP ROC. +


+ + +

Difference between SRTP and SATP +

+        0                   1                   2                   3
+      0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+     |                     SATP    sequence number                   |
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+                                    =
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+     | SRTP ROC least significant   |         SRTP SEQ               |
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+
+
+        0                   1                   2                   3
+      0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+     |0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0|       SATP sender ID          |
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+                                    =
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+     |                           SRTP SSRC                           |
+     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+
 Figure 7 
+

5.  Security Considerations

@@ -476,7 +504,7 @@ References   Othmar Gsenger   -Puerstingerstr 32/7 +Puerstingerstr 32   Saalfelden 5760   diff --git a/internet-draft-satp.txt b/internet-draft-satp.txt index 88fd5eb..34799c2 100644 --- a/internet-draft-satp.txt +++ b/internet-draft-satp.txt @@ -538,9 +538,13 @@ Internet-Draft secure anycast tunneling protocol (satp) March 2007 Encryption is done in the same way as for SRTP [1]. This section will only discuss some small changes that HAVE TO be made. Please - read SRTP RFC3711 section 3-9 [1] for details. SSRC is replaced by - the sender ID + read SRTP RFC3711 section 3-9 [1] for details. + The least significant bits of SSRC are replaced by the sender ID and + the rest is filled with zeros. For the SRTP SEQ the 16 least + significant bits of the SATP sequence number are used and the 16 most + significant bits of the sequence number replace the 16 least + significant bits of the SRTP ROC. @@ -552,11 +556,63 @@ Internet-Draft secure anycast tunneling protocol (satp) March 2007 +Gsenger Expires September 2, 2007 [Page 10] + +Internet-Draft secure anycast tunneling protocol (satp) March 2007 + Difference between SRTP and SATP + 0 1 2 3 + 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SATP sequence number | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + = + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SRTP ROC least significant | SRTP SEQ | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ -Gsenger Expires September 2, 2007 [Page 10] + + 0 1 2 3 + 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + |0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0| SATP sender ID | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + = + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SRTP SSRC | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + + Figure 7 + + + + + + + + + + + + + + + + + + + + + + + + + + + +Gsenger Expires September 2, 2007 [Page 11] Internet-Draft secure anycast tunneling protocol (satp) March 2007 @@ -612,7 +668,7 @@ Internet-Draft secure anycast tunneling protocol (satp) March 2007 -Gsenger Expires September 2, 2007 [Page 11] +Gsenger Expires September 2, 2007 [Page 12] Internet-Draft secure anycast tunneling protocol (satp) March 2007 @@ -668,7 +724,7 @@ Internet-Draft secure anycast tunneling protocol (satp) March 2007 -Gsenger Expires September 2, 2007 [Page 12] +Gsenger Expires September 2, 2007 [Page 13] Internet-Draft secure anycast tunneling protocol (satp) March 2007 @@ -724,7 +780,7 @@ URIs -Gsenger Expires September 2, 2007 [Page 13] +Gsenger Expires September 2, 2007 [Page 14] Internet-Draft secure anycast tunneling protocol (satp) March 2007 @@ -732,7 +788,7 @@ Internet-Draft secure anycast tunneling protocol (satp) March 2007 Author's Address Othmar Gsenger - Puerstingerstr 32/7 + Puerstingerstr 32 Saalfelden 5760 AT @@ -780,7 +836,7 @@ Author's Address -Gsenger Expires September 2, 2007 [Page 14] +Gsenger Expires September 2, 2007 [Page 15] Internet-Draft secure anycast tunneling protocol (satp) March 2007 @@ -836,5 +892,5 @@ Acknowledgment -Gsenger Expires September 2, 2007 [Page 15] +Gsenger Expires September 2, 2007 [Page 16] diff --git a/internet-draft-satp.xml b/internet-draft-satp.xml index 75a6e5c..19aec12 100644 --- a/internet-draft-satp.xml +++ b/internet-draft-satp.xml @@ -19,7 +19,7 @@
- Puerstingerstr 32/7 + Puerstingerstr 32 Saalfelden 5760 AT @@ -232,7 +232,32 @@ HEX
- Encryption is done in the same way as for SRTP. This section will only discuss some small changes that HAVE TO be made. Please read SRTP RFC3711 section 3-9 for details. SSRC is replaced by the sender ID + Encryption is done in the same way as for SRTP. This section will only discuss some small changes that HAVE TO be made. Please read SRTP RFC3711 section 3-9 for details. The least significant bits of SSRC are replaced by the sender ID and the rest is filled with zeros. For the SRTP SEQ the 16 least significant bits of the SATP sequence number are used and the 16 most significant bits of the sequence number replace the 16 least significant bits of the SRTP ROC. +
+ Difference between SRTP and SATP + + 0 1 2 3 + 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SATP sequence number | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + = + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SRTP ROC least significant | SRTP SEQ | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + + + 0 1 2 3 + 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + |0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0| SATP sender ID | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + = + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | SRTP SSRC | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + +
-- cgit v1.2.3