hip based p2psip proxy
play

HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF Vancouver Joakim - PowerPoint PPT Presentation

Mar 12, 2024 •136 likes •219 views

HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF Vancouver Joakim Koskela HIP-based P2PSIP P2PSIP in general: replace SIP server architecture with a DHT Used for routing messages and locating peers & services New challenges

  1. HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF – Vancouver Joakim Koskela

  2. HIP-based P2PSIP ● P2PSIP in general: replace SIP server architecture with a DHT – Used for routing messages and locating peers & services – New challenges for security (confidentiality, identity theft, privacy..), connectivity (NATs, mobility..) ● draft-hautakorpi-p2psip-with-hip-01.txt (our approach) – How HIP (as-is) can be used with P2PSIP – Set up P2P and overlay connections using HIP ● Use the (application-layer) overlay to locate RVS, relays and to route the BEX – To be used in together with a P2PSIP protocol proposial

  3. The prototype ● Developed at HIIT as a tool for research in P2P security – SPAM/SPIT prevention, privacy issues ● Implemented as a light SIP proxy on Linux – HIPL used for HIP – Proxy @ localhost, used through normal, unmodified SIP UAs ● SIP UA (e.g. ekiga, gaim, wengophone) need not be HIP- aware (or even ipv6 enabled!) ● Overlay is separated into distributed storage & routing – Multiple simultaneous storage modules possible (DHT-based or not, with or without HIP) – Differs from the draft's model

  4. The prototype ● The P2PSIP proxy intercepts SIP messages – Converts to P2P format & activities – Sets up HIP connections, directs the application to use them (replaces contact addresses with HITs in SIP signalling) DHT msgs DHT msgs User 1 Overlay / DHT User 2 P2PSIP P2PSIP SIP UA SIP UA proxy proxy SIP msgs SIP msgs SIP messaging Data traffic HIP tunnel

  5. Identity – locator mapping ● Uses SIP AOR (sip:bob@example.com) as identities – SIP AOR provides mobility in-between sessions (changing device), HIT mobility during session – Distributed storage used for SIP AOR -> HIT & locator (+ possible RVS) mapping ● Certificate scheme used to prove identity – Identities are issued by authorities – Multiple issuers possible (and recommended!), e.g. company-internal, global, between friends ● SSH-like leap of faith also supported

  6. Next steps ● Routing BEX through the overlay – Use the overlay(s) as distributed RVS – Like Hi3, but for other overlays as well ● Implementation issues – New interface / API in HIPL needed for exporting / importing HIP packets (“alternative transport”) – Data formats, encoding (encapsulation) of HIP messages in overlays

  7. Next steps ● Peers can be reached through multiple channels – Through RVS, overlay or ipv4/6 directly (possible traversing NATs) ● To minimize connection establishment delay, we would like to try these channels in parallel ● Implementation issues – More agile HIP connection establishment interface

  8. Demo ● Deployment ● Creating & importing an identity ● Contacting peer

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Individual Proposals IETF-70 P2PSIP 5 minutes each draft-bryan-p2psip-reload-02 C. Jennings, B.

Individual Proposals IETF-70 P2PSIP 5 minutes each draft-bryan-p2psip-reload-02 C. Jennings, B.

Individual Proposals IETF-70 P2PSIP 5 minutes each draft-bryan-p2psip-reload-02 C. Jennings, B. Lowekamp, E. Rescorla, J. Rosenberg merge of RELOAD and ASP proposals binary protocol fixed fields where possible, TLV where flexible

417 views • 25 slides
I n t e r n s L i g h t n i n g T a l k s Proxy editing PiTiVi Proxy editing

I n t e r n s L i g h t n i n g T a l k s Proxy editing PiTiVi Proxy editing

I n t e r n s L i g h t n i n g T a l k s Proxy editing PiTiVi Proxy editing Anton Belka, antonbelka@gmail.com GUADEC 2013 The TM Conference GUADEC Proxy editing What is proxy editing? Proxy editing is the ability to

1.75k views • 143 slides
Web Proxy Caching Model Web Servers Aggregate Proxy Workload server Web Clients Factors and

Web Proxy Caching Model Web Servers Aggregate Proxy Workload server Web Clients Factors and

Web Proxy Caching Model Web Servers Aggregate Proxy Workload server Web Clients Factors and Levels Cache size Cache Replacement Policy Recency-based LRU Frequency-based LFU-Aging Size-based GD-Size Workload

303 views • 3 slides
Entwurfsmuster und Frameworks Proxy Oliver Haase Oliver Haase Emfra Proxy 1/14

Entwurfsmuster und Frameworks Proxy Oliver Haase Oliver Haase Emfra Proxy 1/14

Entwurfsmuster und Frameworks Proxy Oliver Haase Oliver Haase Emfra Proxy 1/14 Description I Classification : Object-based structural pattern Also known as : Surrogate Purpose : Control access to a subject through

435 views • 14 slides
January 29, 2018 Proxy Statements under Maryland Law 2018 The 2018 proxy season is here.

January 29, 2018 Proxy Statements under Maryland Law 2018 The 2018 proxy season is here.

January 29, 2018 Proxy Statements under Maryland Law 2018 The 2018 proxy season is here. Based on our experience reviewing proxy statements for Maryland public companies, we would like to call your attention to certain matters of Maryland

272 views • 12 slides
GLM Proxy Data Monte Bateman Proxy Data Creator Introduction GLM is an optical instrument

GLM Proxy Data Monte Bateman Proxy Data Creator Introduction GLM is an optical instrument

GLM Proxy Data Monte Bateman Proxy Data Creator Introduction GLM is an optical instrument Closest analog is LIS LIS is LEO; has a limited time on station for a particular storm Have several ground-based, 24x7 networks;

133 views • 10 slides
MySQL Proxy Making MySQL more flexible Jan Kneschke jan@mysql.com MySQL Proxy proxy-servers

MySQL Proxy Making MySQL more flexible Jan Kneschke jan@mysql.com MySQL Proxy proxy-servers

MySQL Proxy Making MySQL more flexible Jan Kneschke jan@mysql.com MySQL Proxy proxy-servers forward requests to backends and can transform, handle or block them released under the GPL see http://forge.mysql.com/wiki/MySQL_Proxy

945 views • 27 slides
NTRUReEncrypt An Efficient Proxy Re-Encryption Scheme based on NTRU David Nu nez , Isaac Agudo,

NTRUReEncrypt An Efficient Proxy Re-Encryption Scheme based on NTRU David Nu nez , Isaac Agudo,

Outline Proxy Re-Encryption NTRU NTRUReEncrypt PS-NTRUReEncrypt Experimental results Conclusions NTRUReEncrypt An Efficient Proxy Re-Encryption Scheme based on NTRU David Nu nez , Isaac Agudo, and Javier Lopez Network, Information and

929 views • 38 slides
C# Design Patterns: Proxy APPLYING THE PROXY PATTERN Steve Smith FORCE MULTIPLIER FOR DEV TEAMS

C# Design Patterns: Proxy APPLYING THE PROXY PATTERN Steve Smith FORCE MULTIPLIER FOR DEV TEAMS

C# Design Patterns: Proxy APPLYING THE PROXY PATTERN Steve Smith FORCE MULTIPLIER FOR DEV TEAMS @ardalis | ardalis.com | weeklydevtips.com t h s What problems does proxy solve? Objectives How is the proxy pattern structured? Apply the

779 views • 23 slides
Identity-Based Cryptosystems and Quadratic Residuosity Marc Joye Proxy: Fabrice Benhamouda PKC

Identity-Based Cryptosystems and Quadratic Residuosity Marc Joye Proxy: Fabrice Benhamouda PKC

Identity-Based Encryption Cocks IBE Scheme Algebraic Structure Applications Conclusion Identity-Based Cryptosystems and Quadratic Residuosity Marc Joye Proxy: Fabrice Benhamouda PKC 2016 Tapei, Taiwan 1 / 20 Identity-Based Encryption

655 views • 38 slides
Six- DOF Haptic Rendering I Outline Motivation Direct rendering Proxy-based rendering

Six- DOF Haptic Rendering I Outline Motivation Direct rendering Proxy-based rendering

CPSC 599.86 / 601.86 Sonny Chan - University of Calgary Six- DOF Haptic Rendering I Outline Motivation Direct rendering Proxy-based rendering - Theory - Taxonomy Motivation 3- DOF avatar The Holy Grail? Tool-Mediated Interaction

1.31k views • 41 slides
Web Application Proxy (WAP) Remote Access Gateway Proxy for Web Applications 1 If youre

Web Application Proxy (WAP) Remote Access Gateway Proxy for Web Applications 1 If youre

Web Application Proxy (WAP) Remote Access Gateway Proxy for Web Applications 1 If youre WAPpy and you know it. UAG ? WAP ? eGov ? 2 Topics This Why the County invested in WAP presentation will share: Capabilities

427 views • 20 slides
One Hop Lookups Plugin for RELOAD IETF81@Quebec, Canada draft-peng-p2psip-one-hop-plugin-00 Jin

One Hop Lookups Plugin for RELOAD IETF81@Quebec, Canada draft-peng-p2psip-one-hop-plugin-00 Jin

One Hop Lookups Plugin for RELOAD IETF81@Quebec, Canada draft-peng-p2psip-one-hop-plugin-00 Jin Peng Kai Feng Lifeng Le Agenda Why One Hop Lookups Plugin? Peer data structure Event notification procedure Updates message

589 views • 12 slides
CPCA: A Chebyshev Proxy and Consensus based Algorithm for General Distributed Optimization

CPCA: A Chebyshev Proxy and Consensus based Algorithm for General Distributed Optimization

CPCA: A Chebyshev Proxy and Consensus based Algorithm for General Distributed Optimization (Accepted by 2020 American Control Conference) Zhiyu He, Jianping He*, Cailian Chen and Xinping Guan Shanghai Jiao Tong University March 2020

589 views • 22 slides
The Squid caching proxy Chris Wichura caw@cawtech.com What is Squid? A caching proxy for

The Squid caching proxy Chris Wichura caw@cawtech.com What is Squid? A caching proxy for

The Squid caching proxy Chris Wichura caw@cawtech.com What is Squid? A caching proxy for HTTP, HTTPS (tunnel only) FTP Gopher WAIS (requires additional software) WHOIS (Squid version 2 only) Supports transparent

592 views • 35 slides
MySQL Proxy meets: binlogs Jan Kneschke MySQL Enterprise Tools mailto: jan@mysql.com What is

MySQL Proxy meets: binlogs Jan Kneschke MySQL Enterprise Tools mailto: jan@mysql.com What is

MySQL Proxy meets: binlogs Jan Kneschke MySQL Enterprise Tools mailto: jan@mysql.com What is MySQL Proxy Started Feb 2007 Current: MySQL Proxy 0.7.0 Source available on launchpad.net $ bzr branch lp:mysql-proxy Foundation of

308 views • 17 slides
Masterclass: Security in data, cloud and blockchain Professor Trish Williams Cisco Chair and

Masterclass: Security in data, cloud and blockchain Professor Trish Williams Cisco Chair and

Masterclass: Security in data, cloud and blockchain Professor Trish Williams Cisco Chair and Professor of Digital Health Systems Co-Director of Flinders Digital Health Research Centre College of Science and Engineering Flinders University,

839 views • 55 slides
Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal

Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal

Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal Assistance Network? (VLAN) VLAN is a network of victim service providers Core Partners provide comprehensive, pro bono "no-cost" legal

692 views • 29 slides
Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the Land: : Wh What t the Numbe mbers rs Tell l Us Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides

722 views • 31 slides
Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source:

Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source:

Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source: https://infosecurity.cathaypacific.com/ How many online accounts compromised through data breach? 5,575,703,782 Source: https://haveibeenpwned.com

556 views • 18 slides
Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global

Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global

Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global Players (4/2009) Credit: Vincenzo Cosenza Promotional Techniques Promotional Techniques Application Data Theft What happens when you take a

412 views • 19 slides
Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card

Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card

Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card fraud at a look-alike Web site that mimics your bank. C. High mercury content in fish from polluted oceans. D.A. Clements, UW Information School 1

525 views • 25 slides
TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In

TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In

TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In Bayesian classification, we rank documents by their likelihood ratios P ( D | R = 1 ) calculated from some probabilistic model. P ( D | R = 0 ) The

548 views • 9 slides
Retrieval Strategy Retrieval Strategies: Vector Space Model An IR strategy is a technique by

Retrieval Strategy Retrieval Strategies: Vector Space Model An IR strategy is a technique by

Retrieval Strategy Retrieval Strategies: Vector Space Model An IR strategy is a technique by which a relevance measure is obtained between a and Boolean query and a document. (COSC 488) Nazli Goharian nazli@cs.georgetown.edu

75 views • 5 slides

More recommend