TLS/sRTP Voice Recording AddPac Technology
|
|
- Cecil Hawkins
- 6 years ago
- Views:
Transcription
1 Secure IP Telephony Solution (TLS/SRTP Protocol) TLS/sRTP Voice Recording AddPac Technology 2015, Sales and Marketing
2 Contents Secure IP Telephony Service Diagram Secure VoIP Protocol & Algorithm (TLS & SRTP) TLS/SRTP based Voice Recording Schemes Centralized Voice Recording Scheme Distributed Voice Recording Scheme Smart Digital Voice Recording Program 2
3 Secure IP Telephony Network Diagram Between External Users : Security Enable : Signaling (TLS/SIP), SRTP Between Internal Users : (Legacy) Security Disable : Signaling (UDP/SIP), SRTP Between Internal and External User : Security Enable : Signaling (TLS/SIP), SRTP Between Internal Users : (IP-PBX User) Security Enable : Signaling (TLS/SIP), SRTP Analog Phone, Digital Key Phone (a) Branch Office PBX Legacy PBX CA (Certificate Authority) AP1950S Secure VoIP Gateway Headquarters (b) Internet (c) Telecommuter (d) Secure IP Phone, IP Video Phone Secure IP-PBX Signaling RTP/SRTP CRLs/OCSP (a) (b) (c) (d) Internal - Internal Call (no Security) Internal - External Call (TLS/SRTP) External - External Call (TLS/SRTP) Internal Internal Call (TLS/SRTP) 3
4 Secure IP Telephony Service Features 4
5 TLS Features for Secure VoIP Service Support for TLS 1.1, TLS 1.0 and SSL 3.0 protocols Since SSL 2.0 is insecure it is not supported. TLS 1.2 is supported but disabled by default. Support for TLS extensions: server name indication, max record size, opaque PRF input, etc. Support for authentication using the SRP protocol. Support for authentication using both X.509 certificates and OpenPGP keys. Support for TLS Pre-Shared-Keys (PSK) extension. Support for Inner Application (TLS/IA) extension. Support for X.509 and OpenPGP certificate handling. Support for X.509 Proxy Certificates (RFC 3820). Supports all the strong encryption algorithms (including SHA-256/384/512), including Camellia (RFC 4132). Supports compression (optional). CRLs CRL (Certificate Revocation List) OCSP (Online Certificate Status Protocol, RFC2560) (via HTTP) Hash Algorithm : SHA-1, MD5 5
6 SSL/TLS Protocol Layers Application Application Application Sockets TCP IP SSL/TLS TCP IP Fragmentation Compression Authentication Encryption TCP IP 6
7 SSL/TLS Handshake AP1950S Secure VoIP Gateway Client Client Hello * optional Server Server Hello Certificate * ServerKeyExchange * CertificateRequest * Server HelloDone Certificate * ServerKeyExchange * CertificateRequest * * optional ChangeCipherSpec Finished o ChangeCipherSpec o encrypted Finished o Application Data o Application Data o 7
8 TLS Comparison with OpenSSL Protocol Support SSLv2.0 SSLv3.0 TLSv1.0 TLSv1.1 TLSv1.2 AddPac No Yes Yes Yes Yes OpenSSL Yes Yes Yes No No Key Exchange Algorithms Anon- RSA RSA RSA Export DHE- RSA DHE- DSS SRP- DSS SRP- RSA SRP PSK ECC AddPac Yes Yes Yes Yes Yes Yes Yes Yes Yes No OpenSSL Yes Yes Yes Yes Yes No No No No Yes Encryption Algorithms (*1) 40-bit encryption is insecure AES CBC AES CBC 3DES CBC DES CBC RC CBC RC4-40(* 1 ) RC2-40(* 1 ) Camellia SEED ARIA AddPac Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes OpenSSL Yes Yes Yes Yes Yes Yes Yes Yes Yes No 8
9 SRTP (Secure( Real-time Transport Protocol) ) Features RFC4568, Standards Track, Session Description Protocol (SDP) Security Descriptions for Media Streams RFC 3711, Proposed Standard, The Secure Real-time Transport Protocol (SRTP) RFC 3551, Standard 65, RTP Profile for Audio and Video Conferences with Minimal Control RFC 3550, Standard 64, RTP: A Transport Protocol for Real-Time Applications RFC 2104, Informational, HMAC: Keyed-Hashing for Message Authentication Cipher Algorithm : ARIA, SEED, AES, DES(*), 3DES(*) * Support at AddPac Specific SRTP 9
10 TLS/SRTP based Voice Recording Schemes 10
11 TLS/SRTP based Voice Recording Scheme Centralized Voice Recording Scheme Features IP-PBX software should be modified and developed for TLS/SRTP based Voice Recording Voice Recording Proxy Server is necessary and should be developed d Performance Issues must be considered Installation and Management is easy and simple Small-Scale Application Distributed ib t Voice Recording Scheme Features Large-Scale Application Voice Recording Proxy Server is necessary and should be developed Each site must have a voice recording proxy server IP-PBX Software is no change 11
12 Centralized Voice Recording Scheme IP-PBX PBX TLS/SIP Signaling TLS/SIP Signaling Internal IPC Channel For Call Information IP Phone RTP/sRTP RTP/sRTP IP Phone Voice Recording Proxy Server Voice Recording Server Smart Digital Voice Manager S/W 12
13 Distributed Voice Recording Scheme (Case A) IP-PBX Site A TLS/SIP Signaling Voice Recording Proxy Server TLS/SIP Signaling Site B Voice Recording Proxy Server srtp Internal IPC Channel Copied RTP Copied RTP Voice Recording Server Smart Digital Voice Manager S/W 13
14 Distributed Voice Recording Scheme (Case B) IP-PBX Site A Site B TLS/SIP Signaling Voice Recording Proxy Server TLS/SIP Signaling srtp Copied Internal Internal RTP IPC Channel Copied RTP IPC Channel Voice Recording Server Smart Digital Voice Manager S/W Voice Recording Server 14
15 Smart Digital it Voice Recording Program 15
16 Contents Overview Smart Digital Voice Recorder Manager Smart File Manager for Secondary Backup 16
17 Overview Call History Management (search/modify/delete/excel File save) Media Play Management (Play/Stop/Seek/Pause) Live Call Recording List Management Live Call Monitoring (Play) Local Backup (File Manager Support, PC HDD, DVD) and Local Play Event History Search User Management (registration/modify/delete/search) Server Status (CPU/Memory/HDD/Transcoding) & Event Monitoring Recording File Waveform Analyzing Function Recording Source Management (VoIP Gateway, IP Phone, etc) Live Call Recording Board (Recording Board Design, Live Call Status, Voice Monitoring) 17
18 Login Auto Login Configuration Password Save 18
19 User Management New Manager Registration Manager Information Modification Manager Delete 19
20 Recording Server Status Monitoring Client List 20
21 Recording File Management (Recorded File Monitoring (play/seek/pause/resume/stop)) Memo Save 21
22 Recording File List Save (Excel File Format) 22
23 Recording File Waveform Analyzer Calling Party Waveform Play List (PL) Called Party Waveform 23
24 Recording File Waveform Analyzer (Repeated Play) Repeated Play Region Current Position Bar 24
25 Recording File Waveform Analyzer (Bookmark Play) Bookmark Set Bookmark Modify Play at Bookmark Position Bookmark Delete Bookmark bookmark k 설정 Bookmark List 25
26 Recording File Waveform Analyzer (Column Side Zooming) Scroll Column Zoom Out Column Zoom In 26
27 Recording File Waveform Analyzer (Row Side Zooming) Scroll Row Side Zoom Out Row Side Zoom In 27
28 Recording File Waveform Analyzer (Region Zooming) Region Zooming 28
29 Recording File Waveform Analyzer (Call Info. Display) 선택영역확대 Call Info. Display Original View Mode 29
30 Live Call Recording List and Monitoring i Current Call List Display Live Play List Update Time 30
31 Event Management (Configuration) Server IP address Event Port Number Realtime event level Setting Event logging level Setting Event level Configuration Sound Play On/Off at Server Emergency Event Occurring 31
32 Event Management (Monitoring) Event level Configuration Window Event Display Window Event Receiving Pause Event Display Window Clear 32
33 Event Management (System Monitoring) 33
34 Event Management (Event History) Event Search Time Setting Event category Search Condition Setting 34
35 Recording Board Management (Call User Registration) Call User List Import New Call User Registration 35
36 Recording Board Management (Call Group Registration) New Group Registration Call User Selection in Group 36
37 Recording Board Management (Background Image (MAP) Selection) Map Open New Map Registration Map Delete Map Configuration 37
38 Recording Board Management (Layout Configuration) Map Configuration Map mode 를아래 2 가지중에서선택 Icon User Setting Call Connection Time Setting 38
39 Recording Board Management (Live Monitoring) Map Configuration (edit) Map Information Save Dynamic Call Status Display (Icon Color) Call Status Display Call Connection Time Icon Display 39
40 Recording Board Management (Call User Insert/Remove in MAP) Call User List Display ON/OFF Call User Insert/Remove in MAP 40
41 Recording Board Management (Background Image Loading) New Background Image Registration New Image Explorer 41
42 Recoding Board Management (Call User Registration in Background MAP image ) Background MAP image (Call User Registration) 42
43 Smart File Manager (Login) 43
44 Smart File Manager (Recorded Call List Search) Search List (Server) Status Display Search List (Local) 44
45 Smart File Manager (Configuration and Search Filter) 45
46 Smart File Manager (Call List Properties) 46
47 Smart File Manager (Server to Local Backup) 47
48 Smart File Manager (Periodical Backup) 48
49 Thank you! AddPac Technology Co., Ltd. Sales and Marketing Phone (KOREA) FAX (KOREA) sales@addpac.com 49
AddPac Technology. Sales and Marketing.
Secure IP Telephony Solution (TLS/SRTP Protocol) AddPac Technology Sales and Marketing www.addpac.com Contents Secure IP Telephony Service Diagram Secure VoIP Protocol & Algorithm (TLS & SRTP) AddPac Secure
More informationTransport Level Security
2 Transport Level Security : Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 28 October 2013 css322y13s2l12, Steve/Courses/2013/s2/css322/lectures/transport.tex,
More informationHow to Configure SSL Interception in the Firewall
Most applications encrypt outgoing connections with SSL or TLS. SSL Interception decrypts SSL-encrypted HTTPS and SMTPS traffic to allow Application Control features (such as the Virus Scanner, ATP, URL
More informationAP-VAC50 IP Video Door Phone
IP Video Door Phone High Performance IP Video Door Phone Solution Smart Video Controller for Automatic Video PopUp Service in PC www.addpac.com AddPac Technology Sales and Marketing Contents Overview Smart
More informationIP Video Door Phone High Performance IP Video Door Phone Solution
IP Video Door Phone High Performance IP Video Door Phone Solution Interworking with Smart Communicator (AddPac Soft Video Phone) AddPac Technology AP-SMP100 Smart Communicator 2015, Sales and Marketing
More informationVoice Recording Server
AP-NR3000 Voice Recording Server High-performance Voice Recoding Solution Preliminary Product Overview (Without notice, following described technical spec. can be changed) AddPac Technology Sales and Marketing
More informationIPsec and SSL/TLS. Applied Cryptography. Andreas Hülsing (Slides mostly by Ruben Niederhagen) Dec. 1st, /43
0/43 IPsec and SSL/TLS Applied Cryptography 0 Andreas Hülsing (Slides mostly by Ruben Niederhagen) Dec. 1st, 2016 Cryptography in the TCP/IP stack application layer transport layer network layer data-link
More informationMTAT Applied Cryptography
MTAT.07.017 Applied Cryptography Transport Layer Security (TLS) Advanced Features University of Tartu Spring 2016 1 / 16 Client Server Authenticated TLS ClientHello ServerHello, Certificate, ServerHelloDone
More informationAnalog Line Voice Recording Solution
AP-NR1500 IP Voice Recording Server Analog Line Voice Recording Solution AddPac Technology Sales and Marketing www.addpac.com Contents Network Diagram Analog Line Voice Recording Solution AP2650 32 Port
More informationLarge Scale Door Access Control Server
AP-ACS10000 Large Scale Door Access Control Server AP-VP280 IPNext180 Hybrid IP-PBX AP-ACS10000 (Door Access Control Server) AddPac Technology AP-VAC20 AP-VAC50 AP-VAC100 AP-VAC200 Sales and Marketing
More informationTransport Layer Security
CEN585 Computer and Network Security Transport Layer Security Dr. Mostafa Dahshan Department of Computer Engineering College of Computer and Information Sciences King Saud University mdahshan@ksu.edu.sa
More informationInternet security and privacy
Internet security and privacy SSL/TLS 1 Application layer App. TCP/UDP IP L2 L1 2 Application layer App. SSL/TLS TCP/UDP IP L2 L1 3 History of SSL/TLS Originally, SSL Secure Socket Layer, was developed
More informationTLS1.2 IS DEAD BE READY FOR TLS1.3
TLS1.2 IS DEAD BE READY FOR TLS1.3 28 March 2017 Enterprise Architecture Technology & Operations Presenter Photo Motaz Alturayef Jubial Cyber Security Conference 70% Privacy and security concerns are
More informationCSCE 715: Network Systems Security
CSCE 715: Network Systems Security Chin-Tser Huang huangct@cse.sc.edu University of South Carolina Web Security Web is now widely used by business, government, and individuals But Internet and Web are
More informationPower Switching Box. AddPac Technology. 2012, Sales and Marketing.
Power Switching Box Remote Amplifier Power On/Off Controller PSB www.addpac.com AddPac Technology 2012, Sales and Marketing Contents Product Overview Hardware Specification IP Voice Broadcasting Solution
More informationSSL/TLS & 3D Secure. CS 470 Introduction to Applied Cryptography. Ali Aydın Selçuk. CS470, A.A.Selçuk SSL/TLS & 3DSec 1
SSL/TLS & 3D Secure CS 470 Introduction to Applied Cryptography Ali Aydın Selçuk CS470, A.A.Selçuk SSL/TLS & 3DSec 1 SSLv2 Brief History of SSL/TLS Released in 1995 with Netscape 1.1 Key generation algorithm
More informationTouch Screen based Attendant Console
Touch Screen based Attendant Console (version 1.1) 1) Without notice, Design and Function of AddPac Touch Screen based Attendant t Console can be changed for the better performance and additional customer
More informationAddPac Technology Sales and Marketing
IP Attendant t Console Solution www.addpac.com AddPac Technology Sales and Marketing Contents IP Telephony Service Diagram Dual Redundancy IP-PBX Products (example) IP Telephony Hardware Terminals IP Attendant
More informationCryptography SSL/TLS. Network Security Workshop. 3-5 October 2017 Port Moresby, Papua New Guinea
Cryptography SSL/TLS Network Security Workshop 3-5 October 2017 Port Moresby, Papua New Guinea 1 History Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent
More informationFindings for
Findings for 198.51.100.23 Scan started: 2017-07-11 12:30 UTC Scan ended: 2017-07-11 12:39 UTC Overview Medium: Port 443/tcp - NEW Medium: Port 443/tcp - NEW Medium: Port 443/tcp - NEW Medium: Port 80/tcp
More informationIPNext 187 Hybrid IP-PBX System High-performance Hybrid IP-PBX Solution
IPNext 187 Hybrid IP-PBX System High-performance Hybrid IP-PBX Solution IP-PBX Features www.addpac.com AddPac Technology 2011, Sales and Marketing Contents IP-PBX Features Smart Multimedia Manager VoIP
More informationSharkFest 17 Europe. SSL/TLS Decryption. uncovering secrets. Wednesday November 8th, Peter Wu Wireshark Core Developer
SharkFest 17 Europe SSL/TLS Decryption uncovering secrets Wednesday November 8th, 2017 Peter Wu Wireshark Core Developer peter@lekensteyn.nl 1 About me Wireshark contributor since 2013, core developer
More informationInternet Security. - IPSec, SSL/TLS, SRTP - 29th. Oct Lee, Choongho
Internet Security - IPSec, SSL/TLS, SRTP - 29th. Oct. 2007 Lee, Choongho chlee@mmlab.snu.ac.kr Contents Introduction IPSec SSL / TLS SRTP Conclusion 2/27 Introduction (1/2) Security Goals Confidentiality
More informationSecurity Protocols and Infrastructures. Winter Term 2010/2011
Winter Term 2010/2011 Chapter 4: Transport Layer Security Protocol Contents Overview Record Protocol Cipher Suites in TLS 1.2 Handshaking Protocols Final Discussion 2 Contents Overview Record Protocol
More informationDatapath. Encryption
Datapath The following refers to the IKE/IPsec datapath implementation of overlay tunnels between Silver Peak devices. VXOA Release 7.3 (Regular "IPsec" mode with IKE) 8.0 (Regular "IPsec" mode with IKE)
More informationIP High Quality Audio Broadcasting Server
AP-ABS5000 IP High Quality Audio Broadcasting Server High Performance IP based Multichannel IP High Quality Audio Broadcasting Server www.addpac.com AddPac Technology Sales and Marketing Contents Product
More informationAP-PT20. AddPac Technology. Sales and Marketing.
IP Extend Key Pack Solution AP-PT100 AP-PT50 AP-PT20 AddPac Technology Sales and Marketing www.addpac.com Contents IP Extend Key Pack Service Diagram IP Extend Key Pack Comparison Table IP Extend Key Pack
More informationTLS. RFC2246: The TLS Protocol. (c) A. Mariën -
TLS RFC2246: The TLS Protocol What does it achieve? Confidentiality and integrity of the communication Server authentication Eventually: client authentication What is does not do Protect the server Protect
More informationDatapath. Encryption
Datapath The following refers to the IKE/IPsec datapath implementation of overlay tunnels between Silver Peak devices. VXOA Release 7.3 (Regular "IPsec" mode with IKE) 8.0 (Regular "IPsec" mode with IKE)
More informationMTAT Applied Cryptography
MTAT.07.017 Applied Cryptography Transport Layer Security (TLS) University of Tartu Spring 2017 1 / 22 Transport Layer Security TLS is cryptographic protocol that provides communication security over the
More informationAP-MC1500 Audio MCU(Multipoint Control Unit) High-performance Audio MCU Solution
AP-MC1500 Audio MCU(Multipoint Control Unit) High-performance Audio MCU Solution AddPac Technology 2007, Sales and Marketing www.addpac.com Contents Product Overview Hardware Specification Software Service
More informationTransport Layer Security
Cryptography and Security in Communication Networks Transport Layer Security ETTI - Master - Advanced Wireless Telecommunications Secure channels Secure data delivery on insecure networks Create a secure
More informationON THE SECURITY OF TLS RENEGOTIATION
ON THE SECURITY OF TLS RENEGOTIATION 2012/11/02 QUT Douglas Stebila European Network of Excellence in Cryptology II (ECRYPT II) Australian Technology Network German Academic Exchange Service (ATN-DAAD)
More informationAP-SDRS2000 RTSP based HD/D1 NVR Storage Server Solution
AP-SDRS2000 based HD/D1 NVR Storage Server Solution AddPac Technology Sales and Marketing www.addpac.com Contents HD NVR Service Diagram HD NVR Storage Server Service Diagram HD NVR Storage Server Protocol
More informationNetwork Security: TLS/SSL. Tuomas Aura T Network security Aalto University, Nov-Dec 2014
Network Security: TLS/SSL Tuomas Aura T-110.5241 Network security Aalto University, Nov-Dec 2014 Outline 1. Diffie-Hellman key exchange (recall from earlier) 2. Key exchange using public-key encryption
More informationSmart Phone. AddPac Technology. 2015, Sales and Marketing.
Video Phone Call Forwarding to Smart Phone www.addpac.com AddPac Technology 2015, Sales and Marketing Contents AddPac Smart Door Phone Appl. AP-SAD100 Android Door Phone Appl. Overview AP-SAD100 Network
More informationFXO Service Features. AddPac Technology. 2011, Sales and Marketing.
VoIP Gateway Series FXO Service Features AddPac Technology 2011, Sales and Marketing www.addpac.com Contents FXO VoIP Service Network Diagram FXO Service Feature List FXO VoIP Gateways FXO Port Service
More informationComing of Age: A Longitudinal Study of TLS Deployment
Coming of Age: A Longitudinal Study of TLS Deployment Accepted at ACM Internet Measurement Conference (IMC) 2018, Boston, MA, USA Platon Kotzias, Abbas Razaghpanah, Johanna Amann, Kenneth G. Paterson,
More informationCOSC 301 Network Management. Lecture 15: SSL/TLS and HTTPS
COSC 301 Network Management Lecture 15: SSL/TLS and HTTPS Zhiyi Huang Computer Science, University of Otago COSC301 Lecture 15: SSL/TLS and HTTPS 1 Today s Focus WWW WWW How to secure web applications?
More informationSecurity Protocols and Infrastructures. Winter Term 2015/2016
Winter Term 2015/2016 Nicolas Buchmann (Harald Baier) Chapter 8: Transport Layer Security Protocol Key Questions Application context of TLS? Which security goals shall be achieved? Approaches? 2 Contents
More informationCDMA Gateway Series. Call Connection Scheme for CDMA. AddPac Technology. 2011, Sales and Marketing.
CDMA Gateway Series AddPac Proprietary Voice Confirmed Call Connection Scheme for CDMA gateway www.addpac.com AddPac Technology 2011, Sales and Marketing Contents CDMA Gateway Service Diagram AddPac CDMA
More informationComputer Security. 10r. Recitation assignment & concept review. Paul Krzyzanowski. Rutgers University. Spring 2018
Computer Security 10r. Recitation assignment & concept review Paul Krzyzanowski Rutgers University Spring 2018 April 3, 2018 CS 419 2018 Paul Krzyzanowski 1 1. What is a necessary condition for perfect
More informationAP100 TM 1-Port VoIP Gateway High Performance VoIP Gateway Solution
AP100 TM 1-Port VoIP Gateway High Performance VoIP Gateway Solution Public IP + IP Sharing + Cascading www.addpac.com AddPac Technology 2006, Sales and Marketing Contents AP100 VoIP Gateway H/W Specification
More informationPerformance Implications of Security Protocols
Performance Implications of Security Protocols Varsha Mainkar Technical Staff Member Network Design & Performance Analysis Advanced Technologies, Joint Work with Paul Reeser 5th INFORMS Telecom Conference
More informationSSL Accelerated Services. Feature Description
Feature Description UPDATED: 28 March 2018 Copyright Notices Copyright 2002-2018 KEMP Technologies, Inc. All rights reserved. KEMP Technologies and the KEMP Technologies logo are registered trademarks
More informationHow to use TLS in MyPBX
Version: V1.0 Date: August, 2013 Yeastar Information Technology Co. Ltd Content Introduction... 3 1. How to register IP phones to MyPBX via TLS... 3 1.1 ENABLE TLS IN MYPBX S WEB INTERFACE... 3 1.2 PREPARE
More informationUniversität Hamburg. SSL & Company. Fachbereich Informatik SVS Sicherheit in Verteilten Systemen. Security in TCP/IP. UH, FB Inf, SVS, 18-Okt-04 2
Universität Hamburg SSL & Company Fachbereich Informatik SVS Sicherheit in Verteilten Systemen Security in TCP/IP UH, FB Inf, SVS, 18-Okt-04 2 SSL/TLS Overview SSL/TLS provides security at TCP layer. Uses
More informationOverview of SSL/TLS. Luke Anderson. 12 th May University Of Sydney.
Overview of SSL/TLS Luke Anderson luke@lukeanderson.com.au 12 th May 2017 University Of Sydney Overview 1. Introduction 1.1 Raw HTTP 1.2 Introducing SSL/TLS 2. Certificates 3. Attacks Introduction Raw
More informationIPNext NGN IP-PBX High-performance Next Generation IP-PBX Solution
IPNext NGN IP-PBX High-performance Next Generation IP-PBX Solution Korea Telecom IP-PBX BMT www.addpac.com AddPac Technology 2005, Sales and Marketing Contents IP-PBX BMT Network Diagram IP-PBX Performance
More informationAnalog VoIP Gateway. Public IP + IP Sharing + Cascading. AddPac Technology. 2005, Sales and Marketing.
Analog VoIP Gateway Public IP + IP Sharing + Cascading www.addpac.com AddPac Technology 2005, Sales and Marketing Contents Public IP + NAT/PAT Public IP + IP Sharing + Cascading Private IP www.addpac.com
More informationEncrypted Phone Configuration File Setup
This chapter provides information about encrypted phone configuration files setup. After you configure security-related settings, the phone configuration file contains sensitive information, such as digest
More informationOverview of TLS v1.3 What s new, what s removed and what s changed?
Overview of TLS v1.3 What s new, what s removed and what s changed? About Me Andy Brodie Solution Architect / Principal Design Engineer. On Worldpay ecommerce Payment Gateways. Based in Cambridge, UK.
More informationChapter 4: Securing TCP connections
Managing and Securing Computer Networks Guy Leduc Chapter 5: Securing TCP connections Computer Networking: A Top Down Approach, 6 th edition. Jim Kurose, Keith Ross Addison-Wesley, March 2012. (section
More informationLet's Encrypt - Free SSL certificates for the masses. Pete Helgren Bible Study Fellowship International San Antonio, TX
Let's Encrypt - Free SSL certificates for the masses Pete Helgren Bible Study Fellowship International San Antonio, TX Agenda Overview of data security Encoding and Encryption SSL and TLS Certficate options
More informationRTSP based HD NVR Storage Server Solution
based HD NVR Storage Server Solution AddPac Technology Sales and Marketing www.addpac.com Contents HD NVR Service Diagram HD NVR Storage Server Service Diagram HD NVR Storage Server Protocol Block Diagram
More informationCryptography and secure channel. May 17, Networks and Security. Thibault Debatty. Outline. Cryptography. Public-key encryption
and secure channel May 17, 2018 1 / 45 1 2 3 4 5 2 / 45 Introduction Simplified model for and decryption key decryption key plain text X KE algorithm KD Y = E(KE, X ) decryption ciphertext algorithm X
More informationCipher Suite Configuration Mode Commands
The Cipher Suite Configuration Mode is used to configure the building blocks for SSL cipher suites, including the encryption algorithm, hash function, and key exchange. Important The commands or keywords/variables
More informationAP-SAV100 Analog Voice Intercom
AP-SAV100 Analog Voice Intercom IP Gateway High Performance IP Extension Solution for Legacy Analog Door Phone www.addpac.com AddPac Technology Sales and Marketing Contents Product Overview Hardware Specification
More informationCS 393 Network Security. Nasir Memon Polytechnic University Module 12 SSL
CS 393 Network Security Nasir Memon Polytechnic University Module 12 SSL Course Logistics HW 4 due today. HW 5 will be posted later today. Due in a week. Group homework. DoD Scholarships? NSF Scholarships?
More informationThe State of TLS in httpd 2.4. William A. Rowe Jr.
The State of TLS in httpd 2.4 William A. Rowe Jr. wrowe@apache.org Getting Started Web references have grown stale Web references have grown stale Guidance is changing annually https://www.ssllabs.com/ssltest/analyze.ht
More informationNetwork Security: TLS/SSL. Tuomas Aura T Network security Aalto University, Nov-Dec 2010
Network Security: TLS/SSL Tuomas Aura T-110.5240 Network security Aalto University, Nov-Dec 2010 Outline 1. Diffie-Hellman 2. Key exchange using public-key encryption 3. Goals of authenticated key exchange
More informationAddPac Technology. Sales and Marketing.
HD IP based Remote Lecture Solution AddPac Technology Sales and Marketing www.addpac.com Contents HD IP based Remote Lecture Network Diagram Product Solution Table Product Specifications HD IP Broadcasting
More informationYour Apps and Evolving Network Security Standards
Session System Frameworks #WWDC17 Your Apps and Evolving Network Security Standards 701 Bailey Basile, Secure Transports Engineer Chris Wood, Secure Transports Engineer 2017 Apple Inc. All rights reserved.
More informationIPNext180 Hybrid IP-PBX. AddPac Technology. Sales and Marketing. AP-NR1500 IP Voice Recording Server.
IPNext180 IP Call Center Software Features IPNext180 Hybrid IP-PBX AddPac Technology AP-NR1500 IP Voice Recording Server www.addpac.com Sales and Marketing Contents Network Diagram Small Scale IP Call
More informationSecurity Protocols and Infrastructures
Security Protocols and Infrastructures Dr. Michael Schneider michael.schneider@h-da.de Chapter 8: The Transport Layer Security Protocol (TLS) December 4, 2017 h_da WS2017/18 Dr. Michael Schneider 1 1 Overview
More informationSecure Socket Layer (SSL) for
Secure Socket Layer (SSL) for Micro-Controller over Wireless LAN This document illustrates how to secure network link by using SSL. The example setups a SSL connection with Apache Web server, and transmit/receive
More informationPhone Interworking with BroadWorks Hosted PBX
AddPac IP-PBX, PBX VoIP Gateway, IP Phone Interworking with BroadWorks Hosted PBX AddPac Technology 2011, Sales and Marketing www.addpac.com Overview One of the largest bank in Korea, NH Bank, has deployed
More informationIP Audio Broadcasting Terminal High Performance IP Audio Broadcasting Terminal
AP1605 IP Audio Broadcasting Terminal High Performance IP Audio Broadcasting Terminal MBMS Management Software AddPac Technology AP-ABS5000 Broadcasting Server www.addpac.com Sales and Marketing Contents
More informationLarge Scale VoIP. 2011, Sales and Marketing.
Large Scale VoIP Gateway Solution AddPac Technology 2011, Sales and Marketing www.addpac.com Contents VoIP Gateway Service Diagram VoIP Gateway Comparison Table Large Capacity Analog VoIP Gateways(~256
More informationAP-SDRS5000 RTSP based HD/D1
AP-SDRS5000 based HD/D1 NVR Storage Server Solution AddPac Technology Sales and Marketing www.addpac.com Contents HD NVR Storage Server Service Diagram Medium & Large Scale NVR Solution Small Scale NVR
More informationOverview of TLS v1.3. What s new, what s removed and what s changed?
Overview of TLS v1.3 What s new, what s removed and what s changed? About Me Andy Brodie Worldpay Principal Design Engineer. Based in Cambridge, UK. andy.brodie@owasp.org Neither a cryptographer nor a
More informationIP Video Door Phone High Performance IP Video Door Phone Solution
AP-VAC50 IP Video Door Phone High Performance IP Video Door Phone Solution 3CX IP-PBX SIP Interworking for 3CX IP-PBX AP-VAC50 AddPac Technology 2015, Sales and Marketing www.addpac.com Contents 3CX IP-PBX
More informationSetting Up a Mitel SX-2000 Digital PIMG Integration with Cisco Unity Connection
Up a Mitel SX-2000 Digital PIMG Integration with Cisco Unity Connection Up a Mitel SX-2000 Digital PIMG Integration, page 1 Up a Mitel SX-2000 Digital PIMG Integration Task List for Mitel SX-2000 PIMG
More informationTLS Extensions Project IMT Network Security Spring 2004
TLS Extensions Project IMT4101 - Network Security Spring 2004 Ole Martin Dahl [ole.dahl@hig.no] Torkjel Søndrol [torkjel.soendrol@hig.no] Fredrik Skarderud [fredrik.skarderud@hig.no] Ole Kasper Olsen [ole.olsen@hig.no]
More informationSecure Socket Layer Health Assessment
Secure Socket Layer Health Assessment Mick Pouw, Eric van den Haak February 5, 2014 1 Introduction Background Research Questions 2 Research Implementing SSL, the right way Common mistakes Classifying mistakes
More informationVideo Conference Recording Solution
Video Conference Recording Solution AddPac Technology Sales and Marketing www.addpac.com Contents Video Conference Recording Network Diagram Smart Video Conference Recorder (SVCR) Overview Smart Video
More informationTLS authentication using ETSI TS and IEEE certificates
TLS authentication using ETSI TS 103 097 and IEEE 1609.2 certificates IETF meeting 93 Prague TLS WG session Wednesday, July 22, 2015 Objective & Motivations Objective: enable C/S authentication using C-ITS*
More informationfor VoIP Gateway Series
Smart Web Manager for VoIP Gateway Series www.addpac.com AddPac Technology 2010, Sales and Marketing Contents Web Connection Main Page Layout System Configuration Language, WAN Setup, LAN Setup, NAT, NTP,
More informationAddPac Technology. 2013, Sales and Marketing. AP-HDC300 Full HD Camera HDMI. AP-HVC5000 Full HD Video Codec HD-SDI, etc. AP-MP100 Microphone
Network Video Recording Solution for Video Conference Equipments AP-HDC300 Full HD Camera HDMI AP-HVC5000 Full HD Video Codec HD-SDI, etc AddPac Technology AP-MP100 Microphone www.addpac.com 2013, Sales
More informationProtocols, Technologies and Standards Secure network protocols for the OSI stack P2.1 WLAN Security WPA, WPA2, IEEE i, IEEE 802.1X P2.
P2 Protocols, Technologies and Standards Secure network protocols for the OSI stack P2.1 WLAN Security WPA, WPA2, IEEE 802.11i, IEEE 802.1X P2.2 IP Security IPsec transport mode (host-to-host), ESP and
More informationEmergency Call Analog FXO Phone High Performance Emergency Call Analog FXO Phone Solution
AP-EAP70 Emergency Call Analog FXO Phone High Performance Emergency Call Analog FXO Phone Solution www.addpac.com AddPac Technology Sales and Marketing Contents Product Overview Hardware Specification
More informationTLS 1.1 Security fixes and TLS extensions RFC4346
F5 Networks, Inc 2 SSL1 and SSL2 Created by Netscape and contained significant flaws SSL3 Created by Netscape to address SSL2 flaws TLS 1.0 Standardized SSL3 with almost no changes RFC2246 TLS 1.1 Security
More informationSetting Up an Alcatel 4400 Digital PIMG Integration with Cisco Unity Connection
up Alcatel 4400 Digital PIMG Integration with Cisco Unity Connection Up an Alcatel 4400 Digital PIMG Integration with Cisco Unity Connection, page 1 Up an Alcatel 4400 Digital PIMG Integration with Cisco
More informationDoor Access Control Server
AP-ACS1000 ACS1000 Door Access Control Server AP-VP280 AP-ACS1000 (Door Access Control Server) AddPac Technology AP-VAC20 AP-VAC50 AP-VAC100 AP-VAC200 Sales and Marketing www.addpac.com Contents DACS(Door
More informationAP500 4-Port FXS VoIP Gateway
AP500 4-Port FXS VoIP Gateway High Performance VoIP Gateway Solution Product Overview www.addpac.com AddPac Technology Sales and Marketing Contents Product Overview Hardware Specification APOS Technology
More informationIPNext IP-PBX Solution
IPNext IP-PBX Solution www.addpac.com AddPac Technology Sales and Marketing Contents IPNext IP-PBX Service Diagram IPNext IP-PBX Comparison Table IPNext IP-PBX Series IPNext10000 IP-PBXPBX IPNext5000 IP-PBX
More informationPreliminary Product Overview (Without notice, following described technical spec. can be changed)
AP-SPS10000 SIP Paging Server (Commercial Server) High-performance Next Generation SIP Paging Server Solution Preliminary Product Overview (Without notice, following described technical spec. can be changed)
More informationSecurity Protocols. Professor Patrick McDaniel CSE545 - Advanced Network Security Spring CSE545 - Advanced Network Security - Professor McDaniel
Security Protocols Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 CSE545 - Advanced Network Security - Professor McDaniel 1 Case Study: Host Access The first systems used telnet
More informationAndroid PTT (Push-to-Talk)
Android PTT (Push-to-Talk) over IP Solution Mobile VPN AddPac Technology Sales and Marketing www.addpac.com Contents Android PTT Service Features Android PTT Network Diagram Android PTT Call Service Examples
More informationIP Video Door Phone Solution
IP Video Door Phone Solution Application Note (Third-Party Grandstream Video Phone Interworking) AP-VAC50 AddPac Technology Sales and Marketing www.addpac.com Contents IP Video Door Phone Grandstream Video
More informationSDP-R25 User Manual 05/06/2015
SDP-R25 User Manual 05/06/2015 1 Content Production Overview... 4 1. Production... 4 2. Features...4 Configuration...7 1. Web Login... 7 1.1. Obtaining the IP address... 7 1.2. Login the Web...7 2. Status...8
More informationCS 356 Internet Security Protocols. Fall 2013
CS 356 Internet Security Protocols Fall 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists Chapter 5
More informationHistory. TLS 1.3 Draft 26 Supported in TMOS v14.0.0
PRESENTED BY: History SSL developed by Netscape SSLv1.0 Never released SSLv2.0 1995 SSLv3.0 1996 Moved governance to the IETF and renamed TLS TLSv1.0 1999 TLSv1.1 2006 TLSv1.2 2008 TLSv1.3 2018 TLS 1.3
More informationSolving HTTP Problems With Code and Protocols NATASHA ROONEY
Solving HTTP Problems With Code and Protocols NATASHA ROONEY Web HTTP TLS TCP IP 7. Application Data HTTP / IMAP 6. Data Presentation, Encryption SSL / TLS 5. Session and connection management - 4. Transport
More informationService for Anti-SIM Block
SIM Server Human Behavior Service for Anti-SIM Block www.addpac.com AddPac Technology 2014, Sales and Marketing Contents Current SIM Block Problems Do you want Anti-SIM block? Human Cellular Phone Call
More informationTranscoding. Note. Cisco Unified Border Element Configuration Guide 1
is a process of converting one voice codec to another. For example, transcoding ilbc-g.711 or ilbc-g.729. LTI based Internal API is used to access Digital Signaling Processor (DSP) resources for transcoding.
More informationSetting up Alcatel 4400 Digital PIMG Integration
up Alcatel 4400 Digital PIMG Integration with Cisco Unity Connection Up an Alcatel 4400 Digital PIMG Integration with Cisco Unity Connection, on page 1 Up an Alcatel 4400 Digital PIMG Integration with
More informationAddPac Technology. 2013, Sales and Marketing.
Bluetooth VoIP Gateway Solution AddPac Technology 2013, Sales and Marketing www.addpac.com Contents Bluetooth th VoIP Gateway Service Diagram Bluetooth VoIP Gateway Series AP-LMS1001(1ch) AP-LMS1500(8ch)
More informationHDMI based Video Conference Device Recording
HD IP Broadcasting Solution for HDMI based Video Conference Device Recording AddPac Technology 2013, Sales and Marketing www.addpac.com Contents Network Diagrams Product Specifications HD IP Broadcasting
More informationOverview. SSL Cryptography Overview CHAPTER 1
CHAPTER 1 Secure Sockets Layer (SSL) is an application-level protocol that provides encryption technology for the Internet. SSL ensures the secure transmission of data between a client and a server through
More information