ZRTP: Media Path Key Agreement for Unicast Secure RTP

Callas, Jon; Johnston, Alan; Zimmermann, Philip

doi:10.17487/rfc6189

Cited by 85 publications

(69 citation statements)

References 44 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…0x000 RFC6189] is a protocol for media path Diffie-Hellman exchange to agree on a session key and parameters for establishing unicast SRTP sessions for Voice over IP (VoIP) applications. The ZRTP protocol is media path keying because it is multiplexed on the same port as RTP and does not require support in the signaling protocol.…”

Section: Implicit Allocation Of Codepoints For New Stun Methodsmentioning

confidence: 99%

See 1 more Smart Citation

Multiplexing Scheme Updates for Secure Real-time Transport Protocol (SRTP) Extension for Datagram Transport Layer Security (DTLS)

Petit-Huguenin¹,

Salgueiro²

2016

View full text Add to dashboard Cite

show abstract

Section: Implicit Allocation Of Codepoints For New Stun Methodsmentioning

confidence: 99%

“…In order to prevent future documents from assigning values from the unused range to a new protocol, this document modifies the [RFC5764] demultiplexing algorithm to properly account for ZRTP [RFC6189] by allocating the values from 16 to 19 for this purpose.…”

Section: Implicit Allocation Of Codepoints For New Stun Methodsmentioning

confidence: 99%

Multiplexing Scheme Updates for Secure Real-time Transport Protocol (SRTP) Extension for Datagram Transport Layer Security (DTLS)

Petit-Huguenin¹,

Salgueiro²

2016

View full text Add to dashboard Cite

show abstract

“…The ZRTP [23] was developed by Phil Zimmerman and defines a cryptographic key agreement scheme for VoIP (voice over internet protocol) applications which rely on real-time protocol (RTP) [24]. ZRTP enables two VoIP parties to agree on session key/parameters for establishing secure real-time transport protocol (SRTP) [25].…”

Section: B Zrtpmentioning

confidence: 99%

Network-Specific Attacks on Diffie-Hellman Key-Exchange in Commercial Protocols

Fathirad¹,

Devlin²,

Atshani³

2016

IJCTE

View full text Add to dashboard Cite

Abstract-An efficient and reliable key-establishment method is the most important building block of any secure cryptographic channels. Public-key cryptography was a revolution in cyber security key administration and enabled peers to dynamically create keys for each cryptographic session. The Diffie-Hellman (DH) algorithm is the first published public-key cryptosystem. DH and its variants are extensively investigated, standardized, and widely used in network security protocols. However, DH is vulnerable to some concerning mathematical, implementation-related and network-specific attacks. Defending against these attacks is important in secure implementation of DH in network protocols. This paper categorizes various attacks on DH scheme with focuses on attacks related to the DH integration in network protocols (referred as network-specific attacks). Furthermore, we comparatively review the approaches taken by commercial protocols to tackle network attacks and analyze the strength of these solutions.

show abstract

“…The receiver of such an identity assertion can then independently verify the user identity to ensure that it is the identity that the receiver intended to communicate with, and that the cryptographic assertion holds; this way, a user can be certain that the application also can't perform a MITM and acquire the keys to the media communication. Other ways of verifying the certificate hashes exist; for example, they could be verified against a hash carried in some out-of-band channel (e.g., compare with a hash printed on a business card) or using a verbal short authentication string (e.g., as in ZRTP [RFC6189]) or using hash continuity.…”

Section: Media Security For Webrtc Sessionsmentioning

confidence: 99%

Options for Securing RTP Sessions

Westerlund¹,

Perkins²

2014

View full text Add to dashboard Cite

The Real-time Transport Protocol (RTP) is used in a large number of different application domains and environments. This heterogeneity implies that different security mechanisms are needed to provide services such as confidentiality, integrity, and source authentication of RTP and RTP Control Protocol (RTCP) packets suitable for the various environments. The range of solutions makes it difficult for RTP-based application developers to pick the most suitable mechanism. This document provides an overview of a number of security solutions for RTP and gives guidance for developers on how to choose the appropriate security mechanism.

show abstract

ZRTP: Media Path Key Agreement for Unicast Secure RTP

Cited by 85 publications

References 44 publications

Multiplexing Scheme Updates for Secure Real-time Transport Protocol (SRTP) Extension for Datagram Transport Layer Security (DTLS)

Multiplexing Scheme Updates for Secure Real-time Transport Protocol (SRTP) Extension for Datagram Transport Layer Security (DTLS)

Network-Specific Attacks on Diffie-Hellman Key-Exchange in Commercial Protocols

Options for Securing RTP Sessions

Contact Info

Product

Resources

About