Skip to main content
SpringerLink
Log in

Secure End-to-End Transport over SCTP

  • Conference paper
Emerging Trends in Information and Communication Security (ETRICS 2006)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3995))

Abstract

The Stream Control Transmission Protocol is a new transport protocol initially developed to transport signaling messages over IP networks. The new features of SCTP make it also a suitable candidate for applications which nowadays use the standard transport protocols TCP and UDP. Many of these applications have strict requirements regarding the end-to-end security. Providing end-to-end security by using IPsec or the Transport Layer Security (TLS) protocol in combination with SCTP is subject to functional and performance related limitations. These can be avoided by integrating security functions directly into SCTP (S-SCTP). Although S-SCTP in principle solves all limitations, some issues remain hindering broad deployment of this solution. Therefore, we propose an alternative solution which preserves the advantages of S-SCTP while avoiding major modifications to existing standards and operating systems.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Postel, J.: Transmission Control Protocol, STD7, RFC793 (September 1981)

    Google Scholar 

  2. Dierks, T., Allen, C.: The TLS Protocol, RFC2246 (January 1999)

    Google Scholar 

  3. Ong, L., Rytina, I., Garcia, M., Schwarzbauer, H., Coene, L., Lin, H., Juhasz, I., Holdrege, M., Sharp, C.: Framework Architecture for Signaling Transport, RFC2719 (October 1999)

    Google Scholar 

  4. Stewart, R., Xie, Q., Morneault, K., Sharp, C., Schwarzbauer, H., Taylor, T., Rytina, I., Kalla, M., Zhang, L., Paxson, V.: Stream Control Transmission Protocol, RFC2960 (October 2000)

    Google Scholar 

  5. Mitton, D., St.Johns, M., Barkley, S., Nelson, D., Patil, B., Stevens, M., Wolff, B.: Authentication, Authorization, and Accounting: Protocol Evaluation. RFC3127 (June 2001)

    Google Scholar 

  6. Tuexen, M., Xie, Q., Stewart, R., Shore, M., Ong, L., Loughney, J., Stillman, M.: Requirements for Reliable Server Pooling, RFC3237 (January 2002)

    Google Scholar 

  7. Ong, L., Yoakum, J.: An Introduction to the Stream Control Transmission Protocol (SCTP), RFC3286 (May 2002)

    Google Scholar 

  8. Jungmaier, A., Rescorla, E., Tuexen, M.: Transport Layer Security over Stream Control Transmission Protocol, RFC3436 (December 2002)

    Google Scholar 

  9. Bellovin, S., Ioannidis, J., Keromytis, A., Stewart, R.: On the use of Stream Control Transmission Protocol (SCTP) with IPsec, RFC3554 (July 2003)

    Google Scholar 

  10. Stewart, R., Ramalho, M., Xie, Q., Tuexen, M., Conrad, P.: Stream Control Transmission Protocol (SCTP) Partial Reliability Extension, RFC3758 (May 2004)

    Google Scholar 

  11. Loughney, J., Tuexen, M., Pastor-Balbas, J.: Security considerations for signaling Transport (SIGTRAN) Protocols, RFC3788 (June 2004)

    Google Scholar 

  12. Leinen, S.: Evaluation of Candidate Protocols for IP Flow Information Export (IPFIX), RFC3955 (October 2004)

    Google Scholar 

  13. Kent, S., Seo, K.: Security Architecture for the Internet Protocol, RFC4301 (December 2005)

    Google Scholar 

  14. Kent, S.: IP Authentication Header, RFC4302 (December 2005)

    Google Scholar 

  15. Kent, S.: IP Encapsulation Security Payload (ESP), RFC4303 (December 2005)

    Google Scholar 

  16. Kaufman, C.: Internet Key Exchange (IKEv2) Protocol, RFC4306 (December 2005)

    Google Scholar 

  17. Stewart, R., Ramalho, M., Xie, Q., Tuexen, M., Conrad, P.: Stream Control Transmission Protocol (SCTP) Dynamic Address Reconfiguration, draft-ietf-tsvwg-addip-sctp-14 (work in progress) (March 2006)

    Google Scholar 

  18. Riegel, M., Tuexen, M.: Mobile SCTP, draft-riegel-tuexen-mobile-sctp-05 (work in progress) (July 2005)

    Google Scholar 

  19. Tuexen, M., Stewart, R., Lei, P., Rescorla, E.: Authenticated Chunks for Stream Control Transmission Protocol (SCTP), draft-ietf-tsvwg-sctp-auth-01 (work in progress) (October 2005)

    Google Scholar 

  20. Stillman, M., Gopal, R., Sengodan, S., Guttman, E., Holdrege, M.: Threats Introduced by Rserpool and Requirements for Security in response to Threats, draft-ietf-rserpool-threats-05 (work in progress) (July 2005)

    Google Scholar 

  21. Hohendorf, C., Unurkhaan, E., Dreibholz, T.: Secure SCTP, draft-hohendorf-secure-sctp-00 (work in progress) (July 2005)

    Google Scholar 

  22. Unurkhaan, E.: Secure End-to-End Transport - A new security extension for SCTP, Dissertation, University of Duisburg-Essen (June 2005)

    Google Scholar 

  23. Esbold, U., Rathgeb, E.P., Jungmaier, A.: Secure SCTP - A Versatile Secure Transport Protocol. Telecommunications 27(2-4), 273 (2004)

    Article  Google Scholar 

  24. Stewart, R., Xie, Q.: Stream Control Transmission Protocol - A Reference Guide. Addison-Wesley, Reading (2002)

    Google Scholar 

  25. Jungmaier, A.: SCTP for beginners (2003), http://tdrwww.exp-math.uni-essen.de/inhalt/forschung/sctp_fb/

  26. Rizzo, L.: Dummynet, http://info.iet.unipi.it/~luigi/ip_dummynet/

  27. Modadugu, N., Resorla, E.: The Design and Implementation of Datagram TLS. In: Network and Distributed System Security Symposium (February 2004)

    Google Scholar 

  28. Resorla, E., Modadugu, N.: Datagram Transport Layer Security, draft-rescorla-dtls-05.txt (June 2004)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute for Experimental Mathematics, Computer Networking Technology Group, University of Duisburg-Essen, 45326, Essen, Germany

    Carsten Hohendorf & Erwin P. Rathgeb

  2. Computer Science and Management School, Mongolian Science and Technological University, P.Box 313/49, Ulaanbaatar, Mongolia

    Esbold Unurkhaan

  3. Münster University of Applied Sciences, Stegerwaldstr. 39, 48565, Steinfurt, Germany

    Michael Tüxen

Authors
  1. Carsten Hohendorf
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Erwin P. Rathgeb
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Esbold Unurkhaan
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Michael Tüxen
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Institut für Informatik und Gesellschaft, Abt. Telematik, Albert-Ludwigs-Universität Freiburg, Friedrichstr. 50, 79098, Freiburg, Germany

    Günter Müller

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Hohendorf, C., Rathgeb, E.P., Unurkhaan, E., Tüxen, M. (2006). Secure End-to-End Transport over SCTP. In: Müller, G. (eds) Emerging Trends in Information and Communication Security. ETRICS 2006. Lecture Notes in Computer Science, vol 3995. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11766155_27

Download citation

  • DOI: https://doi.org/10.1007/11766155_27

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-34640-1

  • Online ISBN: 978-3-540-34642-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation