Abstract
The Stream Control Transmission Protocol is a new transport protocol initially developed to transport signaling messages over IP networks. The new features of SCTP make it also a suitable candidate for applications which nowadays use the standard transport protocols TCP and UDP. Many of these applications have strict requirements regarding the end-to-end security. Providing end-to-end security by using IPsec or the Transport Layer Security (TLS) protocol in combination with SCTP is subject to functional and performance related limitations. These can be avoided by integrating security functions directly into SCTP (S-SCTP). Although S-SCTP in principle solves all limitations, some issues remain hindering broad deployment of this solution. Therefore, we propose an alternative solution which preserves the advantages of S-SCTP while avoiding major modifications to existing standards and operating systems.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Postel, J.: Transmission Control Protocol, STD7, RFC793 (September 1981)
Dierks, T., Allen, C.: The TLS Protocol, RFC2246 (January 1999)
Ong, L., Rytina, I., Garcia, M., Schwarzbauer, H., Coene, L., Lin, H., Juhasz, I., Holdrege, M., Sharp, C.: Framework Architecture for Signaling Transport, RFC2719 (October 1999)
Stewart, R., Xie, Q., Morneault, K., Sharp, C., Schwarzbauer, H., Taylor, T., Rytina, I., Kalla, M., Zhang, L., Paxson, V.: Stream Control Transmission Protocol, RFC2960 (October 2000)
Mitton, D., St.Johns, M., Barkley, S., Nelson, D., Patil, B., Stevens, M., Wolff, B.: Authentication, Authorization, and Accounting: Protocol Evaluation. RFC3127 (June 2001)
Tuexen, M., Xie, Q., Stewart, R., Shore, M., Ong, L., Loughney, J., Stillman, M.: Requirements for Reliable Server Pooling, RFC3237 (January 2002)
Ong, L., Yoakum, J.: An Introduction to the Stream Control Transmission Protocol (SCTP), RFC3286 (May 2002)
Jungmaier, A., Rescorla, E., Tuexen, M.: Transport Layer Security over Stream Control Transmission Protocol, RFC3436 (December 2002)
Bellovin, S., Ioannidis, J., Keromytis, A., Stewart, R.: On the use of Stream Control Transmission Protocol (SCTP) with IPsec, RFC3554 (July 2003)
Stewart, R., Ramalho, M., Xie, Q., Tuexen, M., Conrad, P.: Stream Control Transmission Protocol (SCTP) Partial Reliability Extension, RFC3758 (May 2004)
Loughney, J., Tuexen, M., Pastor-Balbas, J.: Security considerations for signaling Transport (SIGTRAN) Protocols, RFC3788 (June 2004)
Leinen, S.: Evaluation of Candidate Protocols for IP Flow Information Export (IPFIX), RFC3955 (October 2004)
Kent, S., Seo, K.: Security Architecture for the Internet Protocol, RFC4301 (December 2005)
Kent, S.: IP Authentication Header, RFC4302 (December 2005)
Kent, S.: IP Encapsulation Security Payload (ESP), RFC4303 (December 2005)
Kaufman, C.: Internet Key Exchange (IKEv2) Protocol, RFC4306 (December 2005)
Stewart, R., Ramalho, M., Xie, Q., Tuexen, M., Conrad, P.: Stream Control Transmission Protocol (SCTP) Dynamic Address Reconfiguration, draft-ietf-tsvwg-addip-sctp-14 (work in progress) (March 2006)
Riegel, M., Tuexen, M.: Mobile SCTP, draft-riegel-tuexen-mobile-sctp-05 (work in progress) (July 2005)
Tuexen, M., Stewart, R., Lei, P., Rescorla, E.: Authenticated Chunks for Stream Control Transmission Protocol (SCTP), draft-ietf-tsvwg-sctp-auth-01 (work in progress) (October 2005)
Stillman, M., Gopal, R., Sengodan, S., Guttman, E., Holdrege, M.: Threats Introduced by Rserpool and Requirements for Security in response to Threats, draft-ietf-rserpool-threats-05 (work in progress) (July 2005)
Hohendorf, C., Unurkhaan, E., Dreibholz, T.: Secure SCTP, draft-hohendorf-secure-sctp-00 (work in progress) (July 2005)
Unurkhaan, E.: Secure End-to-End Transport - A new security extension for SCTP, Dissertation, University of Duisburg-Essen (June 2005)
Esbold, U., Rathgeb, E.P., Jungmaier, A.: Secure SCTP - A Versatile Secure Transport Protocol. Telecommunications 27(2-4), 273 (2004)
Stewart, R., Xie, Q.: Stream Control Transmission Protocol - A Reference Guide. Addison-Wesley, Reading (2002)
Jungmaier, A.: SCTP for beginners (2003), http://tdrwww.exp-math.uni-essen.de/inhalt/forschung/sctp_fb/
Rizzo, L.: Dummynet, http://info.iet.unipi.it/~luigi/ip_dummynet/
Modadugu, N., Resorla, E.: The Design and Implementation of Datagram TLS. In: Network and Distributed System Security Symposium (February 2004)
Resorla, E., Modadugu, N.: Datagram Transport Layer Security, draft-rescorla-dtls-05.txt (June 2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Hohendorf, C., Rathgeb, E.P., Unurkhaan, E., Tüxen, M. (2006). Secure End-to-End Transport over SCTP. In: Müller, G. (eds) Emerging Trends in Information and Communication Security. ETRICS 2006. Lecture Notes in Computer Science, vol 3995. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11766155_27
Download citation
DOI: https://doi.org/10.1007/11766155_27
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-34640-1
Online ISBN: 978-3-540-34642-5
eBook Packages: Computer ScienceComputer Science (R0)