InfoSec Musings

Search This Blog

Friday, 8 August 2014

What is DTLS or Datagram Transport Layer Security?

Otherwise known as Secure Real-time Transport Protocol, DTLS (Datagram Transport Layer Security) is used where low latency or "delay sensitive" data must be secured, such as Voice over IP, VPN, Video Conferencing, and various real-time and Massively Multiplayer Online Games.

Much as TLS (Transport Layer Security), a derivative of SSL (Secure Socket Layer), is used to protect Internet traffic such as HTTPS, FTPS, and IMAPS from eavesdropping, DTLS provides the same reassurance that your delay sensitive streaming data is secured.

Most of today's client software for these protocols, such as Cisco's Anyconnect VPN client, have DTLS already implemented.

DTLS is also used to secure the transmission control channels for various streaming protocols, such as Datagram Congestion Control Protocol (DCCP), Stream Control Transmission Protocol (SCTP), and Secure Real-time Transport Protocol (SRTP)

(Another great article I found on the difference between SSL, TLS, and STARTTLS)

References:

The Design and Implementation of Datagram TLS
Wikipedia: Datagram Transport Layer Security
Wikipedia: Secure Real-time Transport Protocol
IETF: Suite B Profile for Datagram Transport Layer Security / Secure Real-time Transport Protocol
Wikipedia: Comparison of TLS implementations
IETF: RFC 6347 for User Datagram Protocol (UDP)
IETF: RFC 5238 for Datagram Congestion Control Protocol (DCCP),
IETF: RFC 6083 for Stream Control Transmission Protocol (SCTP) encapsulation,
IETF: RFC 5764 for Secure Real-time Transport Protocol (SRTP)

Posted by security-musings at 10:53

Email This BlogThis!Share to X Share to Facebook Share to Pinterest

Labels: datagram, dtls, low latency, mmog, real-time, Security, ssl, tls, transport layer, voip

No comments:

Post a Comment

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

Subscribe To

Posts

Posts

Comments

Comments

Submit to Slashdot!

About Me

security-musings

View my complete profile

Blog Archive

► 2017 (3)
- ► September (1)
- ► August (1)
- ► June (1)

► 2016 (6)
- ► September (1)
- ► July (1)
- ► June (2)
- ► May (1)
- ► March (1)

► 2015 (8)
- ► November (1)
- ► October (1)
- ► September (1)
- ► May (1)
- ► April (2)
- ► March (1)
- ► February (1)

▼ 2014 (15)
- ► November (3)
- ► October (5)
- ► September (1)
- ▼ August (1)
  - What is DTLS or Datagram Transport Layer Security?
- ► July (3)
- ► June (1)
- ► April (1)

► 2013 (20)
- ► October (1)
- ► July (2)
- ► April (2)
- ► March (4)
- ► February (4)
- ► January (7)

Most Popular White Papers and Webcasts Security Research

Threats RSS Feed - Symantec Corp.

SearchCloudSecurity: RSS Feed

Interesting Security Links

2014 Verizon Data Breach Investigations Report
Mandiant: Breach. Trends®. 2014 THREAT REPORT
Ponemon: 2014 Cost of Data Breach Study: Global Analysis
Sungard: security in the cloud
Symantec September 2014 Intelligence Report
Krebs On Security
Data Breach Stats
Information Security News and Discussion
The Open group Architectural Framework
Security Focus
Zero Day Initiative
Internet Traffic report
Threat Expert
VirusTotal - VirusTotal is a free service that analyzes suspicious files and URLs
NIST Security Publications
Data Loss Incident Database

Security Products and Services

CyberArk - Privileged Access Management
Symantec - Critical Server Protection
FireEye - Botnet Detection/Protection
Checkpoint Security Products
Enterasys - Intrusion Prevention products
WebSense - URL/Protocol Content Management
Garland Technology - Enterprise class Network Bypass Units

Followers

Ideas and opinions here are my own, and probably do not reflect those of my employer. . Awesome Inc. theme. Powered by Blogger.