Questions tagged [dtls]

DTLS is a secure transport layer over datagram (UDP), similar to TLS.

DTLS is a secure transport layer over datagram (UDP) as defined in RFC 6347 for DTLS 1.2. It is very similar to TLS.

5 questions
38
votes
2 answers

What changed between TLS and DTLS

What did the DTLS (TLS over UDP) authors have to change so that it could run without TCP? Bonus points: Do any of the protocol difference affect the way it should be used, both in terms of interface but also best-practices?
tylerl
  • 82,225
  • 25
  • 148
  • 226
6
votes
1 answer

How to pentest DTLS-SRTP?

I'm currently working on a penetration test about DTLS-SRTP strengths and weaknesses. But I'm stuck on an eavesdropping test using Wireshark. Yes, it's protected by SRTP, but: What's DTLS actually doing/working on the media channel? What are…
alsterisk
  • 61
  • 1
3
votes
1 answer

Why is DTLS-SRTP more efficient for RTP/RTCP than just DTLS 1.2?

While I understand the differences between DTLS-SRTP and pure DTLS, I cannot find much information on why exactly is DTLS-SRTP really "optimized" over generic DTLS 1.2. RFC 5764's Introduction makes an obvious statement but without specifics…
asinix
  • 261
  • 1
  • 5
1
vote
0 answers

With SCTP and SHA-1 the random parameters are exchanged in init and init ack. What is used as HMAC key?

SCTP INIT has client random parameter. SCTP INIT ACK has server random parameter. There are no shared keys. Using SHA-1, what key does the client or server use when performing the HMAC calculation? Does the sender use their own random parameter as…
0
votes
3 answers

DTLS vs direct use of AES. What are the threats unique for direct use of AES instead of DTLS?

For regular traffic in mesh network (between Internet of Thing devices) customer decided to use one of two options: DTLS PSK ciphersuite - DTLS based on pre-shared symmetric key or direct use of AES - customer wants to minimize traffic between…
Vlad
  • 51
  • 6