a Portal devoted to SIP and Security technologies

SIP/IMS Standardization


	IETF Standardization Process


	RFCs related to SIP (4 p.)


	SIP-SIPPING-SIMPLE... I-Ds (22 p.)


	Audio-Video Transport RFCs (2 p.)


	3GPP Specifications (12 p.)


	OMA Specifications related to SIP


	TISPAN NGN Specifications (3 p.)


	SIP Topics


	IMS Topics

SIP/IMS Call Flows


	RFC3261's Example


	Basic -- RFC3665


	SIP PSTN -- RFC3666 (3 p.)


	SIP Service Examples (20 p.)


	IMS Signaling Flows (35 p.)

SIP/IMS Architecture


	SIP Protocol Structure


	Dialogs & Routing


	UMTS Network Evolution

Security


	PKIX-TLS-SMIME... Standards (20 p.)


	Cryptography Basics


	ASN.1 for PKI Certificate & CRL Profile


	ASN.1 for CMS


	RFC3280's Certificate Examples (4)


	RFC4134's CMS-S/MIME Examples (14)


	RFC4474's SIP Authentication Service


	SSL/TLS Time-Diagrams


	IPSec Guides

ABNF Grammars


	ABNF Notation & Rules


	URI Generic Syntax


	ABNF for SIP

	SIP Messages & URIs

	SIP Header Fields

	MIME Media Types


	ABNF for SDP


	ABNF for MSRP


	ABNF for MRCPv2


	ABNF for RTSP 2.0


	Internet Message Format

DiffServ CoS Simulation


	IPVCoSS Simulator


	IP-VPN Case Study

(daily updated)

IPSec Guides

Top

Architecture

IPSec Architecture & Traffic Processing

This document presents the document roadmap for IPSec, as well as a host-to-host architectural model, followed by a sequence of slides illustrating IPSec traffic processing related to this model.

Architecture & Traffic Processing
-- 2 March 2005, v1.0

Figure 1 depicts one side of an IPSEC peer-to-peer relationship. The meaning of the abbreviations that are used in this figure is as follows:

AH	Authentication Header
ESP	Encapsulating Security Payload
SA	Security Association
SAD	Security Association Database
SPD	Security Policy Database
IKE	Internet Key Exchange
ISAKMP	Internet Security Association and Key Management Protocol

(IPSec Architecture)

Figure 1: IPSec Architectural Components

Top

Modes & Protocols

IPSec Modes & Protocols

This document illustrates, as a synopsis, the IPSec encapsulation of secured IP packets according to IPSec protocol (AH or ESP) and mode (Transport or Tunnel).

IPSec Modes & Protocols
-- 12 October 2006, v1.1

(SSL modes)

Figure 2: Synopsis of IPSec Modes and Protocols

Top

ISAKMP & IKE Formats

This document illustrates IKE message formats. These formats result from ISAKMP framework definition (RFC 2408) refined by IPSec DOI (domain of interpretation, defined in RFC 2407) for phase 2 attributes, and finally appendix A of RFC 2409 (IKE) for phase 1 attributes. Color codes are used consistently throughout this document for relevant information sources.

ISAKMP & IKE Formats
-- 2 March 2005, v1.0

(IKE formats)

Figure 3: IKE Structure

Top

IKE Exchanges

IKE Exchanges (Phase 1 & Phase 2)

This document shows detailed time diagrams for Phase 1 and Phase 2 IKE exchanges.

Phase 1 is where two IKE peers establish the ISAKMP Security Association, a secure and authenticated channel. The four authentication methods defined in RFC2409 are illustrated, in "Main" mode only.

Phase 2 is where Security Associations are negotiated on behalf of IPSec. The "Quick" mode exchanges are detailed with and without PFS (perfect forward secrecy) service.

IKE Exchanges
-- 2 March 2005, v1.0

(IKE exchanges)

Figure 4: IKE Phase 1 Exchanges in Main Mode

Top

IKEv2 Formats

This document illustrates IKEv2 message formats as defined in RFC4306 -- Internet Key Exchange (IKEv2) Protocol.

This version of the IKE specification combines the contents of what were previously separate documents, including ISAKMP (RFC 2408), IKE (RFC 2409), the Internet DOI (RFC 2407), NAT Traversal, Legacy authentication, and remote address acquisition.

Version 2 of IKE does not interoperate with version 1, but it has enough of the header format in common that both versions can unambiguously run over the same UDP port.

IKEv2 Formats
-- 2 March 2005, v1.0

(IKEv2)

Figure 5: IKEv2 Formats

Last update: May 25, 2007