This paper examines how to provide secure and efficient voice-over-IP service on a cdma2000 network. Various alternative solutions and their relationship to header compression techniques are discussed. We propose a new method of end-to-end encryption that could be used to provide privacy even when Header Removal, a cdma2000-specific technique where IP/UDP/RTP headers are discarded before transmission over the air, is in use. The new method relies on a novel variable-length block cipher that can be re-used with fixed parameters across many voice frames, eliminating the requirement to carry precise cryptographic synchronization with each and every voice frame. Instead, the parameters to the block cipher are varied on an infrequent basis, and synchronization information is communicated from the encryptor to the decryptor by overwriting the occasional voice frame, with minimal impact on resulting voice quality. The method offers provable security guarantees given some assumptions about the amount of entropy contained in the encoded speech data.
[1]
Sarvar Patel,et al.
Towards Making Luby-Rackoff Ciphers Optimal and Practical
,
1999,
FSE.
[2]
Robert Friend,et al.
IP Payload Compression Using LZS
,
1998,
RFC.
[3]
Roy Pereira,et al.
IP Payload Compression Using DEFLATE
,
1998,
RFC.
[4]
Carsten Bormann,et al.
RObust Header Compression (ROHC): Framework and four profiles: RTP, UDP, ESP, and uncompressed
,
2001,
RFC.
[5]
Randall J. Atkinson,et al.
IP Encapsulating Security Payload (ESP)
,
1995,
RFC.
[6]
Jerome H. Saltzer,et al.
End-to-end arguments in system design
,
1984,
TOCS.
[7]
Baugher,et al.
The Secure Real-Time Transport Protocol
,
2003
.
[8]
Lars-Erik Jonsson,et al.
RObust Header Compression (ROHC): A Link-Layer Assisted Profile for IP/UDP/RTP
,
2002,
RFC.
[9]
Robert Monsour,et al.
IP Payload Compression Protocol (IPComp)
,
1998,
RFC.