vvc meets emc2 - terena · pdf filevvc meets emc2 building blocks egon verharen surfnet...
TRANSCRIPT
©2004 SURFnet, TF-EMC2 meeting 2
VVCVoice and Video real-time communication:
IP Telephony, Video Conferencing
Video Services:
On-demand, live, scheduled
By S. Williams
©2004 SURFnet, TF-EMC2 meeting 3
Group communication on internet
Video-mail,Streaming
Video conf.
.ppt, .doc attachment
Voice-mailE-mail, forum,Listserv,News
Desktop-sharing,Application-sharing
Voice over IP
Instant Messaging, chat
text audio video
synchronous
a-synchronous
data
©2004 SURFnet, TF-EMC2 meeting 4
Dataconferencing• Document sharing• shared whiteboard• often proprietary
Instant Messaging and Presence• competing standards:
Jabber vs SIMPLE
– Videoconference– IM – presence– portal/learning
environment
Integration
©2004 SURFnet, TF-EMC2 meeting 5
Microsoft Collaboration
INTEGRATEDCOMMUNICATIONS
TEAMCOLLABORATION
MOBILEWORKFORCE
BUSINESSPROCESS
COLLABORATION
Team Workspaces
Presence
Instant Messaging
Portals
Web Conferencing
Team Workspaces
Portals
Document Management
Search
Discussions
Presence
Instant Messaging
Web Conferencing
Remote & Mobile Access
Mobile Devices
Team Workspaces
Presence
Portals
Instant Messaging
Web Conferencing
Business Process Integration
Business Process Automation
Task Management
Project Management
Team Workspaces
Presence
Instant Messaging
Portals
By Microsoft
©2004 SURFnet, TF-EMC2 meeting 6
And also
• Context aware and Location Basedcommunication (see http://pic.internet2.edu)
• Extended reachability via database (H.350)• Added security and anti-spam• IPv6
• Virtual spaces. Meeting halls, really virtual café
©2004 SURFnet, TF-EMC2 meeting 7
Building blocks• Video middleware (a la Internet2’s vidmid-vc)
H.323, SIP,
multicast tools
Video archives
©2004 SURFnet, TF-EMC2 meeting 8
“Room for Improvement…”VC applications today
• No resource discovery – need to already know address of gatekeeper/proxy, target, gateway
• Non-existent or unreliable authentication (who is calling?)
• No authorization (all users have same access)• No security (eavesdropping)
©2004 SURFnet, TF-EMC2 meeting 9
H.323/H.235• Annex D - Baseline Security
Profile– Hop-by-hop processing– Password based security
• Annex E - Signature Security Profile– Certificate Based
Security (PKI)
SIP• End-to-end mechanisms
– Basic authentication– Digest authentication– Message body encryption
using S/MIME• Hop-by-hop mechanisms
– Transport Layer Security (TLS)
– IP Security (IPSec)– The SIPS URI schema
Security Mechanisms in VVC
©2004 SURFnet, TF-EMC2 meeting 10
H.350 : New ITU-T Standard (August 2003)
• H.350 also known as commObject• H.350 was born out of Internet2 Video Middleware
working group “vidmid-vc” (Internet2 Middleware and ViDe joint initiative)http://middleware.internet2.edu/video/
• Project with NSF grant to UAB with partners CGU, SURFnet, UNC, and RADVISION
• Sent for informational review to IETF
©2004 SURFnet, TF-EMC2 meeting 11
Enterprise Authentication with CommObject
End Point
Gatekeeper
UserName=JillPassword=XYZ
UserName=Jill
Password=XYZ
OK
LDAPcommObjUserName=JillPassword=XYZ
Use
rNam
e=Ji
llPa
ssw
ord=
XYZ
LDAPPerson
VideoconferencingCredentials
EntID=JGemmillPassword=54321
EnterpriseCredentials
EntID=JGemmillPassword=54321
OK
©2004 SURFnet, TF-EMC2 meeting 12
Communication middleware
• Learn from “Connective Middleware for Voice and Integrated Communications” [Ben Teitelbaum, Internet2]
By B. Teitelbaum
©2004 SURFnet, TF-EMC2 meeting 13
Middleware for Video services(both live & on-demand)
AA backend
(inst.)
streaming server
VoD appl client
Authnz eng
Req (ID, URL, param)
data
1
23
4
56
ACK
ACK
©2004 SURFnet, TF-EMC2 meeting 14
SVP2 mediafile protection
©2004 SURFnet, TF-EMC2 meeting 15
Who does what
• V&V&C Integration – TF-VVC• Security and Authnz – TF-EMC2• Location-independence & -info – TF-Mobility• Transport and Quality – TF-NGN
FOCUS:Services (still too technical)
If you build it, and support it, they will use it…
©2004 SURFnet, TF-EMC2 meeting 16
TF-VVC Activity Areas• A: Various guides relating to providing voice, video and data
collaboration services
• B: Content Delivery Infrastructures for Video-on-Demand
• C: Content Access Portal
• D: Metadata
• E: Academic Netcasting Channel (Live Streaming Infrastructure)
• F: Global Dialing Scheme
• G: Integration of conferencing, streaming and data collaborationsystems
• H: High-end/quality systems
• I: Usability - improving user interfaces
• J: Access control to video resources
• K: IP telephony deployments
• L: End-to-end measurements
C: Content Access Portal
G: Integration of conferencing, streaming and data collaborationsystems
J: Access control to video resources