Datagram Transport Layer Security

Datagram Transport Layer Security (DTLS) is a communications protocol providing security to datagram-based applications by allowing them to communicate in a way designed to prevent eavesdropping, tampering, or message forgery. The DTLS protocol is based on the stream-oriented Transport Layer Security (TLS) protocol and is intended to provide similar security guarantees. The DTLS protocol datagram preserves the semantics of the underlying transport—the application does not suffer from the delays associated with stream protocols, but because it uses UDP or SCTP, the application has to deal with packet reordering, loss of datagram and data larger than the size of a datagram network packet. Because DTLS uses UDP or SCTP rather than TCP, it avoids the "TCP meltdown problem", when being used to create a VPN tunnel.

Definition

The following documents define DTLS:

• RFC 9147 for use with User Datagram Protocol (UDP),
• RFC 5238 for use with Datagram Congestion Control Protocol (DCCP),
• RFC 5415 for use with Control And Provisioning of Wireless Access Points (CAPWAP),
• RFC 6083 for use with Stream Control Transmission Protocol (SCTP) encapsulation,
• RFC 5764 for use with Secure Real-time Transport Protocol (SRTP) subsequently called DTLS-SRTP in a draft with Secure Real-Time Transport Control Protocol (SRTCP).

DTLS 1.0 is based on TLS 1.1, DTLS 1.2 is based on TLS 1.2, and DTLS 1.3 is based on TLS 1.3. There is no DTLS 1.1 because this version-number was skipped in order to harmonize version numbers with TLS. Like previous DTLS versions, DTLS 1.3 is intended to provide "equivalent security guarantees [to TLS 1.3] with the exception of order protection/non-replayability".

Implementations

Libraries

Applications

• Cisco AnyConnect VPN Client uses TLS and invented DTLS-based VPN.
• OpenConnect is an open source AnyConnect-compatible client and ocserv server that supports (D)TLS.
• Cisco InterCloud Fabric uses DTLS to form a tunnel between private and public/provider compute environments.
• ZScaler tunnel 2.0 uses DTLS for tunneling.
• F5 Networks Edge VPN Client uses TLS and DTLS.
• Citrix Systems NetScaler uses DTLS to secure UDP.
• Web browsers: Google Chrome, Opera and Firefox support DTLS-SRTP for WebRTC. Firefox 86 and onward does not support DTLS 1.0.
• Remote Desktop Protocol 8.0 and onwards.

Vulnerabilities

In February 2013 two researchers from Royal Holloway, University of London discovered a timing attack which allowed them to recover (parts of the) plaintext from a DTLS connection using the OpenSSL or GnuTLS implementation of DTLS when Cipher Block Chaining mode encryption was used.

See also

• ZRTP
• Reliable User Datagram Protocol
• QUIC
• WireGuard

References

External links

• "Transport Layer Security (tls) - Charter". IETF.
• Modadugu, Nagendra; Rescorla, Eric (2003-11-21). "The Design and Implementation of Datagram TLS" (PDF). Stanford Crypto Group. Retrieved 2013-03-17.
• AlFardan, Nadhem J.; Paterson, Kenneth G. "Plaintext-Recovery Attacks Against Datagram TLS" (PDF). Retrieved 2013-11-25.
• Gibson, Steve; Laporte, Leo (2012-11-28). "Datagram Transport Layer Security". Security Now 380. Retrieved 2013-03-17. Skip to 1:07:14.
• Robin Seggelmann's Sample Code: echo, character generator, and discard client/servers.
• The Illustrated DTLS Connection

1. Transport Layer Security
2. Datagram Congestion Control Protocol
3. User Datagram Protocol
4. Reliable User Datagram Protocol
5. Cipher suite
6. Syslog
7. Network socket
8. Simple Network Management Protocol
9. Internet layer
10. Keepalive
11. Virtual private network
12. CAPWAP
13. Internet protocol suite
14. Storage security
15. Network layer
16. Layer 2 Tunneling Protocol
17. Comparison of TLS implementations
18. Certificate authority
19. Certificate revocation
20. Public key infrastructure