Datagram Transport Layer Security

Not to be confused with TDLS.

In information technology, the Datagram Transport Layer Security (DTLS) communications protocol provides communications security for datagram protocols. DTLS allows datagram-based applications to communicate in a way that is designed^[1]^[2] to prevent eavesdropping, tampering, or message forgery. The DTLS protocol is based on the stream-oriented Transport Layer Security (TLS) protocol and is intended to provide similar security guarantees. The DTLS protocol datagram preserves the semantics of the underlying transport — the application does not suffer from the delays associated with stream protocols, but has to deal with packet reordering, loss of datagram and data larger than the size of a datagram network packet.

Definition

The following documents define DTLS:

RFC 6347 for use with User Datagram Protocol (UDP),
RFC 5238 for use with Datagram Congestion Control Protocol (DCCP),
RFC 6083 for use with Stream Control Transmission Protocol (SCTP) encapsulation,
RFC 5764 for use with Secure Real-time Transport Protocol (SRTP) subsequently called DTLS-SRTP in a draft with Secure Real-Time Transport Control Protocol (SRTCP).^[3]

DTLS 1.0 is based on TLS 1.1, and DTLS 1.2 is based on TLS 1.2.

TLS basis of DTLS
Version	DTLS 1.0	DTLS 1.2
Based on	TLS 1.1	TLS 1.2

Implementations

Libraries

Main article: Comparison of TLS implementations § Protocol support

Library support for DTLS
Implementation	DTLS 1.0^[1]	DTLS 1.2^[2]
Botan	Yes	Yes
cryptlib	No	No
GnuTLS	Yes	Yes
Java Secure Socket Extension	No	No
LibreSSL	Yes	No
libsystools^[4]	Yes	No
MatrixSSL	Yes	Yes
mbed TLS (previously PolarSSL)	Yes^[5]	Yes^[5]
Network Security Services	Yes^[6]	Yes^[7]
OpenSSL	Yes	Yes^[8]
PyDTLS^[9]^[10]	Yes	No
RSA BSAFE	No	No
SChannel XP/2003, Vista/2008	No	No
SChannel 7/2008R2, 8/2012, 8.1/2012R2, 10	Yes^[11]	No^[11]
Secure Transport OS X 10.2-10.7 / iOS 1-4	No	No
Secure Transport OS X 10.8-10.10 / iOS 5-8	Yes^[a]	No
SharkSSL	No	No
tinydtls ^[12]	No	Yes
wolfSSL (previously CyaSSL)	Yes	Yes
Implementation	DTLS 1.0	DTLS 1.2

^ DTLS 1.0 are available on iOS 5.0 and later, and OS X 10.8 and later.^[13]

Applications

Cisco AnyConnect VPN Client uses TLS and DTLS,^[14] as does the AnyConnect-compatible open-source OpenConnect client
Cisco InterCloud Fabric uses DTLS to form a tunnel between private and public/provider compute environments^[15]
f5 Networks Edge VPN Client uses TLS and DTLS^[16]
Citrix Systems NetScaler uses DTLS to secure UDP^[17]
Web browsers: Google Chrome, Opera and Firefox support DTLS-SRTP^[18] for WebRTC

Vulnerabilities

In February 2013 two researchers from Royal Holloway, University of London discovered an attack^[19] which allowed them to recover plaintext from a DTLS connection using the OpenSSL implementation of DTLS when Cipher Block Chaining mode encryption was used.

References

1 2 RFC 4347
1 2 RFC 6347
↑ Peck, M.; Igoe, K. (2012-09-25). "Suite B Profile for Datagram Transport Layer Security / Secure Real-time Transport Protocol (DTLS-SRTP)". IETF.
↑ Julien Kauffmann. "libsystools: A TLS/DTLS open source library for Windows/Linux using OpenSSL". Sourceforge.
1 2 "mbed TLS 2.0.0 released". ARM. 2015-07-13. Retrieved 2015-08-25.
↑ "NSS 3.14 release notes". Mozilla Developer Network. Mozilla. Retrieved 2012-10-27.
↑ "NSS 3.16.2 release notes". Mozilla Developer Network. Mozilla. 2014-06-30. Retrieved 2014-06-30.
↑ "As of version 1.0.2". The OpenSSL Project. The OpenSSL Project. 2015-01-22. Retrieved 2015-01-26.
↑ Ray Brown. "pydtls - Datagram Transport Layer Security for Python". GitHub.
↑ Ray Brown. "DTLS for Python". Python Software Foundation.
1 2 "An update is available that adds support for DTLS in Windows 7 SP1 and Windows Server 2008 R2 SP1". Microsoft. Retrieved 13 November 2012.
↑ Olaf Bergmann. "tinydtls". Eclipse_Foundation.
↑ "Technical Note TN2287: iOS 5 and TLS 1.2 Interoperability Issues". iOS Developer Library. Apple Inc. Retrieved 2012-05-03.
↑ "Cisco AnyConnect VPN Client". Cisco.
↑ "Cisco InterCloud Architectural Overview" (PDF). Cisco Systems.
↑ "f5 Datagram Transport Layer Security (DTLS)". f5 Networks.
↑ "Configuring a DTLS Virtual Server". Citrix Systems.
↑ "WebRTC Interop Notes".
↑ Plaintext-Recovery Attacks Against Datagram TLS

External links

"Transport Layer Security (tls) - Charter". IETF.
Modadugu, Nagendra; Rescorla, Eric (2003-11-21). "The Design and Implementation of Datagram TLS" (PDF). Stanford Crypto Group. Retrieved 2013-03-17.
AlFardan, Nadhem J.; Paterson, Kenneth G. "Plaintext-Recovery Attacks Against Datagram TLS" (PDF). Retrieved 2013-11-25.
Gibson, Steve; Laporte, Leo (2012-11-28). "Datagram Transport Layer Security". Security Now 380. Retrieved 2013-03-17. Skip to 1:07:14.
Robin Seggelmann's Sample Code: echo, character generator, and discard client/servers.

TLS and SSL

Protocols and technologies

Transport Layer Security / Secure Sockets Layer (TLS/SSL)
Datagram Transport Layer Security (DTLS)
DNS Certification Authority Authorization (CAA)
DNS-based Authentication of Named Entities (DANE)
HTTPS
HTTP Public Key Pinning (HPKP)
HTTP Strict Transport Security (HSTS)
OCSP stapling
Perfect forward secrecy
Server Name Indication (SNI)
STARTTLS
Application-Layer Protocol Negotiation (ALPN)

Public-key infrastructure

Automated Certificate Management Environment (ACME)
Certificate authority (CA)
CA/Browser Forum
Certificate policy
Certificate revocation list (CRL)
Domain-validated certificate (DV)
Extended Validation Certificate (EV)
Online Certificate Status Protocol (OCSP)
Public key certificate
Public-key cryptography
Public key infrastructure (PKI)
Root certificate
Self-signed certificate