rohc team mailing list archive

Thread
Date

Re: ROHC and IpSec

To: rohc@xxxxxxxxxxxxxxxxxxx
From: Didier Barvaux <didier.barvaux@xxxxxxxxxxxxxxxxxxxx>
Date: Mon, 5 Aug 2013 17:07:22 +0200
In-reply-to: <1375713821.48302.YahooMailNeo@web163801.mail.gq1.yahoo.com>
Organization: Viveris Technologies
Reply-to: rohc@xxxxxxxxxxxxxxxxxxx

> Perhaps there is something I am missing  but tunnel mode does not
> solve the problem.  Even if I can then compress the IP header, I have
> to put another one back on in order to make the tunnel function, and
> this thus eliminates the benefit.

The benefit is not fully eliminated. Compression efficiency is indeed
decreased, but may still be interesting :

    IPv4/UDP/RTP/data
 -> ROHC/data
 -> IPv4/ESP/encrypted(ROHC/data)

is better than :

    IPv4/UDP/RTP/data
 -> IPv4/ESP/encrypted(IPv4/UDP/RTP/data)


If you care about security of RTP streams, you might want to have a
look at SRTP [1]. It ensures security at the application level, it is
fully compatible with ROHC without efficiency loss.

Regards,
Didier

[1] https://en.wikipedia.org/wiki/Secure_Real-time_Transport_Protocol

References

Re: [Question #232890]: tcp code project not decompress IP packet well
From: Didier Barvaux, 2013-07-25
ROHC and IpSec
From: X-Calibre, 2013-07-31
Re: ROHC and IpSec
From: Didier Barvaux, 2013-08-02
Re: ROHC and IpSec
From: X-Calibre, 2013-08-05
Re: ROHC and IpSec
From: Didier Barvaux, 2013-08-05
Re: ROHC and IpSec
From: X-Calibre, 2013-08-05