• No results found

IM: How Instant Messaging Systems Work

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "IM: How Instant Messaging Systems Work"

Copied!
26
0
0

Loading.... (view fulltext now)

Download now ( 26 Page )

Full text

(1)

Peer-to-Peer Networking

IM: How Instant Messaging Systems Work

Mohammad iqbal

(2)

Instant Messaging Systems

 ICQ (Mirabilis 1996, Bought by AOL in 1998, $300M)  AIM (1997), Yahoo (1998), MSN(1999)  Basic Functions:  Presence (Awareness)Presence (Awareness)Status(offline/online/idle)Location(office/home/mobile)Instant Messaging Text/Voice/VideoAny P2P applications

(3)

Outline

Introduction to IM

How ICQ Works

Problems and Security Concerns in ICQ

IETF Internet-Drafts for Instant Messaging

IETF Internet-Drafts for Instant Messaging

 Model and Terminologies  Requirements

 The PRIM protocol

 Security Considerations

(4)
(5)

ICQ Protocol

No official publications

Info Available is from

reverse-engineering the ICQ Protocol

ICQ Protocols:

ICQ Protocols:

V1,V2: Simplest Ones

V3: Simple Checksum as Security

V4: Encryption to Improve the Security

(6)

How Does ICQ Work ?

Presence Service

UDP

Instant Messaging

(7)

Presence Service (1)

Ack

UIN,Password, SessionID, IP, Port

• Create Connection

UIN,Password, SessionID, IP, Port

• “keep active” message

• All UDP packets must be acknowledged by the receiver • Same UDP packet format

(8)

Presence Service (2)

• Subscribe to Presence Service

User Status

Contact List

• User will be notified for the Status Change

(9)

Instant Messaging

•Receiver is offline:

Message in UDP to Server

•Receiver is online:

Build a TCP Connection, open till one side is off.

SessionID, UIN, Message IP address & Port Number

(10)

Security on ICQ

"The ICQ protocol is ridiculously simplistic and is riddled with security holes. So is the ICQ software. So ICQ users can be spoofed, have their machine crashed, or have evil haxxors run

arbitrary code on their boxes. Geez, these poor users might as well run Internet Explorer!"

(Source: http://www.insecure.org/sploits/icq.spoof.overflow.seq.html) (Source: http://www.insecure.org/sploits/icq.spoof.overflow.seq.html)

Personal Information Unprotected

IP Information Exposed

 Client-side operations make ICQ more vulnerable

 Flooding  Spoofing

(11)

Standardization

IETF Instant Messaging and Presence

Protocol (IMPP) WG

Terminologies, model and data formats

Specify design goals and requirements

Specify design goals and requirements

Produced RFC 2778/2779 and other I-Ds

IETF Presence and Instant Messaging

Protocol (PRIM) WG

Proposes a protocol that minimally satisfies

(12)

Model and Terminologies

A

presence and instant messaging system

 Provides

presence service

and

instant message

service

 Presence service accepts, stores and distributes  Presence service accepts, stores and distributes

presence information

 Instant message service accepts and delivers

instant messages

to

instant inboxes

 Can be regarded and implemented as two

(13)

Model and Terminologies (cont)

Presence Service

 Serves

presentities

and

watchers

 Presentities provide presence information  Watchers receive presence information

May involve multiple servers/proxies across

 May involve multiple servers/proxies across

multiple domains (other presence services)

Watchers

 Can be classified into

fetchers

and

subscribers

 Subscribers request future

notifications

of changes

(14)

Model and Terminologies (cont)

Instant Message Service

 Serves

senders

and

instant inboxes

 Senders send instant messages to service  Messages are then delivered to the inboxes  May involve multiple servers/proxies across

multiple domains (other IM services)

Principals

 The “real world” users of the system  Interact via

user agents

(15)

Presence Service

Presence Service (presence information) notify Presentity Watcher Presence UA Watcher UA publish notify

(16)

Instant Message Service

Instant Message Service

(instant messages)

Sender Instant Inbox

Sender UA Inbox UA

send

(17)

Presence Information

Consists of multiple

presence tuples

Presence tuple

Status

– online/offline,open/close,busy,away

Communication Address

Communication Address

Communication Means

instant message service 

Contact Address

– instant inbox address

(18)

Protocol Requirements

Independence of presence service and instant

message service

Entities in one domain interoperable with

those in other domains

Scalable – many entities and domains; many

Scalable – many entities and domains; many

subscriptions per subscriber or presentity etc.

Access control: who can do what

Must allow operations through proxies and

firewalls

(19)

The PRIM protocol

Designed to allow IM services to be provided

by servers distributed across administrative

domains

Client-server (intra-domain) and server-server

protocols (inter-domain)

protocols (inter-domain)

Assumes TCP as basic transport

Uses long-lived C-S connections; reduces

auth. overhead and firewall friendly

“Polite blocking” – selective publication of

(20)

The PRIM protocol (cont)

Each principal through agents communicates

with its own service (home) domain

presence/IM servers using client-server

protocols

Presence service

Presence service

 Subscription for a presentity in a different domain

is forwarded using server-server protocols

 Likewise for notifications

 A duration is associated with each subscription

 A renewal by the user agent or its home presence

(21)

The PRIM protocol (cont)

Instant Message service

 IM server provides the instant inbox

 User agent listens to inbox from which it wants to

receive instant messages

Inbox is open when at least one principal is

 Inbox is open when at least one principal is

listening to it

Presence/IM identifiers – used to identify

presentities and inboxes

(22)

The PRIM protocol (cont)

Name Resolution – uses DNS

 Perform SRV RR lookup

Authentication

 Performed at connection end-points  Performed at connection end-points

 When succeeds, the other end-point safely

accepts requests from presentities/inboxes pertaining to the domain of first end-point

 Done using the Transport Layer Security (TLS)

protocol (out-of-band) (RFC 2246) or Simple

Authentication and Security Layer (SASL) (in-band login) (RFC 2222)

(23)

The PRIM protocol (cont)

Authentication Strength

What servers communicate to next hop

during a relay

“strong”,”medium”,”weak”,”none”

“strong”,”medium”,”weak”,”none”

Compare with strength of current

connection

(24)

Security Considerations

Spoofing

Authentication of presentities/watchers,

senders/inboxes

Stalking (Privacy)

Stalking (Privacy)

Access rules, visibility rules, polite blocking

Spam

(25)

Conclusion

 IM has become popular in the corporate world  Current applications: SMS-type chat, real-time

collaboration, CRM

 Future applications: Integrate with mobile

technologies, PDA, e-commerce, targeted technologies, PDA, e-commerce, targeted advertisements

 Biggest challenges: different standard,

non-interoperable implementations, privacy and security issues

(26)

References

 IETF RFC 2778/2779

 Presence and Instant Messaging Protocol (PRIM)

Server-Server Protocol Specification <draft-ietf-prim-server-00.txt>

 Common Presence and Instant Messaging (CPIM)

<draft-ietf-impp-cpim-02>

Common Presence and Instant Messaging (CPIM) <draft-ietf-impp-cpim-02>

 Common Presence and Instant Messaging: Message

Format <draft-ietf-impp-cpim-msgfmt-04.txt>

 CPIM Presence Information Data Format

<draft-ietf-impp-cpim-pidf-01.txt>

 http://www.business2.com/webguide/0,1660,40034,

References

Download now ( PDF - 26 Page - 626.77 KB )

Related documents

Cryptographic Modes of Operation for the Internet

In this draft, we discuss some of the security properties, and pitfalls, of several pro- posed stream modes, and we note several ways in which these modes would be difficult to

Town of Clayton Improves Underground Feeder Protection With the SEL-FT50 and SEL-FR12

To ensure that the system does not reclose onto permanent faults on underground cables, Clayton Public Power installed the SEL-FT50 and SEL-FR12 Fault Transmitter and Receiver

Real-Time High-Resolution Multiple-Camera Depth Map Estimation Hardware and Its Applications

Therefore, the proposed efficient AWDE hardware overcomes the main challenge of the disparity estimation process by both reaching real-time for HR video and providing very high

An investigation of the cross-border supplier development process : problems and implications in an emerging economy.

The main reason for the lack of tacit technology transfer during the first (qualifying) stage of the transfer process seemed to be a lack of close social interaction or communication

AN BINSE LUACHÁLA VALUATION TRIBUNAL. AN tacht LUACHÁLA, 1988 VALUATION ACT, Rehab Lotteries Limited. and. Commissioner of Valuation

for and remit the net proceeds of sales of the tickets for the particular Rehab Lottery Game to the. charity by which the game is organised

Automatic Detection of Grammar Errors in Primary School Children s Texts A Finite State Approach

Among the most frequent error types in Child Data, represented by errors in fi- nite verbs, missing constituents, word choice errors, agreement in noun phrase and redundant

Marine Injury Reporting Guidelines

First Aid Medical Treatment Restricted Duties Work Days Lost Permanent Total or Partial Disability Incident Resulting in Injury Fatality. Lost Time

P A C I F I C L U T H E R A N U N I V E R S I T Y M A R C H 12, MID-CYCLE REPORT

perception feedback that allows for triangulation of data. These data represent key intervals of student learning, reflecting the viability of their curriculum in support of