Marratech Technology Whitepaper



Similar documents
District of Columbia Courts Attachment 1 Video Conference Bridge Infrastructure Equipment Performance Specification

Indepth Voice over IP and SIP Networking Course

TECHNICAL CHALLENGES OF VoIP BYPASS

CTX OVERVIEW. Ucentrik CTX

Security and Risk Analysis of VoIP Networks

An Introduction to VoIP Protocols

Voice over IP (VoIP) for Telephony. Advantages of VoIP Migration for SMBs BLACK BOX blackbox.com

Applications that Benefit from IPv6

IP Ports and Protocols used by H.323 Devices

Network Simulation Traffic, Paths and Impairment

Data Networking and Architecture. Delegates should have some basic knowledge of Internet Protocol and Data Networking principles.

Project Code: SPBX. Project Advisor : Aftab Alam. Project Team: Umair Ashraf (Team Lead) Imran Bashir Khadija Akram

VOICE OVER IP AND NETWORK CONVERGENCE

Secure VidyoConferencing SM TECHNICAL NOTE. Protecting your communications VIDYO

ilinc Web Conferencing

FRAFOS GmbH Windscheidstr. 18 Ahoi Berlin Germany

Rev Technology Document

Why SSL is better than IPsec for Fully Transparent Mobile Network Access

IOCOM Whitepaper: Connecting to Third Party Organizations

Voice over IP. Presentation Outline. Objectives

Performance Evaluation of VoIP Services using Different CODECs over a UMTS Network

CONNECTING TO LYNC/SKYPE FOR BUSINESS OVER THE INTERNET NETWORK PREP GUIDE

Basic Vulnerability Issues for SIP Security

Sametime Unified Telephony Lite Client:

Voice over IP Communications

WebRTC: Why You Should Care and How Avaya Can Help You. Joel Ezell Lead Architect, Collaboration Environment R&D

VoIP QoS. Version 1.0. September 4, AdvancedVoIP.com. Phone:

Secure Voice over IP (VoIP) Networks

Securing SIP Trunks APPLICATION NOTE.

Network Considerations for IP Video

White paper. SIP An introduction

Secure Voice over IP (VoIP) Solutions

Voice over IP (VoIP) Overview. Introduction. David Feiner ACN Introduction VoIP & QoS H.323 SIP Comparison of H.323 and SIP Examples

SIP Trunking with Microsoft Office Communication Server 2007 R2

Configuration of Applied VoIP Sip Trunks with the Toshiba CIX40, 100, 200 and 670

Cisco WebEx Meetings Server

Deploying Secure Enterprise Wide IP Videoconferencing Across Virtual Private Networks

Best Practices for Securing IP Telephony

Global Network. Whitepaper. September Page 1 of 9

Voice over Internet Protocol (VoIP) systems can be built up in numerous forms and these systems include mobile units, conferencing units and

1 ABSTRACT 3 2 CORAL IP INFRASTRUCTURE 4

FRAFOS GmbH Windscheidstr. 18 Ahoi Berlin Germany

Internet Security. Internet Security Voice over IP. Introduction. ETSF10 Internet Protocols ETSF10 Internet Protocols 2011

Session Initiation Protocol (SIP) The Emerging System in IP Telephony

Cisco Unified Videoconferencing Manager Version 5.5

A Brief Overview of VoIP Security. By John McCarron. Voice of Internet Protocol is the next generation telecommunications method.

Secure VoIP Transmission through VPN Utilization

Moving toward unified communications

VidyoConferencing for Service Providers A Solution & Business Model that Works VIDYO

White Paper. Traversing Firewalls with Video over IP: Issues and Solutions

A Scalable Multi-Server Cluster VoIP System

CHAPTER 6. VOICE COMMUNICATION OVER HYBRID MANETs

Encapsulating Voice in IP Packets

Receiving the IP packets Decoding of the packets Digital-to-analog conversion which reproduces the original voice stream

SIP Security Controllers. Product Overview

Is Your Network Ready For IP Telephony?

Cisco Virtual Office Flexibility and Productivity for the Remote Workforce

VOICE OVER IP SECURITY

Security and the Mitel Teleworker Solution

Online course syllabus. MAB: Voice over IP

Region 10 Videoconference Network (R10VN)

Prof. Dr. Abdulmotaleb El Saddik. site.uottawa.ca mcrlab.uottawa.ca

VOIP TELEPHONY: CURRENT SECURITY ISSUES

Skype Connect Requirements Guide

ETM System SIP Trunk Support Technical Discussion

Network Connection Considerations for Microsoft Response Point 1.0 Service Pack 2

NEWT Managed PBX A Secure VoIP Architecture Providing Carrier Grade Service

B12 Troubleshooting & Analyzing VoIP

Comparison of Voice over IP with circuit switching techniques

Alkit Reflex RTP reflector/mixer

SSVVP SIP School VVoIP Professional Certification

Computer Networks. Voice over IP (VoIP) Professor Richard Harris School of Engineering and Advanced Technology (SEAT)

Need for Signaling and Call Control

Deploying the ShoreTel IP Telephony Solution with a Meru Networks Wireless LAN

Distributed Systems. 2. Application Layer

Multimedia Communications Voice over IP

Secure VoIP for optimal business communication

VoIP Analysis Fundamentals with Wireshark. Phill Shade (Forensic Engineer Merlion s Keep Consulting)

AT&T Connect Video conferencing functional and architectural overview

Ericsson Enterprise Mobility Gateway. Communications powered up

Recommended IP Telephony Architecture

CSIS CSIS 3230 Spring Networking, its all about the apps! Apps on the Edge. Application Architectures. Pure P2P Architecture

Ingate Firewall/SIParator SIP Security for the Enterprise

Traditional Telephony IP Telephony Voice, Data, Video Integration. Media Convergence. IP Router Server IP Router. Video Distribution Fax

Mobile VoIP: Managing, scheduling and refining voice packets to and from mobile phones

ENTERPRISE SESSION BORDER CONTROLLERS: SAFEGUARDING TODAY S AND TOMORROW S UNIFIED COMMUNICATIONS

Cloud Video. Data Sheet

Setting up a reflector-reflector interconnection using Alkit Reflex RTP reflector/mixer

VIDEOCONFERENCE. 1 Introduction. Service Description Videoconferece

Cisco Virtual Office Express

SIP Trunking Configuration with

Software Engineering 4C03 VoIP: The Next Telecommunication Frontier

Zeenov Agora High Level Architecture

Wireless VPN White Paper. WIALAN Technologies, Inc.

VA Enterprise Standard: VIDEO CODEC/RECORDING

Per-Flow Queuing Allot's Approach to Bandwidth Management

Cisco Integrated Services Routers Performance Overview

White Paper. Solutions to VoIP (Voice over IP) Recording Deployment

Software-Powered VoIP

CHAPTER 1 INTRODUCTION

Transcription:

Marratech Technology Whitepaper Marratech s technology builds on many years of focused R&D and key reference deployments. It has evolved into a market leading platform for Real Time Collaboration (RTC) on the Internet. In November of the same year, Marratech released its first commercial software. This was followed by new releases focusing on ease of use and technology refinements. This whitepaper introduces the reader to the technology that powers the Marratech solution. It walks the reader through its technical history, the technical architecture, the protocols and standards that enable Marratech s customers to work better. Technical history Marratech s technology platform is a result of its founders common vision. In 1994, they envisioned a platform that leveraged the power of the Internet Protocol for real-time, distributed work. In 2001, the introduction of the Marratech E- meeting Portal (now called Marratech Manager) bridged the gap between network efficient IP Multicast and ubiquitous IP Unicast networks. It also introduced Network Address Translation (NAT) firewall traversal capability. 2001 was the year Linux become a fully supported platform. Two years later, Marratech also added Mac OS X, thereby responding to the needs of the higher education market. A major milestone was reached in 2003 when Marratech, in partnership with Global IP Sound, introduced the RTC market s highest quality Voice Over IP (VoIP). 2004 and 2005, Marratech focused on web services and customizations possibilities through the availability of an API. It can be used for integrating RTC functionality in existing web services platforms. Additionally, Marratech adopted the Session Initiation Protocol (SIP) for dialing out to IP and traditional telephones from on-going meetings. First Marratech prototype project proposal from late 1992. The platform s goal was to leave the traditional, static and complex videoconference world and focus on ubiquitous, real-time, mobile and flexible IP-based communication. To make this a reality, a multi platform, scalable and reliable platform was envisioned. H.323 support was also added, making it possible to call out to video conferencing stations from Tandberg, Sony, Polycom and others. High quality video, through the adoption of H.264 technology was integrated in early 2006. H.264 video offers higher quality video at lower bandwidths for modern computers. In 1995, the first prototypes utilizing this platform emerged, building a suite of collaborative applications. The suite was validated by an EU consortium of large industrial companies including Telefonica, Philips Research, Ericsson and Siemens Nixdorf. This lead to the creation of Marratech in June 1998. Marratech Inc 6 Dumont Place Morristown, NJ 07960 USA Marratech AB S:t Eriksgatan 115 Box 6791 11385 Stockholm Sweden www.marratech.com The same 2006 release saw the arrival of moderator functionality, enabling more controlled, large group meetings and training and education sessions. Through customer feedback and innovative R&D, the Marratech platform has evolved as a unique market leading RTC platform. 1

A distributed, peer-to-peer platform The Marratech platform builds upon a distributed architecture. A distributed architecture uses the end clients for processing, enabling the central part of the solution to scale to a very large number of users. In an online session, it is the Marratech clients that handle all data processing. This includes media encoding and decoding as well as encryption tasks. The Marratech Manager is relieved from these tasks and can thus handle a larger number of users for authentication and network connection bridging. The advantages of a distributed architecture are many: Enables true end-to-end encryption of all meeting data and media Enables the clustering of the server back-end for significant bandwidth savings and increased scalability Enables a server-less environment when combined with IP Multicast Enables support for seamless mixing of IP Multicast and IP Unicast networks Reduces the complexity of the central point, therefore increasing overall robustness. The combination of these features make for a secure, scalable and flexible solution. In fact, Marratech s distributed architecture can also be called a peer-to-peer (P2P) platform. Multi-platform, Robust and Flexible Marratech enables real time collaboration across multiple platforms by supporting Windows, Linux and Mac OS X for the client and server. The implementation enables different client and server platforms to interact seamlessly: Mac, Windows and Linux users can collaborate across the OS barriers. Furthermore, deployments can be clustered across multiple server platforms. Real time collaboration must occur in real time. With many years of work and customer experience, Marratech has succeeded in implementing a low latency, real time network communications stack that is amongst the best in the world. This means that voice communications offer lower delays than what is often experienced via long distance phone calls. Furthermore, the network stack dynamically adapts to the quality of the network by compensating and adapting quickly to avoid any hacks or glitches in the voice quality. This platform has proven itself on many occasions, across wireless, satellite and fixed links in a number of real-life usage scenarios at customer reference sites. Unicast The voice quality of the solution is further increased by the partnership with Global IP Sound. The Marratech platform offers near CD voice quality, and is by far superior to traditional telephony and common Voice Over IP. Multicast A clustered deployment using Multicast and Unicast. 2

The Marratech Manager has been built with ease of deployment in mind. Installing it takes minutes, not hours. Though it is quick and easy to install, it offers a high degree of flexibility by offering the following features: Fully customizable front end, User and group management through Lightweight Directory Access Protocol (LDAP), Ability to invite H.323 video conferencing stations in a Marratech meeting room, Telephony integration possibilities through SIP, Web services integration through the use of J2EE (Java 2 Enterprise Edition) technology. This makes it a turn-key solution that is fully customizable and possesses powerful integration possibilities. Built for the Internet Many RTC solutions do not live up to their promises. Solutions can theoretically be attractive on paper, but fail to deliver in real life, as they do not adapt well to real life Internet challenges. Here is why Marratech delivers on it s promise of a solution built for the Internet: Robustness Network degradation will not drop a meeting. Instead, the Marratech platform adapts dynamically to varying network conditions by reducing bandwidth and codec quality to deliver uninterrupted communication. NATs, Firewall and VPNs An Internet solution must meet the firewall challenge. Firewalls pose a challenge as they often block real time communication possibilities. Marratech, with the help of partnering enterprise broadband ISPs, developed port configuration methods that can easily be explained and deemed safe by IT administrators, putting them in full control over the deployment. (For more on this, please consult our Supported Network Scenarios document.) Network Address Translation (NAT) firewalls are traversed safely with no need for configuration. This enables home users, wireless users and many corporate users with full functionality, straight out of the box. Virtual Private Networks (VPN) are also supported without any need for modifications. This enables the use of a solution deployed behind a closed firewall across the Internet. Security Security is a critical issue for collaboration over the Internet. Often, sensitive and private information is discussed which is why privacy must be ensured. Unfortunately, most VOIP and RTC solutions provide very simple security mechanisms, or none at all. Marratech provides its customers with 256 bit AES encryption on all media (voice, video, whiteboard, chat, etc...) Today, it is the only system to provide true endto-end encryption, thanks to its unique distributed architecture. The Marratech Manager server (or servers if a cluster is used) is not involved in the encryption scheme, preventing even server administrators from eavesdropping a meeting. This forces many solutions to use ports reserved for web traffic. Using web ports for real time communication media such as video and audio introduces delays and delivers a mediocre user experience, forcing users to use a separate phone system. 3

While more details can be found in the Security Overview document, here is an overview: Marratech uses 256 bit AES encryption on all media (voice, video, whiteboard, chat, etc...). The server uses Secure Socket Layer (SSL) for authentication, web traffic and LDAP communication. Both client and server are protected against buffer overflow hacking attempts. Port connections between server and client are established through an encrypted challengeresponse system, protecting against connection hi-jack (spoofing) attempts. By providing a robust, secure solution that works through NATs, Firewalls and VPNs, Marratech delivers on its promises. How it works The Marratech solution is an integration of well known protocols that it has implemented, optimized and in many cases, enhanced. These integrate with in-house solutions developed whenever functionality for a specific function was not found (i.e. firewall traversal) and / or where security needed to be re-enforced. Here are the most significant components in the Marratech client: RTP All real time media is sent and received via the Real Time Protocol (RTP). This best effort protocol is used over the User Datagram Protocol (UDP), which in turn can be sent via both Unicast and Multicast. RTP packets are encrypted via SRTP (Secure Real Time Protocol), recorded (optional) and sent off to the other participants. All media is sent via RTP, including voice, video, whiteboard, chat and application sharing. RTP includes a quality control reporting mechanism called RTCP, which is used in the Distributed Congestion Control functionality. SRTP SRTP is used to encrypt all RTP data before it is sent to the network via UDP. The key used to encrypt data is exchanged via SSL from the Marratech Manager or from an external secure server. The latter ensures a true end-to-end encryption scheme, uncoupling the server from the encryption layer completely. Distributed Congestion Control Distributed Congestion Control uses RTCP statistics in order to throttle back meeting bandwidth in the event of network degradation. If the preset session bandwidth limit is passed, Marratech s Distributed Congestion Control will switch voice codec, throttle video and whiteboard until bandwidth usage drops below the preset limit. The congestion control is handled in a completely distributed fashion, without involving the server. This enables the Marratech solution to adapt to all the various types of network connections and their varying quality during a meeting. An illustration of the Marratech client building blocks. 4

Scalable Reliable Multicast (SRM) Using a connectionless, best-effort protocol such as RTP for transferring voice and video is a sound design choice. It scales very well, can be used both via multicast and unicast and offers very low delay. Packet loss, while unfortunate, can be overseen by the receiver. However when transferring written data (such as whiteboard content, chat or application sharing), data transfers must be reliable, lossed packets must be repaired. There is no room for oversights. Marratech uses SRM (Scalable Reliable Multicast) over RTP to ensure data delivery, while offering the advantages of a connectionless protocol. This is at the foundation of Marratech s distributed architecture. Packet loss is repaired by the closest participant, eliminating potentially heavy loads due to a single central point ensuring repairs for a large group. Instead, smaller repair groups are created to distribute the load efficiently. Marratech s SRM works just as well in unicast, multicast, hybrid and clustered network scenarios, proving its strength. To say that Marratech s SRM enables TCP-like connections for a group of computers without the need for a server is a good approximation. Very few have succeeded in implementing an efficient, robust SRM network stack, even in a lab environment. Marratech s SRM now has close to 10 years of usage in the toughest network environments. Marratech has succeeded in creating an SRM implementation that offers scalable, robust data transfers to large groups of people without depending on a server. SDP The Session Description Protocol (SDP) is used to define meeting rooms. This protocol, implemented by Marratech very early on, indicates network location of the meeting and what type of media (codecs) is being used. It dictates bandwidth limits and includes meeting identification information. Firewall Module Marratech s firewall module enables clients to penetrate NAT firewalls and keep such a connection alive through in-band signalling for every media. Connection Module The connection module first transfers the SDP file safely between the server and the client via SSL. A handshake process is then initiated by using an encrypted challenge response scheme. This safeguards all media connection against possible hi-jack attempts through, for example, IP address spoofing. Voice Marratech uses the market s best voice components, enabling low delay, high quality (16 khz sampling versus the traditional 8 khz phone quality) VoIP. The result is striking. Video Marratech gives users the choice between using the traditional and robust H.261 video and the newer, high quality H.264 video codec. The latter requires a more modern computer in order to achieve higher quality at lower bit rates. Browser based client Marratech uses Java Web Start technology together with it s client software. This enables the joining of a meeting for the first time through a single click on a web page. All required software is installed, updated and started automatically. 5

The Marratech Manager uses the following important building blocks: In a similar fashion, the H.323 component can be used to call out to a video conferencing station from an on-going meeting for voice and video interaction. In both cases, it is the server that establishes the connection to the external party. LDAP The LDAP module integrates existing external LDAP servers (and Microsoft s Active Directory) for user and group management. An illustration of the Manager s building blocks Network Connection Core The network connection core enables unicast, multicast and clustered node environments to be combined seamlessly, without any user intervention. It does this without processing any meeting data thanks to the connectionless, distributed architecture used mention previously. Web Services API The Marratech Manager s functionality builds upon a J2EE API. This enables Web Services integration and customization of the Marratech solution as a service in platforms such as Apache Tomcat, JBoss, IBM Websphere, BEA and more. Internally, the Manager s main functionality uses this API to create the bundled administration and user functionality found in the Manager. The Marratech pay-per-use Time-To-Meet system is made possible by the J2EE Web Services API. SIP and H.323 The SIP module enables Marratech users to call out to internet phones as well as traditional land and mobile phones. The Manager calls out to a SIP device or SIP-to-PSTN gateway and mixes the voice into the appropriate ongoing session. The SIP module can be used for both voice and video calls. Integration with existing user databases significantly facilitates the deployment of the Marratech Manager across enterprise and university networks. Conclusion Marratech s technological platform uses innovative and proven technology to power it s RTC solution. It s robustness, security, scalability and integration possibilities powered by the combination of well designed protocols and innovative solutions ensure a unique position on the market today. It is a combination that will keep it at the forefront tomorrow. For More Information For readers wanting more information about the Marratech platform, please consult the following documents, which can be made available upon request: Marratech Milestones Marratech Security Overview Marratech Supported Network Scenarios 6

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information