6.2.10A IMS end-to-end Media Plane Security
23.3343GPPIP Multimedia Subsystem (IMS) Application Level Gateway (IMS-ALG) - IMS Access Gateway (IMS-AGW) interface: Procedures descriptionsRelease 17TS
6.2.10A.1 End-to-end security for RTP based media using SDES
This procedure is identical to that of clause 6.2.1 apart from the IMS-ALG providing "RTP/SAVP" or "RTP/SAVPF", as received in the SDP, to the IMS-AGW as transport protocol and not providing any other media related information to the corresponding terminations, and configuring the IMS-AGW to pass media transparently.
The IMS-ALG shall forward the SDP with unmodified transport protocol for those media lines and unmodified SDES SDP attribute(s).
6.2.10A.2 End-to-end security for TCP-based media using TLS
This procedure is identical to that of clause 6.2.1 apart from the IMS-ALG providing "TCP" to the IMS-AGW as transport protocol and not providing any TLS related information nor any other media related information to the corresponding terminations, and configuring the IMS-AGW to pass media transparently.
The IMS-ALG shall forward the SDP with unmodified transport protocol for those media lines and unmodified TLS related SDP attribute(s).
NOTE: End-to-end security for TCP-based media using TLS is not supported between two terminals being located behind firewalls/NATs.