[SFLphone] TLS and SRTP support

Wang, Waylon wwang at mitre.org
Sat Jun 13 19:26:15 EDT 2009 

Emmanuel,

Thanks for the update. Zrtp is an in-band, pair-wise key negotiation/distribution mechanism that works well for unicast calls. To support multicast conference calls, is it possible your zrtp feature be selectable? I can imagine all multicast conference call users may want to use the same master key for a given period of time, and want to disable zrtp but use only srtp. The key distribution can be handled by such thing as SDES (RFC4568).

Again, great news and thanks for the good work!

Waylon

-----Original Message-----
From: Emmanuel Milou [mailto:emmanuel.milou at savoirfairelinux.com] 
Sent: Friday, June 12, 2009 1:28 PM
To: Wang, Waylon
Cc: sflphone at lists.savoirfairelinux.net
Subject: Re: [SFLphone] TLS and SRTP support

Hi Wang,

We are currently developing sRTP/zRTP support for SFLphone. It will be
released with the 0.9.7 SFLphone version. 

On Mon, 2009-02-23 at 16:46 -0500, Wang, Waylon wrote:
> This is great. Thanks Manu! Having srtp and tls support is an important milestone towards an enterprise class softphone.
> 
> Waylon
> 
> 
> 
> -----Original Message-----
> From: sflphone-bounces at lists.savoirfairelinux.net [mailto:sflphone-bounces at lists.savoirfairelinux.net] On Behalf Of sflphone-request at lists.savoirfairelinux.net
> Sent: Monday, February 23, 2009 9:00 AM
> To: sflphone at lists.savoirfairelinux.net
> Subject: SFLphone Digest, Vol 2, Issue 5
> 
> Send SFLphone mailing list submissions to
> 	sflphone at lists.savoirfairelinux.net
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	http://lists.savoirfairelinux.net/mailman/listinfo/sflphone
> or, via email, send a message with subject or body 'help' to
> 	sflphone-request at lists.savoirfairelinux.net
> 
> You can reach the person managing the list at
> 	sflphone-owner at lists.savoirfairelinux.net
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of SFLphone digest..."
> 
> 
> Today's Topics:
> 
>    1. Re: TLS and SRTP support (Emmanuel Milou)
> 
> 
> ----------------------------------------------------------------------
> 
> Message: 1
> Date: Mon, 23 Feb 2009 11:14:22 -0500
> From: Emmanuel Milou <emmanuel.milou at savoirfairelinux.com>
> Subject: Re: [SFLphone] TLS and SRTP support
> To: "Wang, Waylon" <wwang at mitre.org>
> Cc: "sflphone at lists.savoirfairelinux.net"
> 	<sflphone at lists.savoirfairelinux.net>
> Message-ID: <49A2CB5E.8030704 at savoirfairelinux.com>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
> 
> Hi,
> 
> First of all, sorry for the delay.
> Neither tls or srtp are supported by SFLphone yet, but we are quite 
> interesting in implementing these security features.
> As for the voice encryption part, we are using libccrtp as transport 
> layer and they do provide srtp support, so we are willing to extend our 
> rtp layer to implement it.
> As for the call information encryption, I don't now yet how to implement 
> it or if we could use pjsip tls support. Let me make some researches 
> about it.
> 
> Regards
> 
> Manu
> 
> 
> 
> 
> Wang, Waylon a ?crit :
> > Any suggestion how to enable SRTP and TLS on the SFLPhone? I know some level of programming is required but would like to hear if anyone has any specific ideas. 
> >
> > Waylon
> >
> > -----Original Message-----
> > From: Wang, Waylon 
> > Sent: Wednesday, February 04, 2009 2:12 PM
> > To: 'sflphone at lists.savoirfairelinux.net'
> > Subject: TLS and SRTP support
> >
> > Does SFLPhone support TLS and SRTP? If not, how do I accomplish the following from the SFLPjone (maybe some coding required)?
> >
> > $ ./pjsua --use-tls --tls-ca-file root.pem --tls-cert-file server-cert.pem --tls-privkey-file privkey.pem               //as a TLS server or
> > $ ./pjsua --use-tls sip:SERVER;transport=tls                                                                            //as a TLS client
> > $ ./pjsua --use-tls --use-srtp=1 sip:alice at example.com;transport=tls                                                    //using srtp
> >
> > Thanks!
> > Waylon
> > _______________________________________________
> > SFLphone mailing list
> > SFLphone at lists.savoirfairelinux.net
> > http://lists.savoirfairelinux.net/mailman/listinfo/sflphone
> >   
> 
> 
-- 
Emmanuel Milou
Consultant en Logiciel Libre
Savoir-Faire Linux Inc.
emmanuel.milou at savoirfairelinux.com
514-276-5468 poste 136

More information about the SFLphone mailing list