[Asterisk-Dev] AES voice encryption for IAX2
hwstar at rodgers.sdcoxmail.com
hwstar at rodgers.sdcoxmail.com
Fri Apr 16 13:41:09 MST 2004
I totally agree: We need implement the encryption at the application level. Using outboard encryption facilities at the transport level is too much to ask of unsophisticated users. Yout point about E911 is an interesting one, that I
was completely unaware of but makes perfect sense.
While doing a Google search, I noticed someone mentioned that Encryption was working with Digium's new IAXy product. Does this mean that encryption support at the protocol level has already been thought out, and just not merged into the Asterisk source tree yet?
Steve.
>
> From: "Olle E. Johansson" <oej at edvina.net>
> Date: 2004/04/16 Fri PM 03:16:29 EDT
> To: asterisk-dev at lists.digium.com
> Subject: Re: [Asterisk-Dev] AES voice encryption for IAX2
>
> Jeremy McNamara wrote:
> > Tracy R Reed wrote:
> >
> >> It would seem to me that tunneling over ipsec or ipv6 or stunnel or any
> >> number of other standard means would work just fine rather than
> >> reinventing the wheel by integrating encryption with IAX.
> >>
> >>
> >
> > Then one could not have a mobile method of encryption...you would be
> > locked down to that specific network and trying to establish a VPN is
> > just not very efficient.
> Application layer encryption is preferred, then the PBX can rest assured
> that a session is encrypted point to point. With VPNs, the PBX doesn't
> have a clue if the call is protected or not.
>
> I think IAX2 session encryption is important. For E911 calls (coming
> IETF standards) encryption from point to point will be mandatory.
> So we'd better fix this.
>
> I would also like to see Windows IAX clients implementing IAX2
> key authentication. Hint, hint.
>
> Have a notion that someone down there is feeling the pressure :-)
>
> /O
> _______________________________________________
> Asterisk-Dev mailing list
> Asterisk-Dev at lists.digium.com
> http://lists.digium.com/mailman/listinfo/asterisk-dev
> To UNSUBSCRIBE or update options visit:
> http://lists.digium.com/mailman/listinfo/asterisk-dev
>
More information about the asterisk-dev
mailing list