[Asterisk-Dev] AES voice encryption for IAX2

Derek Smithies derek at indranet.co.nz
Sat Apr 17 20:48:39 MST 2004 

James, 
> You're assuming, though, that both endpoints are machines running a full
> blown OS that you can implement CIPE into.  What if I want to integrate
> IAX encryption into a stand-alone VOIP device, like the IAXy?
Well, 
  you do need to have something that approaches a full blown OS. 
Otherwise, you wont have enough to handle something that can run the iax 
libraries.
 You are correct, the IAXy is a problem. My understanding is that the IAXy 
is a bit limited, and cannot do GSM encoding/decoding. Well, if it cannot 
do GSM, there is not enough cpu to do encryption.

You do need something with enough capability to do encryption/decryption. 
Thus, you are pushed into something with an almost full blown OS.

In answer to your question:
> What if I want to integrate IAX encryption into a stand-alone VOIP
> device, like the IAXy?
You forget putting encryption into the IAXy, cause it has not got the
required cpu horsepower.

Derek.
==========================================================

 On Sat, 17 Apr 2004, James Sharp wrote:

> > Tracy,
> >  I agree, tunnelling over ipsec/stunnel etc is better than reinventing the
> > wheel by integrating encryption into IAX.
> >  With one major exception.
> >  The tunnelling mechanism must not send the udp packets as tcp.
> >  The voice must be transmitted on the raw wire as UDP.
> >  This is why CIPE is such a good mechanism for doing voip vpns.
> 
> You're assuming, though, that both endpoints are machines running a full
> blown OS that you can implement CIPE into.  What if I want to integrate
> IAX encryption into a stand-alone VOIP device, like the IAXy?
> _______________________________________________
> Asterisk-Dev mailing list
> Asterisk-Dev at lists.digium.com
> http://lists.digium.com/mailman/listinfo/asterisk-dev
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-dev
> 
> 
> 

-- 
Derek Smithies Ph.D.                           This PC runs pine on linux for email
IndraNet Technologies Ltd.                     If you find a virus apparently from me, it has
Email: derek at indranet.co.nz                    forged  the e-mail headers on someone else's machine
ph +64 3 365 6485                              Please do not notify me when (apparently) receiving a
Web: http://www.indranet-technologies.com/     windows virus from me......

More information about the asterisk-dev mailing list