Tom Green wrote:I don't quite agree.
Brian,
Encrypted SIP messages can be sent using TLS. However, I don't think it is realistic to expect everyone calling you to have a public/private key pair.
SMTP servers that support SMTP-TLS and have valid certs + config do exactly that already...
But I think Tom's point is that SMTP-TLS is not very common.
However, a PKI for VoIP would be much easier, and much more manageable, than PKI for email. Each provider would have to maintain a key server that stored keys for their users. Then, a public, central registry of provider keys would be needed. The main challenge would be getting private keys into phones.
Alice ---------------> Alice's Provider (AP Co.) -----------------> Bob's Provider (BP Co.) ------------------------> Bob
[Signed by Alice] [Alice's Verified Sig] [Alice's Verified Sig] [Signed by AP Co.] [AP Co.'s Verified Sig]
[Signed by BP Co.]
In this system, Alice would sign and send her SIP messages to her provider's SIP proxy. Her provider, AP Co., proxy would verify the signature with its own key server, and, if valid, would sign it with the AP Co, key and pass it on to BP Co.'s proxy server. The BP Co. proxy could then check AP Co.'s signature, sign the message, and pass it to Bob. Bob, then, must only check that the message is signed by the user's provider.
There are, of course, weaknesses in this plan. To name a few:
1. It's a chain of trust: it's hard for Bob to verify Alice's signature directly
-Not impossible to fix
2. A central registry must be created that's free and open for providers to use but secure enough to verify members.
-Think about the global IP address distribution agencies
3. Phones must get private keys securely.
Nick
_______________________________________________ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
