Vadim Lebedev wrote: Any thoughts on this issue? I've just realised that this approach will make lawful interception REALLY complicated... Maybe this is the reason there is no an RFC covering it? Or am i missing something?
Thanks Vadim > Hello, > > I've been reading various RFC describing tranmission of master key > for SRTP unside SDP's. > They require (like in rfc4568) the INVITE/200/ACK be transmitted using > TLS to avoid key interception. > > I wonder why nobody proped following scheme: > > Alice generates a mester key, encrypts it wih Bob's public key and > signs it with her own private key. > The resulting material is stored in SDP which can be transmitted ove > unsecure connection... > Bob receives the INVITE request extract the signed keye authenicate > the Alice signature and decodes the master key using his onw private > key.... > > > > Thanks > Vadim > > _______________________________________________ > Sip-implementors mailing list > Sip-implementors@lists.cs.columbia.edu > https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors > > > _______________________________________________ Sip-implementors mailing list Sip-implementors@lists.cs.columbia.edu https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors