[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Linphone-users] Are Linphone video/audio communications natively en
From: |
Greg Troxel |
Subject: |
Re: [Linphone-users] Are Linphone video/audio communications natively encrypted end-to-end? |
Date: |
Tue, 04 May 2021 10:01:13 -0400 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.3 (berkeley-unix) |
"Trent Creekmore" <trent@lindows.org> writes:
> As long as both clients are connected to the same server via TLS, then the
> RTP will be encrypted for sure. You don't have as much control once packets
> are sent to third parties., thus you cannot be sure.
SIP-based voice has two channels:
signaling, the SIP channel proper, which can (and IMHO always should)
have TLS
data channel, labeled RTP. This can have encryption. One method is
SRTP, with keys negotiated somehow (such as via the signaling
channel). Another is ZRTP, where the two endpoints send key
negotiation messages *in the RTP channel*.
So using TLS for signalling does not automatically lead to media stream
encryption. It also does not lead to e2e encryption for chat, but if
all parties including proxy-proxy links are TLS, you do get hop-by-hop
encryptoin.
For more about ZRTP:
https://tools.ietf.org/html/rfc6189
https://en.wikipedia.org/wiki/ZRTP
signature.asc
Description: PGP signature