Re: [Linphone-developers] ZRTP and TLS

linphone-developers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Linphone-developers] ZRTP and TLS

From:	Greg Troxel
Subject:	Re: [Linphone-developers] ZRTP and TLS
Date:	Tue, 14 Jan 2020 19:53:19 -0500
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/26.1 (berkeley-unix)

Werner Dittmann <address@hidden> writes:

> Actually, if you use ZRTP then there is no need to use TLS for SIP because 
> ZRTP negotiates
> it's keys inband end-to-end using RTP over UDP. This is the main difference 
> to SDES where the
> key parameters are embedded within SIP headers and thus you must run SIP over 
> TLS.

I see the point that TLS is not needed for ZRTP to protect the contents.
But it's still necessary to protect the signalling channel, so that
passive eavesdroppers cannot steal the SIP login credentials.

I don't understand the notion of not using TLS, assuming it is feasible.

[Prev in Thread]

Current Thread

[Next in Thread]

[Linphone-developers] ZRTP and TLS, ahmed rayan, 2020/01/13
- Re: [Linphone-developers] ZRTP and TLS, Werner Dittmann, 2020/01/14
  - Re: [Linphone-developers] ZRTP and TLS, Greg Troxel <=
    - Re: [Linphone-developers] ZRTP and TLS, Alexander Kraemer, 2020/01/16

Prev by Date: Re: [Linphone-developers] ZRTP and TLS
Next by Date: [Linphone-developers] Opus narrowband availability
Previous by thread: Re: [Linphone-developers] ZRTP and TLS
Next by thread: Re: [Linphone-developers] ZRTP and TLS
Index(es):
- Date
- Thread