Security (SRTP/TLS)

Copyright (c) Global IP Telecommunications GmbH | Phone +49 6445 279971 0
 		Vorheriges Thema  Nächstes Thema 

Security (SRTP/SSL)


Select "SRTP/TLS" as your wanted encryption method.

Function


Description 

Activate security

Enable the encryption by choosing "Yes". After finishing all settings click "OK" that the phone reconnect to the SIP server.





TLS Port

This Port (TCP) is explicitly needed for secure phone connects. Ask your administrator or provider to get the right port number.





Certificate

Registering with SRTP/TLS to the SIP server is only possible with a valid certificate. You will get such a certificate from your administrator or provider.

Often the certificate files are provided as downloads. You can install the certificate with a double click onto the file.





SAVP

YES (SAVP):

The audio data are encrypted (SRTP). Only if SAVP is active, all data will be encrypted totally between software and SIP-Servcie (Provider, PBX).


NO (AVP):


Only the SIP communication is encrypted, NO AUDIO DATA (RTP)!!! This variant (AVP) is used often used to override pre-reserverd SIP Ports in routers (e.g. Speedport, Vodafone Box).


Normally the SIP part can always be encrypted between software and SIP service (Provider, PBX). If any party expects a full encrypted communication (TLS + SRTP), the connection will be terminated if any part isn't encrypted.





Meaning TLS

Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide security and data integrity for communications over the Internet.





Meaning SRTP

The Secure Real-time Transport Protocol (or SRTP) defines an encrypted profile of RTP (Real-time Transport Protocol).





Meaning AES

The Advanced Encryption Standard (AES) is an encryption standard adopted by the U.S. government and was announced by National Institute of Standards and Technology (NIST) since 2000

AES is the first publicly accessible and open cipher approved by the NSA for secret information.






Symbols of the encryption status

Funktion


Beschreibung 

Green key

Encrypted connection to the SIP server has been established.

(Be sure to pay attention to SAVP)





Red key

Encrypted connection to the SIP ist NOT possible.





Green frame

The connection on this line is encrypted.





Yellow frame

The status of the line is determined.





Red frame

The connection on this line is NOT encrypted.






IMPORTANT!

SRTP without TLS

We only support SRTP in combination with TLS. Only with TLS the secure key exchange can be guaranteed. Regarding to that it's not possible to use only SRTP without TLS.




Open SSL Components

This application uses Open SSL components for the secure data transfer.

The SSL components are under Copyright of "The OpenSSL Project".

Copyright (c) 1998-2008 The OpenSSL Project.  All rights reserved.
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit. (http://www.openssl.org/)

THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.


The Open SSL components are including the Original SSLeay license.

Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)

This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)
This product includes software written by Tim Hudson (tjh@cryptsoft.com)

THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.