how to Improve security in minisip?
Mikael Magnusson
mikma264 at gmail.com
Fri May 18 14:43:20 CEST 2007
On Fri, May 18, 2007 at 01:20:06PM +0200, Cesc wrote:
> Werner,
>
> I scanned through it and it looks worth reading.
>
> As for the discussion, DTLS vs ZRTP vs Mikey ... well, without being
> too much involved and having not too much to back my case up, DTLS
> looks promising, as one same protocol (implementation) may help solve
> most of the problems ...
> - secure SIP UDP over DTLS
> - secure RTP with DTLS
> But as I am a strong believer that the one-fits-all does not exist or
> is not possible in IETF ... so be it, we'll have to make do with all
> three and let the user pick :)
>
> Cesc
>
AFAIK there are no fully working open source DTLS implementation.
OpenSSL has one, but it's buggy.
I have a patch for Minisip, but it's old and needs an update. I haven't
bothered because of the buggy DTLS in OpenSSL.
Mikael
More information about the Minisip-devel
mailing list