[VOIPSEC] SRTP
Dan Wing
dwing at cisco.com
Wed Feb 22 18:01:52 CST 2006
> > I've never heard of SNOM, other than
> > http://spm.phy.bris.ac.uk/techniques/SNOM/ , but AFAIK
> > there *aren't*
> > really any "standard" key exchange methods in this space
> > yet so it it's
> > a bit unfair to call a proprietary solution "worthless".
>
> Actually I would say that any proprietary solution is
> worthless since you can't lots of different vendors to support
> it. Actually there are "standard" key exchange methods such
> as MIKEY, RFC 3830. However SNOM and OpenSIP project have
> gone with SDP security descriptions, while not an RFC yet,
> at least it is a document several vendors can point to vs
> a closed proprietary solution.
MIKEY is an RFC, however the mechanism to encode MIKEY messages
in SDP is also an Internet Draft (draft-ietf-mmusic-kmgmt-ext),
in the same state as sdescriptions. Both are in the RFC editor's
queue:
https://datatracker.ietf.org/public/pidtracker.cgi?command=view_id&dTag=7877
&rfc_flag=0
https://datatracker.ietf.org/public/pidtracker.cgi?command=view_id&dTag=1012
3&rfc_flag=0
The problem with MIKEY is getting all parties to implement a
common set of MIKEY modes (a problem similar to agreeing on
a common codec), agree on single network-wide pre-shared
secret (untenable on anything but a closed system) or agree
to use the same PKI(s).
-d
More information about the Voipsec
mailing list