[VOIPSEC] Fwd: An issue of trust?
Simon Horne
s.horne at packetizer.com
Thu Jun 15 19:50:18 CDT 2006
Brian
Actually, end to end trusted identity is very possible in H.323. H.235.2 is
the applicable standard . You can embedded digital identity information ie
X.509 cert from a trusted third party into the call setup message
(equivalent to the INVITE in SIP). The caller inserts the signed
certificate when placing the call and the remote party verifies it before
accepting the call.
Simon
At 05:25 AM 16/06/2006, you wrote:
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>Not wanting to bring the thread totally off topic, but isn't trusted
>identity the key issue in any secure transaction/relationship? And
>as of yet we still have not found a way to do this via computers yet.
> As someone pointed out to me, once we are born and the umbilical
>cord is cut we depend on third parties to verify who we are.
>
>
>Brian Honan
>BH Consulting
>Helping You Piece IT Together
>T: +353-1-4404065
>M: +353-868114066
>E: brian.honan at bhconsulting.ie
>W: www.bhconsulting.ie
>
>Supporting Global Security Week http://www.globalsecurityweek.com
>
>This message is for the named person's use only. If you received this
>message in error, please immediately delete it and all copies and
>notify the sender. You must not, directly or indirectly, use,
>disclose, distribute, print, or copy any part of this message if you
>are not the intended recipient. Any views expressed in this message
>are those of the individual sender and not of BH Consulting.
>- -----Original Message-----
>From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org]
>On Behalf Of Michael Slavitch
>Sent: 15 June 2006 22:10
>To: Voipsec at voipsa.org
>Subject: [VOIPSEC] Fwd: An issue of trust?
>
>There is one problem. They don't offer end-to-end trusted identity.
>It is not a networking issue.
>
>On 6/15/06, Smith, Donald < Donald.Smith at qwest.com> wrote:
> >
> > Most ISPs will provide anything your willing to pay for.
> > Nearly every ISPs offers performance and uptime SLA's some offer
> > DDOS SLA's.
> > Some offer various Managed Security products (firewalls, IDS, VPN
> > ...) with SLAs.
> >
> >
>_______________________________________________
>Voipsec mailing list
>Voipsec at voipsa.org
>http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>
>-----BEGIN PGP SIGNATURE-----
>Version: PGP 8.1
>
>iQA/AwUBRJHQP4u28IDxtc99EQJqYwCdG20Hm+ocHeuZlexeDP/MQo3F79oAnAr1
>2yBVlXGbruYN+15cpHM6y9gr
>=PI4m
>-----END PGP SIGNATURE-----
>
>
>_______________________________________________
>Voipsec mailing list
>Voipsec at voipsa.org
>http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
More information about the Voipsec
mailing list