They have implemented ZRTP for end to end security. It works with a diffie hellman key exchange, while protecting against man-in-the-middle attackers by comparing Short Authentication Strings (SAS). When you know the voice of the other person you can exclude Eve.
see https://jitsi.org/Documentation/ZrtpFAQ Regards Dominik On 23.05.2013 20:01, Jonas Wielicki wrote: > Jitsi is XMPP or SIP. For the text-part, they have built-in support for > OTR. Otherwise, there is no end-to-end secrecy as far as I know. > > For voicecalls, they have something similar, with some shared-secret > verification which is validated using the text-channel, which is best > secured with OTR I guess. > > I know of no throughout reviews of their model though. > > regards, > Jonas > > _______________________________________________ > cryptography mailing list > [email protected] > http://lists.randombit.net/mailman/listinfo/cryptography
signature.asc
Description: OpenPGP digital signature
_______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
