> -----Original Message-----
> From: Vijeth D [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, March 20, 2001 2:39 AM
> To: [EMAIL PROTECTED]
> Subject: [Sip-implementors] Encryption for conference calls.
>
>
> hi,
> Can a user use encryption for conference calls done through
> multicast. If so, how does he know the public keys ( needed
> for encrypting the message)of all those who are prospective
> participants of the conference?
If I knew the answer to this, I would have finished my PhD eons ago :)
The problem of key management in multicast groups is amazingly hard, and
still the subject of research and experimentation. Until recently, the IRTF
(Internet Research Task Force) has been looking at the problem. There has
recently been a group formed in IETF, msec, which will standardize some
multicast security mechanisms. Apparently it is now believed that the
problem may be solvable under some constraints; specifically, a single group
manager for the multicast conference.
Of course, the right answer is - don't use multicast for conference calls.
Security in centralized conference servers is much easier assuming you trust
the conferencing server.
-Jonathan R.
---
Jonathan D. Rosenberg 72 Eagle Rock Ave.
Chief Scientist First Floor
dynamicsoft East Hanover, NJ 07936
[EMAIL PROTECTED] FAX: (973) 952-5050
http://www.cs.columbia.edu/~jdrosen PHONE: (973) 952-5000
http://www.dynamicsoft.com
_______________________________________________
Sip-implementors mailing list
[EMAIL PROTECTED]
http://lists.cs.columbia.edu/mailman/listinfo/sip-implementors
