> -----Original Message-----
> From: Bob Penfield [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, May 30, 2001 10:51 AM
> To: [EMAIL PROTECTED]; Manish Ramesh K
> Subject: Re: [Sip-implementors] (no subject)
>
>
> Manish,
>
> The typical method for encrypting SIP is to use a TLS(SSL)
> connection to the
> SIP proxy. The TLS stack would decrypt the message before the
> SIP stack
> would see it
SIP itself also defines an encryption mechanism at the SIP layer. This
encryption is meant for end-to-end exchange, so that proxies never (and
cannot) decrypt the encrypted parts of the message. In this case, the fields
used by proxies would not be encrypted; only things like the SDP and Subject
headers, which proxies don't use, would be in the clear.
That said, the encryption mechanisms at the SIP layer are being revisited
now that PGP has been deprecated. S/MIME or PGP/MIME would provide a more
robust approach, and work in a similar way, in the sense that only those
headers needed by the proxies would be in the clear.
-Jonathan R.
> ----- Original Message -----
> From: "Manish Ramesh K" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Wednesday, May 30, 2001 2:59 AM
> Subject: [Sip-implementors] (no subject)
>
>
> > hi all,
> > If a Sip message is encrypted how does the proxy knows about it.
> > Suppose that a proxy receives a message and it has stored it in a
> string,now how does a proxy know that it has to decrypt it
> before it is
> parsed?.i hope that i am clear.bye
> > Manish
---
Jonathan D. Rosenberg, Ph.D. 72 Eagle Rock Ave.
Chief Scientist First Floor
dynamicsoft East Hanover, NJ 07936
[EMAIL PROTECTED] FAX: (973) 952-5050
http://www.jdrosen.net PHONE: (973) 952-5000
http://www.dynamicsoft.com
_______________________________________________
Sip-implementors mailing list
[EMAIL PROTECTED]
http://lists.cs.columbia.edu/mailman/listinfo/sip-implementors
