[Freeswitch-dev] VoIP Security
R P Herrold
herrold at owlriver.com
Fri Apr 4 18:51:15 MSD 2014
On Fri, 4 Apr 2014, Brian West wrote:
> https://www.aclu.org/files/natsec/nsa/vpn-and-voip-exploitation-with-hammerchant-and.pdf
>
> Thoughts?
The techniques are not new or unknown. The pervasiveness of
the implementation surprises many
Addressing side channel leakage (implementation weaknesses)
which is used to crack open the crypto remains an ongoing
task. MOving to using SRTP everywhere, adding hooks to use
real hardware based RNGs, and considering if we need to move
to some sort of 'perfect forward security' comes to mind.
Reviewing the strength of the DH key exchange when used
(another NSA compromise vector) would be useful
-- Russ herrold
Join us at ClueCon 2013 Aug 6-8, 2013
More information about the FreeSWITCH-dev
mailing list