[Freeswitch-dev] VoIP Security

R P Herrold herrold at owlriver.com
Fri Apr 4 18:51:15 MSD 2014

On Fri, 4 Apr 2014, Brian West wrote:

> https://www.aclu.org/files/natsec/nsa/vpn-and-voip-exploitation-with-hammerchant-and.pdf
> Thoughts?

The techniques are not new or unknown.  The pervasiveness of 
the implementation surprises many

Addressing side channel leakage (implementation weaknesses) 
which is used to crack open the crypto remains an ongoing 
task.  MOving to using SRTP everywhere, adding hooks to use 
real hardware based RNGs, and considering if we need to move 
to some sort of 'perfect forward security' comes to mind.  
Reviewing the strength of the DH key exchange when used 
(another NSA compromise vector) would be useful

-- Russ herrold

Join us at ClueCon 2013 Aug 6-8, 2013
More information about the FreeSWITCH-dev mailing list