Voice of VOIPSA

Many good sessions today including Christian Stredicke, CEO of VoIP phone specialist SNOM, and Bogdan Materna
(VOIPSA member and VoIPShield Systems’ CEO). Stredicke’s talk was on the subject of securing VoIP media.  To summarize to the barebones, he said that it’s done and dusted for most aspects: securing signalling means TLS; securing streams means SRTP and key exchange will likely use Sdescriptions (SDES).  Well, perhaps not so simple as that in the area of key exchange, he cited 11 proposals
still on the table, including 5 variants of MIKEY and 2 of SDES.  Also Phil Zimmerman’s ZRTP technology Stredicke cited as interesting, but “too late”.  Stredicke said that if ZRTP had arrived two years ago, it would for sure be a leading contender, but many implementations of SDES already exist.

The day closed with an excellent panel discussion chaired by Dorgham Siselem, and featuring panellists Christian Stredicke,
Micheal Haberler (Enum.at), Saverio Niccolini (NEC) and Hannes Tschofening (Siemens).  They tackled a wide range of subjects including “Is Legal Intercept Evil?” and “Will we dial numbers in 10 years time, or SIP URIs?”.  I also saw Niccolini’s presentation yesterday, where he referred to the Threat Taxonomy project at VOIPSA, so nice to see our work being used in practice.

Final thoughts: Nice social crowd, interesting sessions and well orgnanized.  Altogether a very worthwhile event, I’m looking forward to the next one.

This entry was posted on Friday, June 2nd, 2006 at 2:10 pm and is filed under VoIP Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.