[VOIPSEC] Voipsec Digest, Vol 8, Issue 26
rgm at icsalabs.com
Wed Sep 7 18:57:25 BST 2005
At 07:40 PM 9/6/2005, Lee Dilkie wrote:
>This is why the TLS/SSL solution, with keys in plaintext, is so
>appealing. There is no delay as there is no key negotation (other than
>the trival "here's the key I want you to use!"). And TLS/SSL is also why
>we're bemoaning having to switch to tcp connections. Things are just
>never easy, eh?
I STRONGLY feel we need to drop discussions of plaintext keys that
are handled by multiple servers, in different trust domains. This is
no different that what the AAA group struggled with and spent years
trying to come up with some solution (like Housley's CMS approach).
PLEASE let us concentrate on provably strong keying mechanisms. Ones
that work and consumers will buy.
Senior Technical Director
ICSA Labs, a division of Cybertrust, Inc.
E: rgm at icsalabs.com
There's no limit to what can be accomplished if it doesn't matter who
gets the credit
More information about the Voipsec