[VOIPSEC] Voipsec Digest, Vol 8, Issue 26

Fri Sep 9 04:29:26 BST 2005

 Hello Randell et al,

"Enterprise" should refer to both inter & intra company calls splitting
this now would be a serious mistake for the future of VOIP.  We need to
work with this assumption.

Regards,

Michael

-----Original Message-----
From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
Behalf Of Randell Jesup
Sent: Thursday, September 08, 2005 6:12 PM
To: alex.deacon at gmail.com
Cc: Voipsec at voipsa.org; Albert
Subject: Re: [VOIPSEC] Voipsec Digest, Vol 8, Issue 26

Alex Deacon <alex.deacon at gmail.com> writes:
>If by "general marketplace" you mean people like my mom and 
>grandmother, then an argument could be made that no encryption is 
>better than a delay.  However if you mean enterprise usage, then 
>encryption, and a provably strong keying mechanism as Robert mentioned,

>are very important...if not mandatory.

        I was referring to your mom and grandmother.  However...

        Be careful - "enterprise" is a slippery word.  Does that include
inter-company calls, or only intra-company?  What about calls to other
companies who the user has no previous contact?  What about when they
call someone at home, or on a cell?  What if those calls happen to be
all-IP, not PSTN/POTS, do they need to be secure?  If a call to a office
user is forwarded (over IP) to a home phone, what do you do?  And do you
really mean that an enterprise would consider a solution with a circa
0.5-1sec delay on answer to be acceptable for general use?  I don't.

        Enterprises can use PKI's and avoid the delay - but not when
calling someone outside the enterprise, generally.  Sometimes not even
calling other offices.

>On 08 Sep 2005 04:14:43 -0400, Randell Jesup < rjesup at wgate.com 
><mailto:rjesup at wgate.com> > wrote:
>
>"Christopher A. Martin" < chris at InfraVAST.com 
><mailto:chris at InfraVAST.com> > writes:
>>And as was pointed out earlier in the thread by another person, the 
>>delay is acceptable. People are becoming accustomed to delays, 
>>otherwise cell phones would not be as popular as they are today.
>
>       This is in no way close to acceptable in the marketplace.  The 
>general marketplace will choose no encryption over that sort of delay.
>(And that would hurt the market and the users.)

--
Randell Jesup, Worldgate (developers of the Ojo videophone), ex-Amiga OS
team rjesup at wgate.com

_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org

-----------------------------------------
***********************************************************************
***************
Confidentiality Warning: This message and any attachments are intended
only for the use of the intended recipient(s), are confidential, and
may be privileged. If you are not the intended recipient, you are
hereby notified that any review, retransmission, conversion to hard
copy, copying, circulation or other use of this message and any
attachments is strictly prohibited. If you are not the intended
recipient, please notify the sender immediately by return e-mail, and
delete this message and any attachments from your system. Thank you.

Information confidentielle: Le présent message, ainsi que tout fichier
qui y est joint, est envoyé à l'intention exclusive de son ou de ses
destinataires; il est de nature confidentielle et peut constituer une
information privilégiée. Nous avertissons toute personne autre que le
destinataire prévu que tout examen, réacheminement, impression, copie,
distribution ou autre utilisation de ce message et de tout fichier qui
y est joint est strictement interdit. Si vous n'êtes pas le
destinataire prévu, veuillez en aviser immédiatement l'expéditeur par
retour de courriel et supprimer ce message et tout document joint de
votre système. Merci.
***********************************************************************
***************