[VOIPSEC] SRTP

[Dan Wing]

> Interesting discussion (as always).  In investigations here I 
> have been trying to gather from the vendor community what the 
> current adoption is of SRTP within handsets, ATAs, etc.  So 
> far it seems the majority of the big players in this space do 
> not support SRTP and, in fact, the processors within
> their phones are incapable of doing so because they are often 
> running close to their peak.  Many speak of 'planning to 
> support' but nothing in concrete.  Have others found anything 
> different than this?

Cisco and Avaya have both been shipping SRTP for a year or two.
And snom has SRTP.

I know Cisco's SRTP works on our 5-year-old hardware, notably 
the Cisco 7960.  SRTP is only available on Cisco's SCCP phones
and on Cisco's MGCP-controlled PSTN gateways.

> SRTP to me seems to be the preferred path for hard CPE (SIP 
> Phone/ATA/etc.).  I agree there are other alternatives for 
> the soft-client approach but Marketing tells me hard phones 
> are a requirement by most customers for 'work from home' users.

Yeah, people like hard phones.  SRTP ensures the media is 
protected end to end.  A security tunnel (IPsec, Frame Relay,
MPLS, SSL VPN, DTLS VPN) can't provide the same level of 
security as SRTP's end-to-end encryption.

-d