[VOIPSEC] [Fwd: draft-state-sip-relay-attack-00]
Iñaki Baz Castillo
ibc at aliax.net
Wed Mar 4 13:13:16 CST 2009
El Miércoles, 4 de Marzo de 2009, Ali Fessi escribió:
> One possible way to alleviate the problem could be that UAs must verify
> the identity of the other party, e.g. with a TLS tunnel and a
> certificate, before replying to a challenge (this would prevent Alice UA
> to reply to the challenge coming from Bob in message F8).
I don't think TLS is a feasible solution for SIP *today*. Not widely
implemented and not well implemented.
--
Iñaki Baz Castillo
More information about the Voipsec
mailing list