Asterisk Encryption August 10, 2007
Posted by bbarrett in Asterisk, VoIP.add a comment
Recently we were investigating the privacy controls one can put in place with Asterisk. I found that Asterisk does not yet have support for SRTP or SIP over TCP (which would enable secure SIP using TLS).
VoIP calls – like all network traffic – can be listened to by potentially malicious people. However voice calls are probably in greater need than other network traffic because it tends to be more personal. People have grown to trust phones as the best alternative to face to face correspondence for privacy. People would not be happy knowing that a third party could record their conversation and play it back at a later time. However, not all voice traffic needs encrypting – after all the chances of a malicious user on an internal network is very low.
