A different view on the nature of Phil Zimmermann's new work... (Was Phil Zimmerman to release VoIP Encryption Software(c.March))

[dan_york (at) Mitel.com]

Christian,

> My concern is that a new standard would send us "back to school" - for
> years. Privacy of VoIP calls might not be sexy, but it is a must in
> enterprise communications. I think everybody agrees that we don't have 
too
> much time to get this problem fixed.

Yes... I think we can all agree to that.  It's also not clear to me 
whether this will be a solution for enterprise communications (versus
personal communications)... don't know... have to wait for the spec. 

> There was a discussion about end to end security and it seemed like
> everybody agreed that S/MIME is not really the answer (too slow, picking 
up
> fast is impossible). I would be interested in how ZRTP handles the fast
> pickup (answer-after=0). 

Yes, it will be interesting to see.

> Phil is not a beginner - neither technically nor on how to get stuff 
through
> the politics of standard boards. That makes me think I should take a 
serious
> look at that.

Yes, I personally think we should, if only because the thorny issues 
around
key exchange between enterprises continue to be a difficult problem to 
solve 
and another suggestion is always helpful.  Perhaps its something we can 
use. 
Perhaps not.  Perhaps the approach can be combined with something else. 
We all will now join the waiting game to see what "it" actually 
is.........
(somehow I have a feeling we'll have some good discussion here in a month 
or so when the specification is actually released)

Regards,
Dan

-- 
Dan York, CISSP
Dir of IP Technology, Office of the CTO
Mitel Corp.     http://www.mitel.com
dan_york (at) mitel.com +1-613-592-2122
PGP key (F7E3C3B4) available for 
secure communication
_______________________________________________
Voipsec mailing list
Voipsec (at) voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org