By Date:	<-- -->
By Thread:	<-- -->

A different view on the nature of Phil Zimmermann'snew work... (Was Phil Zimmerman to release VoIPEncryption Software(c.March))

From: "Paine, Richard H" <richard.h.paine (at) boeing.com>
Date: Mon, 6 Feb 2006 06:39:48 -0800

 Dan, The Open Group developed an architecture (published in Feb 2004)
called the Secure Mobile Architecture (SMA)
(http://www.opengroup.org/bookstore/catalog/select.tpl?text=secure+mobil
e+arch) that answers many of the VOIP security issues, including
handoff.  It does require a PKI, so it primarily addresses enterprises,
but it can generally be applied to ISPs as well.  Boeing has implemented
a version of the SMA and has a prototype running on several campuses.
It addresses fast handoff for VOIP WLAN calls and end-to-end security,
both over the wire and over the wireless.  A cryptographic identity is
included in every packet and looks just like IPSEC.  It also allows for
transparent handoff between IPv4 and IPv6.  If you want to know more,
contact me.

Richard H. Paine
Success is getting what you want, happiness is liking what you get!
Cell:  206-854-8199
IPPhone:  425-373-8964
Email:  richard.h.paine (at) boeing.com 


-----Original Message-----
From: dan_york (at) Mitel.com [mailto:dan_york (at) Mitel.com] 
Sent: Friday, February 03, 2006 11:30 AM
To: voipsec (at) voipsa.org
Subject: Re: [VOIPSEC] A different view on the nature of Phil
Zimmermann'snew work... (Was Re: Phil Zimmerman to release
VoIPEncryption Software(c.March))

Christian,

> My concern is that a new standard would send us "back to school" - for

> years. Privacy of VoIP calls might not be sexy, but it is a must in 
> enterprise communications. I think everybody agrees that we don't have
too
> much time to get this problem fixed.

Yes... I think we can all agree to that.  It's also not clear to me
whether this will be a solution for enterprise communications (versus
personal communications)... don't know... have to wait for the spec. 

> There was a discussion about end to end security and it seemed like 
> everybody agreed that S/MIME is not really the answer (too slow, 
> picking
up
> fast is impossible). I would be interested in how ZRTP handles the 
> fast pickup (answer-after=0).

Yes, it will be interesting to see.

> Phil is not a beginner - neither technically nor on how to get stuff
through
> the politics of standard boards. That makes me think I should take a
serious
> look at that.

Yes, I personally think we should, if only because the thorny issues
around key exchange between enterprises continue to be a difficult
problem to solve and another suggestion is always helpful.  Perhaps its
something we can use. 
Perhaps not.  Perhaps the approach can be combined with something else. 
We all will now join the waiting game to see what "it" actually
is.........
(somehow I have a feeling we'll have some good discussion here in a
month or so when the specification is actually released)

Regards,
Dan

--
Dan York, CISSP
Dir of IP Technology, Office of the CTO
Mitel Corp.     http://www.mitel.com
dan_york (at) mitel.com +1-613-592-2122
PGP key (F7E3C3B4) available for
secure communication
_______________________________________________
Voipsec mailing list
Voipsec (at) voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org

_______________________________________________
Voipsec mailing list
Voipsec (at) voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org

Prev by Date: Voipsec Digest, Vol 14, Issue 5
Next by Date: VoIP traffic model
Previous by thread: Voipsec Digest, Vol 14, Issue 5
Next by thread: VoIP traffic model
Index(es):
- Main
- Thread