[Bug 311579] New: RFE: Option to encrypt protocols with ZRTP

Wed Dec 12 16:52:01 GMT 2012

https://bugs.kde.org/show_bug.cgi?id=311579

            Bug ID: 311579
          Severity: wishlist
           Version: 0.5.1
          Priority: NOR
          Assignee: kde-telepathy-bugs at kde.org
           Summary: RFE: Option to encrypt protocols with ZRTP
    Classification: Unclassified
                OS: Linux
          Reporter: david.alston at gmail.com
          Hardware: Other
            Status: UNCONFIRMED
         Component: auth-handler
           Product: telepathy

ZRTP provides a way to encrypt messages that is more secure against
man-in-the-middle attacks.  It can work with any protocol, but I'm especially
interested in SIP/Video/XMPP

When the connection is being encrypted a key is generated that is then
confirmed by both parties.  If each party sees a different key then a
man-in-the-middle attack is taking place.

For clients that support ZRTP (Twinkle, Jitsi, et al) this would provide an
encryption method that is easy to use and trust.

Reproducible: Always

Expected Results:  
1. Dial a SIP contact
2. SIP contact accepts connection
3. Click a padlock icon to initiate ZRTP encryption
4. Both you and your SIP contact see a verification string
5. If both verification strings match then the call is secure

ZRTP Protocol information..
http://en.wikipedia.org/wiki/ZRTP
http://www.voip-info.org/wiki/view/ZRTP

Other ZRTP Clients..
http://www.twinklephone.com/
https://jitsi.org/

Some ZRTP libraries..
http://www.gnutelephony.org/index.php/GNU_ZRTP
http://www.icall.com/developers/open-zrtp

-- 
You are receiving this mail because:
You are the assignee for the bug.