So you think no one can hear you on VoIP? Well, think again.
Both signaling and media often travel in an unencrypted fashion over many networks and systems. Analyzing SIP traffic makes it easy to locate endpoints and attack vectors, and a simple RTP dump reveals all your private talks.
We will start by demonstrating how easy it is to record and listen to an unencrypted conversation, and listing some other common attacks.
When we know our enemies, we will learn about how to protect signaling with SIPS and media with SRTP and ZRTP, including their uses in WebRTC and emerging technologies.
Another live demo will show how some security measures such as SAS, while feeling a little Cold War-esque, can provide a very high degree of security.
Loading more stuff…
Hmm…it looks like things are taking a while to load. Try again?