[jitsi-dev] Fwd: Encrypted audio conferences


#1

For some reason this mail was not sent to the list subscribers. Trying
again...

Cheers,
Andreas

···

-------- Original Message --------
Date: Mon, 19 Aug 2013 09:50:01 +0200
From: Andreas Kuckartz <a.kuckartz@ping.de>
To: Jitsi Developers <dev@jitsi.org>
Subject: Encrypted audio conferences

What are current best practice for encrypted audio conferences ?

Cheers,
Andreas


#2

Is this a generic question or are you asking what currently works with
Jitsi?

--sent from my mobile

···

On 20 Aug 2013 07:41, "Andreas Kuckartz" <a.kuckartz@ping.de> wrote:

For some reason this mail was not sent to the list subscribers. Trying
again...

Cheers,
Andreas

-------- Original Message --------
Date: Mon, 19 Aug 2013 09:50:01 +0200
From: Andreas Kuckartz <a.kuckartz@ping.de>
To: Jitsi Developers <dev@jitsi.org>
Subject: Encrypted audio conferences

What are current best practice for encrypted audio conferences ?

Cheers,
Andreas


#3

I asked:

What are current best practice for encrypted audio conferences ?

Emil Ivov:

Is this a generic question or are you asking what currently works with
Jitsi?

Both (ideally the answers will be the same :wink:

I would also be interested to know if there is something which is not
yet working in Jitsi but would be great to have.

( One reason for the question is that I want to help adding Jitsi to Tails:
https://labs.riseup.net/code/issues/6236 )

Cheers,
Andreas


#4

Hey Andreas,

I asked:

What are current best practice for encrypted audio conferences ?

Emil Ivov:

Is this a generic question or are you asking what currently works with
Jitsi?

Both (ideally the answers will be the same :wink:

Well, the generic answer would involve more use cases than those that are relevant to Jitsi.

Here's our current status: when hosting a conference call with Jitsi, all the legs between the organiser/mixer and the participants are secured with SRTP/ZRTP. No specific issues there.

When using Jitsi Videobridge, there is *currently* no encryption at all. We are working on this.

I would also be interested to know if there is something which is not
yet working in Jitsi but would be great to have.

( One reason for the question is that I want to help adding Jitsi to Tails:
https://labs.riseup.net/code/issues/6236 )

Well, the DNS leaks that you have mentioned there are an interesting one!

Also, while at the IETF, we had a meeting with Jacob Appelbaum and Linus Nordberg from TOR. We thought that it would be nice to integrate JTor within Jitsi and offer the option of using it without the need to download a dedicated TOR client.

This would be a nice project too.

Emil

···

On 20.08.13, 08:14, Andreas Kuckartz wrote:

--
https://jitsi.org


#5

Emil Ivov:

Here's our current status: when hosting a conference call with Jitsi,
all the legs between the organiser/mixer and the participants are
secured with SRTP/ZRTP. No specific issues there.

Should XMPP or SIP be preferred? (And why?)

Can both be used in the same conference call?

When using Jitsi Videobridge, there is *currently* no encryption at all.
We are working on this.

Is already decided how to implement this?

Cheers,
Andreas


#6

Emil Ivov:

Here's our current status: when hosting a conference call with Jitsi,
all the legs between the organiser/mixer and the participants are
secured with SRTP/ZRTP. No specific issues there.

Should XMPP or SIP be preferred?

No. Same thing.

(And why?)

Can both be used in the same conference call?

Currently it is possible to do this when Jitsi is the host. The same thing will eventually be possible with videobridge as well.

When using Jitsi Videobridge, there is *currently* no encryption at all.
We are working on this.

Is already decided how to implement this?

Well the bridge will be the DTLS endpoint. Fingerprints will be retrieved from the bridge by the focus (i.e. the organiser of the conference) and will the go through signalling.

Cheers,
Emil

···

On 20.08.13, 11:09, Andreas Kuckartz wrote:
--
https://jitsi.org