Menu
Now I test webrtc communicate with SIP Client(sx20)
I send invite message with webrtc sdp. but sip client answer has not finger print, and
sip client answer is not SRTP just RTP.
So I need to turn off SRTP in WEBRTC. Can I do it?
and one more question... I think, finger print is encrypt key,
so, sender and receiver need to each key? we need two key? sender's key, receive's key?
or we need just sender' key?
297
WebRTC uses two pre-existing protocols, Datagram Transport Layer Security (DTLS) and the Secure Real-time Transport Protocol (SRTP).
In short, yes, WebRTC is secure. Secure Real Time Protocol (SRTP ) encryption and other security standards are mandated for all WebRTC sessions. And creating unencrypted WebRTC connections is forbidden by the Internet Engineering Task Force (IETF ) standards.
DTLS-SRTP uses DTLS to exchange keys for the SRTP media transport. SRTP requires an external key exchange mechanism for sharing its session keys, and DTLS-SRTP does that by multiplexing the DTLS-SRTP protocol within the same session as the SRTP media itself.
SRTP is simply RTP with “secure” in front: secure real-time protocol. RTP is a protocol, but SRTP is not. Rather, it's the security layer added to RTP for encryption. SRTP extends RTP to include encryption and authentication so that all WebRTC conversations are as secure as possible.
For testing purposes, Chrome Canary and Chrome Developer both have a flag which allows you to turn off SRTP, for example:
cd /Applications/Google\ Chrome\ Canary.app/Contents/MacOS/
./Google\ Chrome\ Canary --disable-webrtc-encryption
Then your SDP with the RTP setup would look more like:
m=audio 17032 RTP/AVPF 111 126
Instead of:
m=audio 17254 UDP/TLS/RTP/SAVPF 111 126
answered Sep 29 '22 21:09
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With