Save & share
Tell a friend
Print this page
Share:
Tell a friend
SRTP/SDES
SRTP is the Secure Real-Time Transport Protocol, standardized in 2004 by IETF with RFC3711. It is used to provide confidentiality, message authentication and replay protection for the RTP traffic carrying voice in a VoIP infrastructure.
SRTP defines how RTP packets have to be encrypted and protected against wiretapping, but does not define how a common key between the parties of a call has to be agreed upon.
The most diffused key agreement system to encrypt VoIP in an end-to-site security model with SRTP is SDES (Session Description Protocol Security Descriptions for Media Streams). It has been standardized in 2006 by IETF with RFC4568.
SDES is a very simple and effective key exchange protocol for end-to-site security model, as one of the two peers of a VoIP call sends/proposes a key for SRTP encryption over the SIP signaling channel. Next, the other party accepts it and encrypted audio flow proceeds.
Obviously, the SIP connection from SIP client and SIP server has to be protected against third party by encrypting and authenticating , otherwise an eavesdropper could intercept the key.
That’s why the SDES key exchange works only through a SIP/TLS (Transport Layer Security) encrypted communication channel with server-side digital certificate authentication, the same way as HTTPS works.
See the SIP/TLS section for precise details on how SIP/TLS and TLS work.
Protection of SRTP packets integrity is provided by HMAC keyed Hashing for Message Authentication standard defined in IETF RFC2104.
SRTP packets are encrypted with AES-128. It is a segmented Integer Counter Mode, with encryption key at the length of 128 bits and default session salt key at the length of 112 bits. This is an example how an SDES key looks like by viewing the details of a SIP packet:
Via: SIP/2.0/TLS 172.20.25.100:2049;branch=z9hG4bK-s5kcqq8jqjv3;rport
From: "123" <sips:123@ietf.org>;tag=mogkxsrhm4
To: <sips:*97@ietf.org;user=phone>
Call-ID: 3c269247a122-f0ee6wcrvkcq@snom360-000413230A07
CSeq: 1 INVITE
Max-Forwards: 70
Contact: <sip:123@172.20.25.100:2049;transport=tls;line=gyhiepdm>;reg-id=1
User-Agent: snom360/6.2.2
Accept: application/sdp
Allow: INVITE, ACK, CANCEL, BYE, REFER, OPTIONS, NOTIFY, SUBSCRIBE, PRACK, MESSAGE, INFO
Allow-Events: talk, hold, refer
Supported: timer, 100rel, replaces, callerid
Session-Expires: 3600;refresher=uas
Min-SE: 90
Content-Type: application/sdp
Content-Length: 477
v=0
o=root 2071608643 2071608643 IN IP4 172.20.25.100
s=call
c=IN IP4 172.20.25.100
t=0 0
m=audio 57676 RTP/AVP 0 8 9 2 3 18 4 101
a=crypto:1 AES_CM_128_HMAC_SHA1_32 inline:WbTBosdVUZqEb6Htqhn+m3z7wUh4RJVR8nE15GbN
a=rtpmap:0 pcmu/8000
a=rtpmap:8 pcma/8000
a=rtpmap:9 g722/8000
a=rtpmap:2 g726-32/8000
a=rtpmap:3 gsm/8000
a=rtpmap:18 g729/8000
a=rtpmap:4 g723/8000
a=rtpmap:101 telephone-event/8000
a=fmtp:101 0-16
a=ptime:20
a=encryption:optional
a=sendrecv
For detailed overview of the SDES protocol handshake see below:
A very important value of SRTP with an SDES key exchange is its interoperability, as it is supported by most of the major VoIP desktop phones (for example Cisco, Avaya and Snom).
For an extremely compliance sensitive customer, a custom-based AES-256 SRTP solution can be provided. But note that it is not a standard solution, based on a non-authorized internet draft draft-ietf-avt-srtp-big-aes (“The use of AES-192 and AES-256 in Secure RTP” by McGrew of Cisco Systems).
In partnership with:
Follow us on:
