Secure SIP calls using TLS with SRTP

(This article in still in progress)

To start using TLS with SRTP:

– In main Settings choose “Transport” and enable “TLS”.

Taki transport settings UDP TCP TLS

Taki transport settings: UDP, TCP, TLS.

– In main Settings choose “Security” and set you level of trust.

TLS settings for digital certificates validation

TLS settings for digital certificates validation.

“Verify server” – when enabled, Taki will validate the certificate of the remote server to which it connects.

“Use system CA certificates” – when enabled, Taki will use SSL certificates installed in your OS.  To manage those certificates in Blackberry OS, open system “Settings” application and choose “Security and Privacy” then “Certificates”. In this application you can import your CA certificate in case your server is using self-signed certificate. If your server is using a certificate signed by one of the root certificates then no import is required.

BlackBerry OS Settings application

BlackBerry OS Settings application.

BlackBerry OS Settings application. Security and Privacy options.

BlackBerry OS Settings application. Security and Privacy options.

BlackBerry OS Settings application. Certificates settings

BlackBerry OS Settings application. Certificates settings.

BlackBerry OS Settings application. Certificates settings. Choosing certificate.

BlackBerry OS Settings application. Certificates settings. Choosing certificate.

“Use built-in CA certificates” – this is an alternative to “Use system CA certificates”. When enabled, Taki will use Root certificates extracted from a list used by Mozilla project. These certificates are embedded in Taki during compilation time.

Comments are closed.