Siemens hipath 80 User Manual
Administration
A31003-O1010-M100-9-76A9, 05/05/2008
3-24
HiPath 8000 - OpenStage Family, Administration Manual
administration.fm
Speech Encryption (V1R4.x upwards)
3.4
Speech Encryption (V1R4.x upwards)
With software version V1R4.x or higher, secure speech transmission via SRTP is possible.
If Use secure calls is activated, the encryption of outgoing calls is enabled, and the phone is
capable of receiving encrypted calls. An icon in the call view tells the user whether a call is se-
cure or not. If an active call changes from secure to insecure, e. g. after a transfer, a popup win-
dow and an alert tone will notify the user. For enabling secure calls, a TLS connection to the
HiPath 8000 is required.
capable of receiving encrypted calls. An icon in the call view tells the user whether a call is se-
cure or not. If an active call changes from secure to insecure, e. g. after a transfer, a popup win-
dow and an alert tone will notify the user. For enabling secure calls, a TLS connection to the
HiPath 8000 is required.
If SIP server certificate validation resp. Backup SIP server certificate validation is activat-
ed, the phone will validate the server certificate sent by the HiPath 8000 in order to establish a
TLS connection. The server certificate is validated against the root certificate from the trusted
certificate authority (CA), which must be stored on the phone first. For delivering the root cer-
tificate, a DLS (Deployment Software) server is required.
ed, the phone will validate the server certificate sent by the HiPath 8000 in order to establish a
TLS connection. The server certificate is validated against the root certificate from the trusted
certificate authority (CA), which must be stored on the phone first. For delivering the root cer-
tificate, a DLS (Deployment Software) server is required.
Administration via WBM
System > Security
Administration via Local Phone
>
For secure calls, it is required that both endpoints support SRTP. The secure call in-
dication tells the user that the other endpoint has acknowledged the secure connec-
tion.
dication tells the user that the other endpoint has acknowledged the secure connec-
tion.
>
In order to use SRTP, the phone must be configured for NTP (for further information
please see Section 3.5.4, “Date and Time”). The reason is that the key generation
(MIKEY) uses the system time of the particular device as a basis. Thus, encryption
will only work correctly if all devices have the same UTC time.
please see Section 3.5.4, “Date and Time”). The reason is that the key generation
(MIKEY) uses the system time of the particular device as a basis. Thus, encryption
will only work correctly if all devices have the same UTC time.
|
--- Administration
|
--- System
|
--- Security
|--- Server cerfificate
|--- Backup certificate
|--- Backup certificate
|
--- Use secure calls