Details
-
Type:
Improvement
-
Status: Closed
-
Severity:
Minor
-
Resolution: Done
-
Affects Version/s: SVN
-
Target Release Version/s: None
-
Component/s: Channels/chan_sip/SRTP
-
Security Level: None
-
Labels:None
-
Environment:Linux x86_64
-
Source Revision Number:402525
-
Regression:No
Description
There is a version of libsrtp that supports AES-NI and AES-GCM mode:
https://github.com/cisco/libsrtp/pull/34
More on AES-GCM mode:
http://tools.ietf.org/html/draft-ietf-avtcore-srtp-aes-gcm-10
https://crypto.stanford.edu/RealWorldCrypto/slides/gueron.pdf
AES-GCM mode improves the performance of SRTP on systems with and without support for the AES-NI instruction set.
Performance test results pending.
Issue Links
- is contained by
-
ASTERISK-26190 [patch] SRTP: Enable AES-256 and AES-GCM.
-
- Closed
-
- is a clone of
This patch supports AEAD_AES_GCM_128_8 with Asterisk trunk. Tested with pjsip 2.1 with AES-GCM patches applied.
pjsip source here:
https://github.com/krisk84/PJSIP