Secret Security applies an End-To-Site security model , where audio data is encrypted on one call-end and decrypted on PBX side. This model, used within Enterprise VoIP Security Suite, uses the same paradigm of VPN: the call is secured outside of the company network and goes in clear inside the company network. The main encrypts audio stream on each end of the call and on PBX. PBX acts as encrypted media exchanger and encryption key dealer. So each end connects securely with common
, using VPN style security model.Main advantages of End-To-Site security model are:
...
Call is automatically secured during call setup so it does not require any human intervention. As soon as call is established you can immediately start to talk with securely your peer. The overall security verification system is based on TLS digital certificate verification. The
Enterprise client automatically automatically verifies
the digital certificate of
the SIP/TLS server and
(if it's
recognized and authentic, authenticated) then the connection will be automatically secured.
| Subtitle |
|---|
| Prefix | figure |
|---|
| SubtitleText | BlackBerry |
|---|
| AnchorName | bb encryption |
|---|
|  Image Modified
|
| | Subtitle |
|---|
| Prefix | figure |
|---|
| SubtitleText | Android |
|---|
| AnchorName | andr encryption |
|---|
| Image Modified |
| | Subtitle |
|---|
| Prefix | figure |
|---|
| SubtitleText | iPhone |
|---|
| AnchorName | iphone encryption |
|---|
| Image Modified |
|
...
This security model is exactly the same as HTTPS with internet browser, given the fact that on
there is a valid digital certificate the call can be considered secure. By default,
will not accept invalid SSL certificates, such as:
...