Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Here are descriptions of the more relevant changes in

Brand
brandsuiteshort
20 22.10

Enterprise Voice Security Suite

Call Hold for PrivateWave Professional

During a PrivateWave conversation it is now possible to answer a native GSM/3G/4G call putting automatically On-Hold the VoIP call. An information Pop-Up will notify the other user that the conversation is suspended waiting for the ending of the native call.

Apple Push Notification support

It is no longer necessary to keep the iOS client open and connected (it is better to close it when not used). Recipients are reachable even if the application is closed.

SSL Certificate Pinning

In order to detect and block man-in-the-middle attacks, clients adds an extra step beyond the normal X.509 certificate validation. After obtaining the server's certificate in the standard TLS handshake, the client checks the public key in the server's certificate chain against a hash of public key for the server name. Available optionally only for on-premise solution.

Mutual authentication with X.509 certificate

Clients can be authenticated by PrivateServer through X.509 certificates. The private key is securely stored on the device and can not be exported. PrivateServer can periodically acquire and manage the list of certificate revocation (CRL), safely and through secure protocol (HTTPS). Available optionally only for on-premise solution.

Two-factor authentication for client activation (Email & SMS)

At the time of provisioning, client is authenticated by providing a secure link for activation in which a PIN, sent on another channel (e.g. email), must be specified. Available optionally only for on-premise solution. 

Multilevel security

Each call made by a PrivateWave client produces encrypted traffic based on the recipient of the secure call:

  • if the call recipient is another PrivateWave client, the call is made using the ZRTP protocol for key exchange
  • if the recipient of the call is not a PrivateWave client, the call is made using the SDES protocol

Available optionally only for on-premise solution.

Advenced conference room service

Conference administrator is able to send an invitation link by SMS/email to extend the conference to participants that can access the conference clicking on the received link. For each conference room, the administrator is able to see a full list of participants in the conference call, with the possibility of taking actions on them (mute - unmute - kick). Available optionally only for on-premise solution.

On-line presence masking

Known contacts are now shown with a blue icon regardless of the on-line state.

Automatic expire of Secure Messages

Even if application PIN is set, PrivateServer administrator can configure an expire time out of read messages. Available optionally only for on-premise solution.

Long message

Secure message maximum length is now 1000 characters.

New contact adding

User can add a new phone number to the phone address book directly from PrivateWave application.

GrandStream VoIP phone support

Support of Android based GrandStream GXV3275 IP phone.

Privateserver changes

Kamailio SIP proxy integration

...

Biometric authentication

It is possible to log in to the application by face or fingerprint recognition in addition to the numeric PIN

Remote wipe

It is now possible to remotely wipe all app data in case of phone loss

Update notification

The application shows an alert when an update is available on the app store

Image rotation

You can rotate images before sending them

One-click history deletion

You can delete all your message and call history with a single click

Last access visualization

The application shows the date and time of the last access made by the user in order to detect possible abusive accesses

PrivateServer Changes

Asterisk 16 LTS

Upgrade of Asterisk PBX to version 16.9.0 LTS

Malicious SIP request protection

Protection against malicious SIP requests sent by attackers has been enhanced

HTTPS DDoS attack mitigation

Protection against HTTPS DDoS attack has been enhanced