raiarea-1----Page:23
1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24  25 

Architecture: Authenticating the Association Through external PKI This seems problematic Through security of signalling channel Confidentiality (TLS, S/MIME) Integrity only Voice authentication Protocols more flexible than specified Could use ZRTP with fingerprints, MIKEY-DH with voice authentication, MIKEY-DH w/o certificate validation, etc. Not really a function of handshake but of design style With some exceptions

PPT Version