After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 335594 - Integrate the ZRTP encryption protocol
Integrate the ZRTP encryption protocol
Status: RESOLVED WONTFIX
Product: ekiga
Classification: Applications
Component: general
unspecified
Other All
: Normal enhancement
: ---
Assigned To: Ekiga maintainers
Ekiga maintainers
gnome[unmaintained]
: 334511 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2006-03-22 23:59 UTC by Daniel Guido
Modified: 2020-06-06 16:31 UTC
See Also:
GNOME target: ---
GNOME version: Unversioned Enhancement



Description Daniel Guido 2006-03-22 23:59:02 UTC
Here's is Phil Zimmerman's explaination of it:
I think it's better than the other approaches to secure VoIP, because it
achieves security without reliance on a PKI, key certification, trust models,
certificate authorities, or key management complexity that bedevils the email
encryption world. It also does not rely on SIP signaling for the key management,
and in fact does not rely on any servers at all. It performs its key agreements
and key management in a purely peer-to-peer manner over the RTP packet stream.
It interoperates with any standard SIP phone, but naturally only encrypts the
call if you are calling another Zfone client. This new protocol has been
submitted to the IETF as a proposal for a public standard, to enable
interoperability of SIP endpoints from different vendors.

More info is available here: http://www.philzimmermann.com/EN/zfone/index.html .
 There is already a Linux implementation you may be able to steal code from.

I'm sure that if you contacted him he would be more than happy to try and
integrate ZRTP into it's first real product.  To me it looks as if ZRTP is going
to become another PGP, this might be a good bandwagon for Ekiga to jump on (and
possibly jumpstart).
Comment 1 Szabolcs Gyuris 2006-03-23 08:19:30 UTC
I have already tried to build zfone but it failed :(

I wrote a bugreport but no answer :((

Anyway it could be a really good choice, I think.
I could like it if it works. :)
Comment 2 Damien Sandras 2006-03-23 09:25:28 UTC
I'm waiting to see the license of his code.

I e-mailed him to show my interest, but I got ignored, which doesn't motivate me much.
Comment 3 Snark 2006-04-20 14:41:21 UTC
Damien proposed the support for ZRTP as a Google Summer of Code 2006 objective for ekiga as part of the gnome project : http://live.gnome.org/SummerOfCode2006/Ideas
Comment 4 Nick White 2007-01-15 14:37:03 UTC
The code for libZRTP is dual-licensed, GPL and commercial, see http://zfoneproject.com/lic_policy.html so that shouldn't be a problem.
libZRTP can be downloaded with the linux client at http://www.zfoneproject.com/EN/downloads/index.html (looks like you have to register as a beta-tester)
I'd love this feature, and while I doubt I could be much help with coding I'd certainly help with testing.
Comment 5 Szabolcs Gyuris 2007-01-15 14:57:52 UTC
That's a good news.

I can't code either but if you search somebody to test it. I'm your man :)
Comment 6 Nick White 2007-01-30 22:18:27 UTC
To avoid the need to register I downloaded libzrtp and have uploaded it to my webspace. The actual code doesn't mention it being GPLed, but it must be because he mentions it is so on his website, and several other GPL programs are already using it (at least MiniSIP).

Note that I won't keep the link around forever, so don't treat it as permanent.

http://www.njw.me.uk/linux/libzrtp-0.3.1.tar.gz

Also, documentation on the library is at http://zfoneproject.com/docs/sdk/man/html/index.html
Comment 7 Nick White 2007-03-18 13:31:14 UTC
The GNU Telephony folks have implemented zrtp in their ccrtp library, see http://wiki.gnutelephony.org/index.php/Secure_Call for more.
I don't know if it's the kind of thing you could use directly (technically, I mean - it's GPL licensed), but it should at least provide a useful reference.
Comment 8 Eugen Dedu 2009-05-22 19:39:32 UTC
*** Bug 334511 has been marked as a duplicate of this bug. ***
Comment 9 Christoph Anton Mitterer 2012-01-14 00:59:17 UTC
Hey.

Is adding support for ZRTP/SRTP still in progress? Or has this been abandoned?

Cheers,
Chris.
Comment 10 lists 2012-01-22 07:19:21 UTC
Jitsi provides a good example of a ZRTP implementation, with ZRTP working for
both SIP and XMPP/Jingle:
http://jitsi.org/index.php/Documentation/ZrtpFAQ
http://jitsi.org/index.php/Main/Features

Some background information on this is here:
https://wiki.ubuntu.com/secureVOIP

There is also the nightlies of cSIPSIMPLE
(https://code.google.com/p/csipsimple/), which implements ZRTP for SIP calls on
Android.
Comment 11 Eugen Dedu 2012-01-23 10:08:48 UTC
Unfortunately, I have not enough time to look into this.  It seems that one of ZRTP and SRTP (or both?) is supported by underlying library (ptlib, opal), and we need to make it work in ekiga too.
Comment 12 Eugen Dedu 2012-02-12 18:18:27 UTC
I have some bad news.  As added recently on ptlib or opal library (I do not remember in which file I saw it), SRTP and ZRTP need coding, they are not suported currently.
Comment 13 André Klapper 2020-06-06 16:31:05 UTC
Ekiga is not under active development anymore:
https://gitlab.gnome.org/Infrastructure/Infrastructure/-/issues/273

Ekiga saw its last release 7 years ago. The last code commits were 4 years ago.

Closing this report as WONTFIX as part of Bugzilla Housekeeping to reflect reality. Please feel free to reopen this ticket (and transfer the project to GNOME Gitlab, as GNOME Bugzilla is deprecated) if anyone takes the responsibility for active Ekiga development again in the future.