GNOME Bugzilla – Bug 335594
Integrate the ZRTP encryption protocol
Last modified: 2020-06-06 16:31:05 UTC
Here's is Phil Zimmerman's explaination of it: I think it's better than the other approaches to secure VoIP, because it achieves security without reliance on a PKI, key certification, trust models, certificate authorities, or key management complexity that bedevils the email encryption world. It also does not rely on SIP signaling for the key management, and in fact does not rely on any servers at all. It performs its key agreements and key management in a purely peer-to-peer manner over the RTP packet stream. It interoperates with any standard SIP phone, but naturally only encrypts the call if you are calling another Zfone client. This new protocol has been submitted to the IETF as a proposal for a public standard, to enable interoperability of SIP endpoints from different vendors. More info is available here: http://www.philzimmermann.com/EN/zfone/index.html . There is already a Linux implementation you may be able to steal code from. I'm sure that if you contacted him he would be more than happy to try and integrate ZRTP into it's first real product. To me it looks as if ZRTP is going to become another PGP, this might be a good bandwagon for Ekiga to jump on (and possibly jumpstart).
I have already tried to build zfone but it failed :( I wrote a bugreport but no answer :(( Anyway it could be a really good choice, I think. I could like it if it works. :)
I'm waiting to see the license of his code. I e-mailed him to show my interest, but I got ignored, which doesn't motivate me much.
Damien proposed the support for ZRTP as a Google Summer of Code 2006 objective for ekiga as part of the gnome project : http://live.gnome.org/SummerOfCode2006/Ideas
The code for libZRTP is dual-licensed, GPL and commercial, see http://zfoneproject.com/lic_policy.html so that shouldn't be a problem. libZRTP can be downloaded with the linux client at http://www.zfoneproject.com/EN/downloads/index.html (looks like you have to register as a beta-tester) I'd love this feature, and while I doubt I could be much help with coding I'd certainly help with testing.
That's a good news. I can't code either but if you search somebody to test it. I'm your man :)
To avoid the need to register I downloaded libzrtp and have uploaded it to my webspace. The actual code doesn't mention it being GPLed, but it must be because he mentions it is so on his website, and several other GPL programs are already using it (at least MiniSIP). Note that I won't keep the link around forever, so don't treat it as permanent. http://www.njw.me.uk/linux/libzrtp-0.3.1.tar.gz Also, documentation on the library is at http://zfoneproject.com/docs/sdk/man/html/index.html
The GNU Telephony folks have implemented zrtp in their ccrtp library, see http://wiki.gnutelephony.org/index.php/Secure_Call for more. I don't know if it's the kind of thing you could use directly (technically, I mean - it's GPL licensed), but it should at least provide a useful reference.
*** Bug 334511 has been marked as a duplicate of this bug. ***
Hey. Is adding support for ZRTP/SRTP still in progress? Or has this been abandoned? Cheers, Chris.
Jitsi provides a good example of a ZRTP implementation, with ZRTP working for both SIP and XMPP/Jingle: http://jitsi.org/index.php/Documentation/ZrtpFAQ http://jitsi.org/index.php/Main/Features Some background information on this is here: https://wiki.ubuntu.com/secureVOIP There is also the nightlies of cSIPSIMPLE (https://code.google.com/p/csipsimple/), which implements ZRTP for SIP calls on Android.
Unfortunately, I have not enough time to look into this. It seems that one of ZRTP and SRTP (or both?) is supported by underlying library (ptlib, opal), and we need to make it work in ekiga too.
I have some bad news. As added recently on ptlib or opal library (I do not remember in which file I saw it), SRTP and ZRTP need coding, they are not suported currently.
Ekiga is not under active development anymore: https://gitlab.gnome.org/Infrastructure/Infrastructure/-/issues/273 Ekiga saw its last release 7 years ago. The last code commits were 4 years ago. Closing this report as WONTFIX as part of Bugzilla Housekeeping to reflect reality. Please feel free to reopen this ticket (and transfer the project to GNOME Gitlab, as GNOME Bugzilla is deprecated) if anyone takes the responsibility for active Ekiga development again in the future.