Table of Contents
Advertisement
Avaya B179 SIP Conference Phone
Even if Transport is set to TLS or SIPS, the Avaya B179 still accepts incoming UDP or TCP
signalling.
On phone:
> SETTINGS > ADVANCED > (PIN) > ACCOUNTS > TRANSPORT (6,2,1,3).
TLS Settings
If you select TLS or SIPS under the transport setting, an additional setting appears on the
page. The settings are described below.
It may be possible to use secure communication without a certificate and make changes to
these settings. In some cases, if you choose TLS or SIPS, the SIP server requires a certificate for
user/client verification. This should be specified in the account information.
You can further increase security by requiring verification of the server, or the client when the
Avaya B179 acts as a server for incoming calls. For more information, see Appendix C: Using
EAP TLS authentication.
The supported encryptions are SHA-1 and SHA-256 1024 and 2048 bits.
Method
Negotiation timeout
UDP is the default protocol for SIP.
TCP (Transmission Control Protocol) is a protocol on the transport
layer in the Internet Protocol Suite. TCP is the standard protocol for
Internet communication. TCP keeps track of all individual packets
of data, ensuring that they reach the receiver and are put together
properly. TCP is not the default protocol for SIP, because it is slower
and uses more bandwidth than UDP.
With UDP and TCP, SIP packets travel in plain text. TLS (Transport
Layer Security) is a cryptographic protocol that provides security
and data integrity for communications over TCP/IP networks. TLS
encrypts the datagrams of the transport layer protocol in use. The
secure connection may be to the end device or to the first server
(usually the SIP server where the phone is registered). There is no
guarantee that there is a secure channel to the end point, but be-
cause the SIP server is the only part receiving the user authentication,
this is still a rather secure solution.
SIPS (Secure SIP) is a security measure that uses TLS to provide an
encrypted end-to-end channel for the SIP messages. To use SIPS,
however, both VoIP devices and the SIP server must support it.
The TLS includes a variety of security measures. The methods are
defined in the versions of the standard (SSL, SSL v2, SSL v3, TLS v1, TLS
v2). The default method is SSLv23, which accepts both SSL v2 and v3.
The TLS settings are negotiated during a call setup (both incoming
and outgoing). If this negotiation does not succeed within the speci-
fied time (seconds) the negotiation is aborted. Timeout is disabled
Installation and Administration Guide
24
Hide quick links:
Advertisement
Table of Contents
