Secure Call Implementation; Enabling Secure Calls - Cisco Small Business SPA2102 Administration Manual

Analog telephone adapters

Hide thumbs Also See for Small Business SPA2102:

Administration manual (233 pages)

Reconfiguration manual (2 pages)

Provisioning manual (116 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

Table of Contents

Configuring Voice Services

Secure Call Implementation

NOTE

Cisco Small Business ATA Administration Guide

This section describes secure call implementation with the ATA device . It includes

the following topics:

•

"Enabling Secure Calls" section on page 71

•

"Secure Call Details" section on page 72

•

"Using a Mini-Certificate" section on page 73

•

"Generating a Mini Certificate" section on page 73

This is an advanced topic meant for experience installers. See also the

Provisioning Guide

Enabling Secure Calls

A secure call is established in two stages. The first stage is no different from

normal call setup. The second stage starts after the call is established in the

normal way with both sides ready to stream RTP packets.

In the second stage, the two parties exchange information to determine if the

current call can switch over to the secure mode. The information is transported by

base64 encoding embedded in the message body of SIP INFO requests, and

responses using a proprietary format. If the second stage is successful, the ATA

device plays a special Secure Call Indication Tone for a short time to indicate to

both parties that the call is secured and that RTP traffic in both directions is being

encrypted.

If the user has a phone that supports call waiting caller ID (CIDCW) and that

service is enabled, the CID will be updated with the information extracted from the

Mini-Certificate received from the remote party. The Name field of the CID will be

prepended with a '$' symbol. Both parties can verify the name and number to

ensure the identity of the remote party.

The signing agent is implicit and must be the same for all ATAs that communicate

securely with each other. The public key of the signing agent is pre-configured into

the ATA device by the administrator and is used by the ATA device to verify the

Mini-Certificate of its peer. The Mini-Certificate is valid if it has not expired, and it

has a valid signature.

LVS

Table of Contents

Show Quick Links

Hide quick links:

Chapters

Table of Contents

Troubleshooting

This manual is also suitable for:

Spa2102-r1 Spa2102-eu Spa2102-r3 Spa2102-sf Spa3102-na Spa8000-g1 ... Show all

Secure Call Implementation; Enabling Secure Calls - Cisco Small Business SPA2102 Administration Manual

Secure Call Implementation

Enabling Secure Calls

Hide quick links:

Chapters

Troubleshooting

Related Manuals for Cisco Small Business SPA2102

Related Content for Cisco Small Business SPA2102

This manual is also suitable for:

Table of Contents