Appendix G - Secure Communication Mode; Certificate Configuration And Management; Certificate Template Requirements - Polycom RealPresence 800s Administrator's Manual

Secure Communication Mode
The RealPresence Collaboration Server can be configured to work in Secure Mode by configuring
the Collaboration Server and the Collaboration Server Web Client to work with SSL/TLS.
In this mode, a SSL/TLS Certificate is installed on the MCU, setting the MCU Listening Port
to secured port 443.
TLS is a cryptographic protocol used to ensure secure communications on public networks.
TLS uses a Certificate purchased from a trusted third party Certificate Authority to authenticate
public keys that are used in conjunction with private keys to ensure secure communications
across the network.
The Collaboration Server supports:
•
•
SSL 3.0 utilizes 1024-bit RSA public key encryption.
TLS certificates can be generated using the following methods: CSR, PFX and PEM; each
giving different options for Encryption Key length. Table G-1 lists the SIP TLS Encryption Key
length support for the various system components.
Table G-1
System Component
SIP Signaling
Management
LDAP

Certificate Configuration and Management

All Polycom devices used in a Maximum Security Environment require security certificates.

Certificate Template Requirements

The specific security certificate requirements for Collaboration Servers used in Maximum
Security Environments are:
•
Polycom, Inc.
TLS 1.0
SSL 3.0 (Secure Socket Layer)
SIP TLS - Encryption Key Support by System Component
Key Generation Method
CSR
PFX / PEM
CSR
Support of 2048-bit encryption keys.
Appendix G
Key Length (bits)
2048
1024 or 2048
2048
Key generated by
Collaboration
Server
User
Collaboration
Server
G-1