Media Encryption - Polycom RMX 2000 Administrator's Manual

Media Encryption

Encryption is available at the conference and participant levels, based on
AES 128 Media Encryption and DH 1024 Key Exchange standards.
Media Encryption guidelines:
• Encryption is not available in all countries and it is enabled in the
MCU license. Contact Polycom Support to enable it.
• Endpoints must support both AES 128 encryption and DH 1024 key
exchange standards which are compliant with H.235 (H.323) to
encrypt and to join an encrypted conference.
• Encryption can be applied at the conference level or participant level.
System handling of encrypted and non-encrypted participants is
enabled in the configuration file.
• The encryption mode of the endpoints is not automatically
recognized, therefore the encryption mode must be set for the
conference or the participants (when defined).
• Conference level encryption must be set in the Profile, and cannot be
changed once the conference is running.
• Mixing encrypted and non-encrypted endpoints in one conference is
supported only for H.323 defined participants. Different states of
encryption for predefined IP participants is possible, based on a
system flag settings (ALLOW_ENCRYPT_IN_PARTY_LEVEL).
• In Cascaded conferences, to encrypt the conference the link between
the cascaded conferences must be encrypted.
Conference Access
You can define whether access to conferences for encrypted and non-
encrypted IP participants is done at the conference level or at the
participant level.
Polycom RMX 2000 Administrator's Guide
6-13