Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1206
Views
1
Helpful
2
Replies

Jabber Guest for iOS - encryption

Go to solution
wsurala01
Level 1
Level 1

‎03-16-2015 09:33 AM

Hi All,

I am developing iOS application with JabberGuest SDK and I need the calls to be absolutely secure and encrypted. Therefore, I have to questions:

1. Are the connections with proper server encrypted by default? If no, what steps should I take to encrypt it?

2. If there is a possibility to encrypt a connection, what technology is used for the encryption? During the app submission process I'll need to list that.

I will be grateful for any informative assistance, I have already searched through the DevNet.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jocreed
Cisco Employee
Cisco Employee

‎03-25-2015 08:25 PM

The https traffic between mobile client and server, the browser and server negotiates the TLS version/encryption. As of Expressway 8.5, SSL3.0 is disabled by default, TLS 1.2 or above should be negotiated.

For the media, the JG server can be configured to enable/disable SRTP. If enabled, it uses AES_CM_128_HMAC_SHA1_32, which is a 128 bit key with authentication tag of 32 bits.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
jocreed
Cisco Employee
Cisco Employee

‎03-18-2015 05:38 AM

Let me see if i can find out for sure how encryption with the guest SDK is implemented. 

Although, I would imagine if you are successfully connecting to a CUP server the default connection from that server would be a TLS encrypted connection unless you specifically turned off the encryption in the settings.  If you are using it to connect to a different kind of Jabber/XMPP server I would imagine it would also require an encrypted connection by default, but you would have to check the documentation of the third party jabber/XMPP server.

I will let you know about the specifics of the the Jabber SDK for iOS as soon as I find out something.

Go to solution
jocreed
Cisco Employee
Cisco Employee

‎03-25-2015 08:25 PM

The https traffic between mobile client and server, the browser and server negotiates the TLS version/encryption. As of Expressway 8.5, SSL3.0 is disabled by default, TLS 1.2 or above should be negotiated.

For the media, the JG server can be configured to enable/disable SRTP. If enabled, it uses AES_CM_128_HMAC_SHA1_32, which is a 128 bit key with authentication tag of 32 bits.

0 Helpful
Customers Also Viewed These Support Documents