authentication of authorized user agents

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

authentication of authorized user agents

David Thomson
Hi,

I am working on a project where a custom sip client (user agent) will be integrated into a suite of applications to provide voip.  The sip client will be working with Kamailio.  The goal is to ensure that the user agent is authorized for communication with kamailio before allowing any calls to be made.  Conventional username/password authentication for individual users will also be used once the user agent has been authenticated.

Currently other applications in the suite use a digital signature in the http headers when communicating with server processes.  If the signature is validated by the server process then the applications identity is validated and communication with the server process is allowed.

Is it possible to include a public key and digital signature in the register events and have kamailio perform the transformation to validate the user agent's identity?  If so which module provides such functionality?  Has something like this been implemented in the past?  Thanks for any input.

ttyl,
Dave

_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: authentication of authorized user agents

Ali Pey
Hi Dave,

First of all, this is opensips mailing list not Kamailio.

Secondly, you can pass the users sip credentials (sip username and password) through your http secure connection and pass it to your sip stack (user agent) to register with that credentials. 

Regards,
Ali Pey


On Tue, Sep 18, 2012 at 9:53 PM, David Thomson <[hidden email]> wrote:
Hi,

I am working on a project where a custom sip client (user agent) will be integrated into a suite of applications to provide voip.  The sip client will be working with Kamailio.  The goal is to ensure that the user agent is authorized for communication with kamailio before allowing any calls to be made.  Conventional username/password authentication for individual users will also be used once the user agent has been authenticated.

Currently other applications in the suite use a digital signature in the http headers when communicating with server processes.  If the signature is validated by the server process then the applications identity is validated and communication with the server process is allowed.

Is it possible to include a public key and digital signature in the register events and have kamailio perform the transformation to validate the user agent's identity?  If so which module provides such functionality?  Has something like this been implemented in the past?  Thanks for any input.

ttyl,
Dave

_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users



_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users