phone proxy

Unanswered Question
Aug 21st, 2008

Does Phone Proxy 1.0 offer encrypted communications or do you have to use the ASA to get encryption? My research says that the proxy doesn't offer any security between phone and proxy but I have a really upset customer and keeping my fingers crossed.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ranpierce Fri, 08/22/2008 - 09:01

We have phone proxy 1.0 I will check for you.


We are a very secure site.

Jonathan Schulenberg Sat, 08/23/2008 - 09:21

The phone uses TLS encryption to protect the session back to the ASA if setup properly. There are some DoS vulnerabilities to PhoneProxy though as it is not really authenticating the device in any way other than to bring up the TLS proxy. The UCM node that the ASA is pointed to is somewhat exposed to the outside world because of this, esp if a phone is lost/stolen as every phone uses the same key.

Also, I believe the first release does not support encrypting the PC Port but please confirm the docs. When I saw this in alpha form in a class, it wasn't there and no one was saying it would be...

Nicholas Poole Tue, 08/26/2008 - 10:28

The PhoneProxy appliance supports optional encryption. The encryption can be turned on just between the remote internet phones and the PP, without the need for encryption back to CCM


This Discussion