Difference between revisions of "Security Overview"

From reSIProcate
Jump to navigation Jump to search
 
Line 1: Line 1:
BaseSecurity (will be renamed security)
+
The Security (will be renamed FileSystemSecurity) object can cache, fetch CAs, manipulate SMIME, store certs, The stack always knows about the security object. Inherits from BaseSecurity (will be renamed security).  
 
 
The Security (will be renamed FileSystemSecurity) object can cache, fetch CAs, manipulate SMIME, store certs, The stack always knows about the security object.  
 
  
 
WinSecurity - Inherits from Security. Incomplete. Can store your certs with the Windows cert management system. Reading/writing/removing PEMs.  
 
WinSecurity - Inherits from Security. Incomplete. Can store your certs with the Windows cert management system. Reading/writing/removing PEMs.  
Line 7: Line 5:
 
MacSecurity - Inherits from Security. Incomplete. Can store your certs with the Mac OS cert management system. Reading/writing/removing PEMs.
 
MacSecurity - Inherits from Security. Incomplete. Can store your certs with the Mac OS cert management system. Reading/writing/removing PEMs.
  
Security attributes – signed, encrypted, and identity strings which get populated by DUM and go into the SIP message. If DUM sees encryption or signature, DUM will check the signature and will find the most secure body located in the MIME structure that is understandable and decrypt it. DUM will not tell you about signature’s validity or throw away invalid messages.  
+
Security attributes – signed, encrypted, and identity strings that get populated by DUM and go into the SIP message. If DUM sees encryption or a signature, DUM will check the signature and will find the most secure body located in the MIME structure that is understandable and decrypt it. DUM will not tell you about signature’s validity or throw away invalid messages.  
  
 
TODO: Document the proposed API for sending encrypted and signed messages.
 
TODO: Document the proposed API for sending encrypted and signed messages.

Revision as of 14:34, 14 June 2005

The Security (will be renamed FileSystemSecurity) object can cache, fetch CAs, manipulate SMIME, store certs, The stack always knows about the security object. Inherits from BaseSecurity (will be renamed security).

WinSecurity - Inherits from Security. Incomplete. Can store your certs with the Windows cert management system. Reading/writing/removing PEMs.

MacSecurity - Inherits from Security. Incomplete. Can store your certs with the Mac OS cert management system. Reading/writing/removing PEMs.

Security attributes – signed, encrypted, and identity strings that get populated by DUM and go into the SIP message. If DUM sees encryption or a signature, DUM will check the signature and will find the most secure body located in the MIME structure that is understandable and decrypt it. DUM will not tell you about signature’s validity or throw away invalid messages.

TODO: Document the proposed API for sending encrypted and signed messages.