%docentities; ] >

Gergely Kovacs Iptel.org

gergo@iptel.org

2007 Iptel.org

Auth Identity module provides functionalities for securely identifying originators of SIP messages. This module has two basic service: authorizer - authorizes a message and adds Identity and Identity-Info headers verifier - verifies an authorized message Known limitations in this version: authorizer and verifier support all SIP requests except for CANCEL and REGISTER verifier does not support the subjectAltName extension of certificates

This module does not depend any other module.

This module needs the following headers and libraries: OpenSSL (version 0.9.8 or higher) for cryptographic functions libcurl for HTTP, HTTPS functions If you'd like to use TLS module too then use the corresponding LIB line in auth_identity's Makefile

the Authorizer service needs to make the public key, which conveyed in a certificate, available over HTTPS or HTTP for verifiers. The domain the authorizer is responsible for and the domain part of the URL of the certificate must be the same. This service needs access to the private key too.