Secure provisioning – Grandstream SIP Device Provisioning Guide User Manual

Page 9

Text mode
Original mode

Grandstream Networks, Inc.

SIP Device Provisioning Guide

Page 9 of 9

www.grandstream.com

Last Updated: 9/2012

ECURE

ROVISIONING

Although the XML configuration file can be encrypted and the encryption algorithm itself is
regarded as safe and strong by using AES with 256-bit key length, it remains a question on how
to bootstrap and provision the initial XML encryption password. There are several methods to
provide solutions to this:

1. Use legacy binary configuration file to set the initial XML encryption password. The

legacy binary file is encrypted and it generally regarded safe.

2. Use HTTPS and use client side authentication. This is the industry standard approach and

has the strongest safety.

This manual is related to the following products:

Provisioning Guide