[Live-devel] TLS over RTSP
Alejandro Ferrari
alejandro.ferrari at vixionar.com
Wed Oct 8 10:42:36 PDT 2014
Hi Ross,
Thanks for your detailed response, let me check some points.
* Why is not recommended use RTSP over TCP?
* Our camera work inside of a home, and push to cloud servers, I think in
this scenario, UDP will be not an issue, right?
* Has live555 a library to push from Android? I read many post but not
found nothing "official"
* Can guide me to some documentation, about how to extend business logic
with your server?, we need record all the incoming streams into mp4 to made
this available later to watch as VOD.
Thanks again!
Alejandro
2014-10-08 12:33 GMT-03:00 Ross Finlayson <finlayson at live555.com>:
> 1/ I think you mean "RTSP over TLS", not "TLS over RTSP".
>
> 2/ The "rtsps" URL scheme was defined only for the proposed RTSP 2.0
> protocol, which nobody (including us) implements.
>
> 3/ If it's only 'man-in-the-middle' attacks that you care about, then
> regular RTSP (digest) authentication should protect against that.
> (However, that does not provide any confidentiality of the RTSP or media
> traffic.)
>
> 4/ Note that even if you were to use encryption to provide confidentiality
> of the RTSP (TCP) traffic, that would nor provide any confidentiality of
> the media (RTP/RTCP, i.e., UDP) traffic, unless you are tunneling
> RTP/RTCP-over-TCP (which is something that we discourage, unless you have a
> firewall that blocks UDP packets.
>
> Nonetheless, if you are using the "LIVE555 Streaming Media" software to
> implement both the RTSP server and (all of) your RTSP clients, then you can
> implement RTSP over a TLS connection by setting up - at each end - a TLS
> connection, and then:
> - In each RTSP client, use the (otherwise optional) "socketNumToServer"
> parameter to "RTSPClient::createNew()" to specify the socket number of the
> TSL connection.
> - In your RTSP server, subclass "RTSPServer", and, in your subclass's
> constructor, pass the socket number of the TLS connection as the
> "ourSocket" parameter in your call to the "RTSPServer" constructor.
>
> Ross Finlayson
> Live Networks, Inc.
> http://www.live555.com/
>
>
> _______________________________________________
> live-devel mailing list
> live-devel at lists.live555.com
> http://lists.live555.com/mailman/listinfo/live-devel
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.live555.com/pipermail/live-devel/attachments/20141008/02d02457/attachment.html>
More information about the live-devel
mailing list