Media Encryption

The Communications API platform employs standard real-time media (audio, video, and screen-share) encryption technology from WebRTC. It uses AES-128 to encrypt media, and HMAC-SHA1 to verify data integrity. The media is transported over Secure Real-Time Protocol (SRTP) and the encryption keys are exchanged using the Datagram Transport Layer Security (DTLS) protocol.

The Communications APIs platform will temporarily decrypt the media when received from a client, and then immediately re-encrypt before sending to other clients in the conference. This short decryption/re-encryption process is necessary for managing the conference media routing, and also for supporting features such as recording and streaming. Your media is never transported over the Internet unencrypted.

Currently, the Communications APIs platform does not support end-to-end encryption.