Contents

Title and Copyright Information

Preface

• Audience
• Related Documents
• Documentation Accessibility

1 WebRTC Session Controller Security Overview

• Basic Security Considerations
• Overview of WebRTC Session Controller Security
• Understanding the WebRTC Session Controller Environment

2 Performing a Secure WebRTC Session Controller Installation

• Installing WebRTC Session Controller Securely
  • About Access to Files Created During Installation
  • About Password Policies
• Post-Installation Configuration
  • Setting Up User Accounts to Lock and Expire
  • Enabling SSL for LDAP Authentication Providers

3 Implementing WebRTC Session Controller Security

• About WebRTC Session Controller Security
• Default and Optional Security Settings
  • Enabling TLS (SSL)
  • Handling Wildcard SSL Certificates
• Client to WebRTC Session Controller Authentication
  • Form-Based Authentication
  • Basic Authentication
  • HTTP Authentication
  • Digest Authentication
  • OAuth Providers
  • Two-way SSL Authentication
  • Guest Access
• Internal Security
  • Securing Coherence
  • Securing Ports
  • Signaling and Media DoS Protection
• WebRTC Session Controller to SIP Security
  • Securing SIP
  • Handling Challenges from the IMS Core