Wireshark-dev: [Wireshark-dev] Plugin for Lawful Interception of SSL/TLS messages ...
Date: Wed, 1 Nov 2006 20:07:21 +0530



I’m doing a study project on Voip security using TLS. We can send H.323 messages in an encrypted TLS tunnel. To debug these messages we need a plug-in in Wireshark which actually decrypts the TLS and the tunneled messages. However, I guess it is not so easy to decrypt the data sent in the TLS tunnel.


I heard that there is Lawful Interception services with which can get/trace the keys exchanged during TLS handshake and use the keys for further decryption of data may be by feeding the key to TLS plug-in or so.


Does Wireshark have support for this kind of functionality?

Can any one help me in giving more details and information in this area?





The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments.

WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email.