Secure call analysis and screening of a secure connection

摘要

In one embodiment, a secure computer telephony integration (CTI) connection is established between a call analysis and/or screening device and a call control agent. The call analysis device sniffs secure media packets between the endpoints and receives CTI events from the call control agent via the secure CTI connection. The device correlates the CTI events with the secure media packets, enabling the device to decrypt the packets to perform voice quality troubleshooting or call screening in real-time.

主权项

1. An apparatus, comprising:
a communication interface operable to communicate with an associated call control agent associated with a call control server, wherein the call control agent is operable to communicate, via the communication interface, media keying material to at least first and second communication endpoints to establish a secure, bidirectional real-time voice communication session between the communication endpoints; and decryption and correlation logic associated with a voice analysis device communicatively coupled with the communication interface, wherein the decryption and correlation logic is operable to pre-establish an authenticated connection with the call control agent, wherein the decryption and correlation logic obtains, via the communication interface, computer telephony integration events from the call control agent, wherein the computer telephony integration events comprise communication of the media keying material from the call control agent to the voice analysis device, and wherein the communication interface receives telephone integration events with new media keying material according to a key derivation rate, wherein the decryption and correlation logic is responsive to correlate the computer integration events with the new keying material to corresponding secure media packets and to decrypt the corresponding secure media packets employing the new media keying material, wherein a first secure transport layer security connection is established between the communication interface and a call control agent through a computer telephony integration connection for receiving the computing telephony integration events, wherein a second secure transport layer security connection is established between the communication endpoints, wherein a session key is received into the decryption and correlation logic from the associated call control agent, in accordance with a pre-established authenticated connection, through the secure computer telephony integration channel for decrypting signals from the associated call control agent; wherein the decryption and correlation logic sniffs via the communication interface a secure media packet sent from the first endpoint to the second endpoint, wherein the decryption and correlation logic sniffs via the communication interface a secure media packet sent from the second endpoint to the first endpoint, wherein the decryption and correlation logic correlates the computer telephony integration events with the secure media packet sent from the first endpoint to the second endpoint and decrypts the secure media packet with the keying material from the correlated computer telephony events in accordance with the received session key, and wherein the decryption and correlation logic correlates the computer telephony integration events with the secure media packet sent from the second endpoint to the first endpoint and decrypts the secure media packet with the keying material from the correlated computer telephony events; and control logic coupled to the communication interface and operable to control the operation of the communication interface, wherein the control logic performs voice quality troubleshooting for the real-time voice communication session occurring between the first and second communication endpoints by evaluating the decrypted secure media packets.