Security & Compliance

A layered security architecture to protect your professional communications.

Defense-in-Depth Architecture

SipLine combines multiple security layers: encrypted transport, voice encryption, credential protection and plugin isolation to safeguard your communications.

TLS Transport

SIP signaling encryption via TLS (TCP/TLS).

SDES-SRTP

Voice encryption via SDP crypto negotiation.

DPAPI Protection

Credentials encrypted with Windows DPAPI.

Plugin Isolation

Signed DLLs, sealed classes, watchdog circuit breaker.

sec-monitor.sh

$ sipline-audit --runtime --deep-scan

[INFO] Scanning SIP Stack for vulnerabilities...

[INFO] Verifying SRTP Cipher Suite: AES_256_GCM_OK

[INFO] Certificate Authority Check: VALID

[SECURE] Runtime environment isolated. All checks passed.

ENCRYPTED_SESSION_ACTIVE

GDPR Compliant

Data hosted on European servers (France/Germany via OVHcloud and Hetzner). Privacy by Design approach.

License Anti-Fraud

RSA-signed licenses, SPKI certificate pinning, clock-tampering detection and hardware fingerprint verification.

Certificate Pinning

SPKI pinning on license server connections protects against DNS spoofing and MITM attacks.

Plugin SDK Security

Plugins are loaded in isolated AssemblyLoadContext with Authenticode signature verification. A watchdog monitors performance and automatically disables misbehaving plugins.