Masking sensitive data in SIP messages
[Iteration 107. In progress]
SIP Server can now prevent sensitive data from displaying in incoming and outgoing SIP messages and SIP Server's log (Call Manager thread). When enabled, SIP Server replaces:
- all private SIP header values with a single asterisk, and
- SIP message body content with the phrase CONTENT FILTERED
SIP Server does not replace the content of type application/sdp and it replaces application/vnd.radisys.msml+xml in the SIP message body only when user data is passed in it.
Feature Configuration
Set the x-sip-mask-sensitive-data configuration option to true in the [log] section of the SIP Server Application.
x-sip-mask-sensitive-data
Setting: [log] section, Application level
Default Value: false
Valid Values: true, false
Changes Take Effect: Immediately
true - SIP Server masks display of sensitive data in SIP messages. false - SIP Server does not mask display of sensitive data in SIP messages.
Specifies whether SIP Server masks sensitive data in SIP messages and SIP Server log files.
- If set to true, SIP Server masks all private SIP headers values and SIP message body content of all types with the exception of application/sdp and application/vnd.radisys.msml+xml. In case of application/vnd.radisys.msml+xml SIP message body content, SIP Server masks it only when user data is passed in it.
- If set to false, SIP Server does not mask sensitive data in SIP messages and logs.