Masking sensitive data in SIP messages

[Iteration 107. In progress]

FDS: https://intranet.genesys.com/pages/viewpage.action?spaceKey=RDSIPS&title=%5BFDS%5D+Mask+Sensitive+Data+in+SIP+Server

SIP Server can now prevent sensitive data from displaying in incoming and outgoing SIP messages and SIP Server's log files (Call Manager thread). When enabled, SIP Server replaces:

• all private SIP header values with a single asterisk, and
• SIP message body content with the phrase CONTENT FILTERED

SIP Server does not replace the content of type application/sdp, and it replaces application/vnd.radisys.msml+xml in the SIP message body only when it contains user data.

Feature Configuration

Set the x-sip-mask-sensitive-data configuration option to true in the [log] section of the SIP Server Application.

Configuration Options

x-sip-mask-sensitive-data

Setting: [log] section, Application level
Default Value: false
Valid Values: true, false
Changes Take Effect: Immediately

Specifies whether SIP Server masks sensitive data in SIP messages and SIP Server's log files.

• If set to true, SIP Server masks all private SIP header values and SIP message body content of all types with the exception of application/sdp and application/vnd.radisys.msml+xml. In case of application/vnd.radisys.msml+xml, SIP Server masks it only when it contains user data.
• If set to false, SIP Server does not mask sensitive data in SIP messages and log files.