Major Secutity concers of QR code

VitalPBX Community Support VitXi Mobile (IOS and Android) Major Secutity concers of QR code

  • Post
    Joseph Giragoss
    Participant
    Up
    -2
    Down
    Hello,

    The current format of the QR code can be read easily with any QR code reader. That opens doors for hackers to register with the same SIP credentials from multiple other mobile devices.  The ideal and practical option, which is also done by many other companies is to provide only login credentials. This way the mobile device logs on to a provisioning server and downloads SIP credentials directly into the phone in the background.  I have built such provisioning servers that work with Zoiper, SessionTalk, and may other softphones that requires only login (vs SIP) credentials.

    I’ve been testing VitalPBX platform for a while and I love it! I would switch to it if this major problems is resolved.  Would VitalPBX developers consider adding such security to the Vitxi in the near future?

    0
Viewing 1 replies (of 1 total)
  • Replies
    Rodrigo Cuadra
    Keymaster
    US
    Up
    0
    Down
    That’s right, once we have the full and released iOS VitXi we will encrypt the QR for greater security.
    0
Viewing 1 replies (of 1 total)
  • The forum ‘VitXi Mobile (IOS and Android)’ is closed to new topics and replies.