AES GCM ciphers in WebRTC gives better security and much better performance because of hardware acceleration and single step for encrypt + mac.
Safari is the only browser missing support.
Any news on AES GCM support? It has a significant effect on SFUs.
Safari 15.0 still uses SRTP_AES128_CM_HMAC_SHA1_80 without support for SRTP_AEAD_AES_128_GCM. Any chance for AES GCM support? This will result with significant CPU saving on SFUs (10%-20%) which is also important to the environment.
Created attachment 439574 [details]
Hi Ben, do you know of any webrtc solution where I can try using AES GCM myself?
Some listed here:
Chrome is using AES-GCM when it is the DTLS client.
I think TokBox:
Got advice to test with Janus and check the srtp dtls extension in a pcap from Safari
Thanks Ben, I validated this with mediasoup.
Committed r283315 (242340@main): <https://commits.webkit.org/242340@main>
All reviewed patches have been landed. Closing bug and clearing flags on attachment 439574 [details].