SRTP stands for Secure RTP.

SRTP is defined in IETF RFC 3711 specification.

On top of RTC, SRTP provides these security characteristics:

  • Integrity. The receiver can validate that no man in the middle has changed the packet sent from the originator along the way
  • Authentication. Both the receiver and the server if they want, can authenticate the identity of the other
  • Privacy. No one intercepting the traffic can read it because it is encrypted

It is important to note that the header of an SRTP packet is never encrypted, providing some amount of meta data to those listening in to the transmission.

SRTP is coupled with SRTCP, the implementation of secure RTCP.

SRTP is the only media transport mechanism used by WebRTC.

Additional reading material:

About WebRTC Glossary

WebRTC Glossary is a collaborative space where users can learn more about WebRTC related terms. Anyone can also modify or add new terms to this glossary, but it requires registration to the site first.