Encrypting an SRT Output
2 min
to encrypt the srt output that will be sent to an srt client, you must enter a value in the password field, which serves as a passphrase the passphrase serves both authentication and encryption purposes the passphrase value is used to generate a hash of the password the passphrase is not the aes key itself, but an input to a key derivation process that generates a 128, 192, or 256 bit key length common srt clients (e g , vlc, vmix) only require a passphrase, with aes key management handled internally aes key length the aes key is specified in the output's encryption type setting, however this is not necessarily the resulting key strength used in srt, the aes key length is established by combining the sender’s and the receiver’s key lengths during handshake according to the following table see srt library for updates and more details https //github com/haivision/srt/blob/master/docs/api/api socket options md#srto pbkeylen https //github com/haivision/srt/blob/master/docs/api/api socket options md#srto pbkeylen for example, if the sender’s generates an aes 128 key length and the receiver an aes 192 key length, according to the table, the result key length will be aes 192
