Call Recordings: Add Another Layer of Security with Public Key Encryption

call recording encryption feature for programmable voice api

Added security for sensitive call recordings. Use your own public key to encrypt recordings before they’re stored. Available in developer preview. Today, our default security for call recordings includes encryption at rest for recordings stored with Twilio. However, we’ve learned that some customers, typically those that need to comply with strict industry or regional regulations for data protection, require even stronger security mechanisms. A level of… Read More

Protect Customer Privacy: Announcing Phone Number Redaction

Customer privacy is a big deal to us here at Twilio. In March, we increased SMS privacy with Message Body Redaction, which redacts the content of your texts before they’re stored anywhere in Twilio’s infrastructure. Today, we’re excited to introduce our latest SMS feature to further protect customer data: Phone Number Redaction. Phone Number Redaction takes privacy a step further by redacting the last four digits… Read More

Introducing Single Sign-On for Enterprises

Single Sign-On for Twilio Enterprise Plan

Today we’re excited to announce the launch of Single Sign-On (SSO). Available as part of the Twilio Enterprise Plan, SSO mitigates compliance and security risks for organizations by giving businesses control over user authentication and user revocation via corporate mandated tools. Today, all developers and any user accessing Twilio console maintains his or her own login credentials. While this is totally acceptable for small businesses or… Read More

What is the “Goldilocks” number of cloud-computing accounts to limit your blast radius?

When signing up for an IaaS account provider, like Amazon, Google Cloud, or Azure, you’ll be asked to provide or link an email address and password.  After a brief wait, possibly a confirmation email, you are logged in— dropped at an empty console, teeming with possibilities.  Is this where the next billion-dollar unicorn starts?  What will you build today? Fast forward a hopefully small amount of… Read More

Using Authy to add 2-Factor Authentication To Your Auth0 Applications

We at Authy are always looking to make it easier for our clients to add 2FA to their applications. In fact, with just a few API calls you can be up and running in no time. However,  you may already be using a cloud service for your entire authentication stack, you may find this perspective from Auth0, one of the leading vendors in this space, of… Read More

Introducing End-to-end Encryption for Twilio IP Messaging with Virgil Security℠

Software developers have a love-hate relationship with security, especially when shipping their product is concerned. All too often security is bolted on at the last minute or not at all. End-to-end encryption is particularly difficult to properly build and integrate into an application. Twilio is partnering with Virgil Security to make building end-to-end encrypted applications a breeze with Twilio IP Messaging and Virgil Crypto SDK and… Read More

Announcing Secure Trunking

Elastic SIP Trunks encrypted with SRTP & TLS

Today we are happy to announce the general availability of Secure Trunking. This launch makes further security available on all Elastic SIP Trunks, by enabling customers to use Secure Real-time Protocol (SRTP) to encrypt media and Transport Layer Security (TLS) to encrypt signaling. This encryption allows businesses with strict information security practices to reap the benefits of both SIP trunks and cloud communications. Secure Trunking With Secure Trunking,… Read More

How to Protect Your Android Phone From the Stagefright Bug

Earlier this morning, a vulnerability was disclosed for Android phones performing a remote code execution over MMS. Dubbed “Stagefright“, the vulnerability exploits SMS/MMS clients by sending a malformed media file to the user which is automatically downloaded by the default client. If you’re using Google Hangouts as your default SMS client, here’s how to protect your device from Stagefright by disabling automatic downloading of media files sent… Read More

Getting Started Placing Outbound Calls with Twilio Elastic SIP Trunking and FreeSWITCH

A couple of weeks ago we announced the public beta of Elastic SIP Trunking, a new way to connect your SIP gear to the world through Twilio. With Elastic SIP Trunks, you can say sayonara to artificial constraints to scaling and pricing shenanigans. We think this new way of consuming SIP connectivity offers longtime VoIP network administrators and engineers an instantly provisioned, powerfully resilient alternative to… Read More