ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

VoIP Toolkit

Businesses failing to secure IP telephony

Richard Thurston ZDNet.co.uk

Published: 24 Oct 2007 17:36 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Businesses are failing to secure their IP telephony networks because of a lack of knowledge, according to one veteran VoIP engineer.

Eric Vyncke, author of LAN switch security: What hackers know about your switches and a distinguished engineer at Cisco, told an audience of security experts on Wednesday that insecure networks could fall victim to hijackers and hackers.

"Nearly nobody is deploying secure IP telephony," Vyncke said, speaking at the RSA Conference Europe 2007 in London. "Why? It's a lack of information."

Vyncke added that, five years ago, a lot of businesses had become deeply worried about securing IP telephony and, as a result, most had chosen not to deploy the technology.

"A lot of customers freaked out," Vyncke said. "They were only receiving one message — that IP telephony is insecure."

At that time, IP telephones could not be authenticated and there was no way to check the integrity of a device. But the technology has since improved, Vyncke said.

The engineer recommended the use of certificates for each phone, but said that the IT department must be able to revoke them if the handset is stolen or returned to the manufacturer.

Read this

Feature
Tutorial: Creating a secure and reliable VoIP solution

Increasingly widespread, it is important to be aware of measures which can increase VoIP's security and reliability...

Read more +

Vyncke also highlighted potential problems with firewalls blocking encrypted IP telephony traffic. To help prevent that, it is advisable that the signalling and media streams are prevented from diverging, he said.

Vyncke added that two techniques have been developed which could help to solve the problem: the Stun protocol (Simple Traversal of User Datagram Protocol through Network Address Translators) and ICE (Interactive Connectivity Establishment — a wider framework developed by standards body the Internet Engineering Task Force, or IETF).

IT professionals should bear in mind that some IP telephony deployments which run over multiple domains can run into difficulties, said Vyncke. In 10 percent of cases, the firewall cannot see the signalling, he added.

"There are issues with IP telephony," Vyncke said. "But you can secure it."

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
4 out of 6 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In VoIP


Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

Solutions Consultant, Cisco IPT, Pre Sales, Design, Wakefield

Experience of Pre Sales, Cisco, IP Telephony and solution Design is vital. Experience of Solution design, consultancy, Cisco, IP telephony and pre ...

Cisco CallManager/IPT Support Engineer - 30-35,000 (Cambridge)

An IP-Telephony Support Engineer with experience supporting Cisco CallManager 4.X and above is currently required. The role will see you involved the ...

CISCO IP TELEPHONY ENGINEER - SOUTH LONDON 35K

Cisco VPN - Cisco IP Telephony - Cisco Unified Messaging In return for your skills, my client is offering technical training in addition to a ...

Featured White Papers

Hyperconnectivity Leads to Enterprise Transformation

Hyperconnectivity is a mega-trend - a phenomenon through which everyone and everything that can...

Enterprise Unified Communications

Unified Communications is an oft-used term that has numerous interpretations. This whitepaper...

See All White Papers