|
Voice over IP (VoIP) Security Seminar
This seminar is taught at industry conferences by David Piscitello. Contact us for future conference dates. Overview
VOIP Security provides the latest information on security issues for IP-telephony implementations. The course is divided into two parts: Assessing the potential danger, and what you can do about it.
Course participants will gain an appreciation for the nature of the security threats to IP-PBX gear, and will get concrete recommendations for how to handle this threat.
Part 1: Threats
A growing number of subscribers and private organizations now use IP Telephony to handle voice calls. Even broader adoption is anticipated as more products are commoditized, new applications appear and public IP Telephony carriers compete for market share. Unfortunately, IP Telephony has already proved to be a popular playground for attackers.
In this session, we examine how attacks are perpetrated against IP Telephony end users and operators, both public and enterprise, across a broad range of "attack vectors," including:
- What are the common attacks against IP Telephony protocols?
- How do attackers exploit IP Telephony software implementations?
- How do attackers exploit IP Telephony hardware?
- What are the common attacks against IP Telephony deployments (topologies and configurations)?
Part 2: Countermeasures
In this session, we examine defenses to reduce or eliminate threats against VOIP endpoints, servers, and networks.
- What measures can individuals take to protect against IP Telephony-based attacks?
- How can carriers protect their subscribers as well as their own IP Telephony infrastructure against attack?
- How can enterprises protect IP Telephony and data users and their infrastructures against attack?
- Will future standards improve IP Telephony security?
- What standards offer the most promising and comprehensive solutions?
|
|
