TECHtionary.com Issues VOIP Security Recommendations to Providers & Users2 July 2005
TECHtionary has for many months tracked VOIP security as well as WiFi, IP, TCP and other key issues available to everyone to create and build customer security plans and bulletins,” noted Tom Cross CEO of TECHtionary and member of the VOIP-Security Alliance Board of Technical Advisors.
He added, “We have also tracked and analyzed key industry issues such as VoIP-E911 and papers such as NIST warning regarding VoIP.” Tom indicated, “I would strongly recommend VOIP providers immediately produce and distribute to customers by size and business type Network Security Guidelines ( think of it as a Fire Exit Plan for VOIP ).”
As one member of the VOIP Security Alliance ( www.voipsa.org ) put it “A clear distinction between VoIP ( layer 1, 2, 3 issues ) versus IPT ( application layer ) should be made such that a discussion on security issues and security countermeasures ( best practices ) can be done for both VoIP and IPT implementations ( through a traditional IP LAN/WAN infrastructure ), etc.”
This document would include network guidelines against known issues such as “SPIT-Spam over Internet Telephony” and “Spoofing VoIP caller ID” to correct location as well as a planning guide for future technologies. As another member of the VOIP Security Alliance put it “if you've got poor security processes before implementing IPT, convergence is only going to make it worse.”
Tom also recommended “Monthly Security Bulletins not unlike “virus definitions updates” to keep customers constantly aware of trends and threats.” One member of the VOIP Security Alliance put it “as part of VOIP planning, I’d argue that none of this should even take place without all of the current strategy, operational processes/practices, network capability, and communications paths in place.” I would add you include recommendations for Risk Assessment and Audit.
As you have seen there are an increasing number of law suits and regulatory requirements in regard to VOIP and E911. The level of litigation will likely increase as hackers focuses their efforts on VOIP. This could have significant negative financial repercussions as well as catastrophic PR impact on all aspects of a providers business not just VOIP.
Lastly, Tom noted “we at TECHtionary can assist vendors or users create and produce guidelines and periodic bulletins to minimize the impact of security attacks on all types of technologies.”
About TECHtionary.com
TECHtionary Corporation founded in 2001 and headquartered in Boulder, Colorado is the World's First and Largest Animated ( rich media ) Library/Magazine on Technology. Get the analysis and more than 2,630+ free tutorials on data, internet, wireless, VoIP-Voice over Internet Protocol ( internet telephony ), PBX systems, central office switching, protocols, telephony, telecommunications, networking, routing, power systems, broadband, WiFi-Wireless Fidelity and other technologies, TECHtionary.com provides "just enough – just-in-time" critical success information. TECHtionary produces web infomercials proven to "increase revenues, decrease customer support costs and increase customer satisfaction." Tom Cross CEO of TECHtionary is a member of the Technical Board of Advisors for the VOIP-Security Alliance.
Source: i- Newswire
All trademarks and copyrighted information contained herein are the property of their respective owners.
Related Voip Articles
|
