Advertisement

The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"

Dan York
Author and speaker about Internet technologies at Internet Society
Dec. 7, 2011
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"
The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"

Check these out next

Yes, IPv6 is Real! How To Make Your Apps Work (And Be As Fast As Possible)
Yes, IPv6 is Real! How To Make Your Apps Work (And Be As Fast As Possible)
Dan York
SIPNOC 2014 - Is It Time For TLS for SIP?
SIPNOC 2014 - Is It Time For TLS for SIP?
Dan York
A Choice Of Internet Futures: Will Nonprofits Be Stuck In The Slow Lane?
A Choice Of Internet Futures: Will Nonprofits Be Stuck In The Slow Lane?
Dan York
Open Source and The Global Disruption Of Telecom: What Choices Will We Make?
Open Source and The Global Disruption Of Telecom: What Choices Will We Make?
Dan York
DNS / DNSSEC / DANE / DPRIVE Results at IETF93 Hackathon
DNS / DNSSEC / DANE / DPRIVE Results at IETF93 Hackathon
Dan York
Deploying New DNSSEC Algorithms (IEPG@IETF93 - July 2015)
Deploying New DNSSEC Algorithms (IEPG@IETF93 - July 2015)
Dan York
How IPv6 Will Kill Telecom - And What We Need To Do About It
How IPv6 Will Kill Telecom - And What We Need To Do About It
Dan York
SIP, Unified Communications (UC) and Security
SIP, Unified Communications (UC) and Security
Dan York
1 of 85

The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"

Dec. 7, 2011
Download to read offline
Technology
Business

Does anyone really care about VoIP security? Why should they? What are the main issues? At the 2011 Real-Time Communications Conference sponsored by the Illinois Institute of Technology (IIT), Dan York spoke about all these questions and gave a view of the overall state of the industry. A video recording of the Oct 5, 2011, session will be available and will be able to be found at http://www.voipsa.org/blog/ when it is ready.

Dan York
Author and speaker about Internet technologies at Internet Society
Advertisement
Advertisement
Advertisement

Recommended

3. FOMS_ IMS services_Shane_Dempsey3. FOMS_ IMS services_Shane_Dempsey
3. FOMS_ IMS services_Shane_DempseyFOMS011825 views22 slides
The Use and Future of Applications for Mobile Marketing: NutellaThe Use and Future of Applications for Mobile Marketing: Nutella
The Use and Future of Applications for Mobile Marketing: NutellaRebecca Booker776 views59 slides
Sip Fundamentals and Prospects Tutorial - VoiceCon Orlando 2010Sip Fundamentals and Prospects Tutorial - VoiceCon Orlando 2010
Sip Fundamentals and Prospects Tutorial - VoiceCon Orlando 2010Voxeo Corp9.2K views100 slides
Securing Communications - VoiceCon Orlando 2010Securing Communications - VoiceCon Orlando 2010
Securing Communications - VoiceCon Orlando 2010Voxeo Corp575 views12 slides
Securing Unified Communications SystemsSecuring Unified Communications Systems
Securing Unified Communications SystemsVoxeo Corp738 views27 slides
07 a t kishore.pdf07 a t kishore.pdf
07 a t kishore.pdfAT Kishore656 views38 slides

More Related Content

More from Dan York(17)

Yes, IPv6 is Real! How To Make Your Apps Work (And Be As Fast As Possible) Yes, IPv6 is Real! How To Make Your Apps Work (And Be As Fast As Possible)
Yes, IPv6 is Real! How To Make Your Apps Work (And Be As Fast As Possible)
Dan York1.7K views
SIPNOC 2014 - Is It Time For TLS for SIP?SIPNOC 2014 - Is It Time For TLS for SIP?
SIPNOC 2014 - Is It Time For TLS for SIP?
Dan York22.9K views
A Choice Of Internet Futures: Will Nonprofits Be Stuck In The Slow Lane?A Choice Of Internet Futures: Will Nonprofits Be Stuck In The Slow Lane?
A Choice Of Internet Futures: Will Nonprofits Be Stuck In The Slow Lane?
Dan York738 views
Open Source and The Global Disruption Of Telecom: What Choices Will We Make?Open Source and The Global Disruption Of Telecom: What Choices Will We Make?
Open Source and The Global Disruption Of Telecom: What Choices Will We Make?
Dan York14.3K views
DNS / DNSSEC / DANE / DPRIVE Results at IETF93 HackathonDNS / DNSSEC / DANE / DPRIVE Results at IETF93 Hackathon
DNS / DNSSEC / DANE / DPRIVE Results at IETF93 Hackathon
Dan York999 views
Deploying New DNSSEC Algorithms (IEPG@IETF93 - July 2015)Deploying New DNSSEC Algorithms (IEPG@IETF93 - July 2015)
Deploying New DNSSEC Algorithms (IEPG@IETF93 - July 2015)
Dan York1.2K views
How IPv6 Will Kill Telecom - And What We Need To Do About ItHow IPv6 Will Kill Telecom - And What We Need To Do About It
How IPv6 Will Kill Telecom - And What We Need To Do About It
Dan York1.8K views
SIP, Unified Communications (UC) and SecuritySIP, Unified Communications (UC) and Security
SIP, Unified Communications (UC) and Security
Dan York1.1K views
ClueCon2009: The Security Saga of SysAdmin SteveClueCon2009: The Security Saga of SysAdmin Steve
ClueCon2009: The Security Saga of SysAdmin Steve
Dan York608 views
SIP Trunking & Security in an Enterprise NetworkSIP Trunking & Security in an Enterprise Network
SIP Trunking & Security in an Enterprise Network
Dan York2.9K views
OSCON 2008: Mashing Up Voice and the Web Using Open Source and XMLOSCON 2008: Mashing Up Voice and the Web Using Open Source and XML
OSCON 2008: Mashing Up Voice and the Web Using Open Source and XML
Dan York2.1K views
IP Telephony Security 101IP Telephony Security 101
IP Telephony Security 101
Dan York799 views
Recording Remote Hosts/Interviews with VoIP/SkypeRecording Remote Hosts/Interviews with VoIP/Skype
Recording Remote Hosts/Interviews with VoIP/Skype
Dan York1.1K views
Hacking and Attacking VoIP Systems - What You Need To KnowHacking and Attacking VoIP Systems - What You Need To Know
Hacking and Attacking VoIP Systems - What You Need To Know
Dan York3.8K views
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best PracticesE Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
Dan York2K views
BLISS Problem Statement and MotivationBLISS Problem Statement and Motivation
BLISS Problem Statement and Motivation
Dan York851 views
ETel2007: The Black Bag Security Review (VoIP Security)ETel2007: The Black Bag Security Review (VoIP Security)
ETel2007: The Black Bag Security Review (VoIP Security)
Dan York27.9K views

Recently uploaded(20)

How Your Business Can Leverage AI/ML in the Cloud for Competitive Advantage?How Your Business Can Leverage AI/ML in the Cloud for Competitive Advantage?
How Your Business Can Leverage AI/ML in the Cloud for Competitive Advantage?
Kaspar Lavik3 views
M. L. Boas-Mathematical Methods in the Physical Sciences - John Wiley.pdfM. L. Boas-Mathematical Methods in the Physical Sciences - John Wiley.pdf
M. L. Boas-Mathematical Methods in the Physical Sciences - John Wiley.pdf
ngurahayuketutumiati12 views
Unveiling the Versatility of NEMA 1-15 Power CordsUnveiling the Versatility of NEMA 1-15 Power Cords
Unveiling the Versatility of NEMA 1-15 Power Cords
Sf Cable, Inc3 views
plantilla-cv-animado (2).pptxplantilla-cv-animado (2).pptx
plantilla-cv-animado (2).pptx
LeidyMungua3 views
Storybook, the best friend we all needStorybook, the best friend we all need
Storybook, the best friend we all need
AnnaSala220 views
7 Alpha Company Profile v1.0.pdf7 Alpha Company Profile v1.0.pdf
7 Alpha Company Profile v1.0.pdf
AusafUrRahman32 views
What is Taxonomy and Ontology.pdfWhat is Taxonomy and Ontology.pdf
What is Taxonomy and Ontology.pdf
ssuser09bd270 views
SOPHIA-The Robot.pptxSOPHIA-The Robot.pptx
SOPHIA-The Robot.pptx
ManjariPorwal0 views
Iguana - openSUSE Conf 2023Iguana - openSUSE Conf 2023
Iguana - openSUSE Conf 2023
Ondrej Holecek0 views
CS401_M2_L6_Solid Area Scan Conversion.pptxCS401_M2_L6_Solid Area Scan Conversion.pptx
CS401_M2_L6_Solid Area Scan Conversion.pptx
lara3334792 views
Medical Termination of Pregnancy Act.pptxMedical Termination of Pregnancy Act.pptx
Medical Termination of Pregnancy Act.pptx
Sudipta Roy0 views
拉筹伯大学毕业证办理|La Trobe文凭购买拉筹伯大学毕业证办理|La Trobe文凭购买
拉筹伯大学毕业证办理|La Trobe文凭购买
eunha170 views
NahamConEU2022.pdfNahamConEU2022.pdf
NahamConEU2022.pdf
seed4mexyz1 view
PLG Assignment Week 2_Sourabh_Pal.pptxPLG Assignment Week 2_Sourabh_Pal.pptx
PLG Assignment Week 2_Sourabh_Pal.pptx
SourabhPAL420 views
DIMT '23 Session_Demo_ Latest Innovations Breakout.pdfDIMT '23 Session_Demo_ Latest Innovations Breakout.pdf
DIMT '23 Session_Demo_ Latest Innovations Breakout.pdf
confluent3 views
different topics blogging articlesdifferent topics blogging articles
different topics blogging articles
AishaSajidAishaSajid0 views
TRANSACTION CONCEPTppt.pptxTRANSACTION CONCEPTppt.pptx
TRANSACTION CONCEPTppt.pptx
DummyTest90 views
Cisco SecureX.pdfCisco SecureX.pdf
Cisco SecureX.pdf
WildhaniIhyaraRahman12 views
Good Regulatory Practices.pptxGood Regulatory Practices.pptx
Good Regulatory Practices.pptx
Sudipta Roy0 views
Java-if-Statement-Activity2.docxJava-if-Statement-Activity2.docx
Java-if-Statement-Activity2.docx
SofiaArquero20 views
Advertisement

The State of VoIP Security, a.k.a. “Does Anyone Really Give A _____ About VoIP Security?"

  1. The State Of VoIP Security, a.k.a.! ! “Does Anyone Really Give A _____ About VoIP Security?” Dan York, CISSP! Chair, VoIP Security Alliance October 5, 2011
  2. © 2011 VOIPSA http://www.flickr.com/photos/willpate/46488553/
  3. Does Anyone Really ! Give A _____ About! VoIP Security? © 2011 VOIPSA
  4. Does Anyone Really ! Give A _____ About! VoIP Unified Communications Security? © 2011 VOIPSA
  5. Technical Solutions © 2011 VOIPSA
  6. Widely Deployed © 2011 VOIPSA
  7. TLS-Encrypted SIP © 2011 VOIPSA
  8. Secure RTP (SRTP) © 2011 VOIPSA
  9. MORE Secure! Than PSTN © 2011 VOIPSA
  10. © 2011 VOIPSA http://www.flickr.com/photos/mattblaze/2275723713/
  11. MORE Secure! Than Ever Before © 2011 VOIPSA
  12. Almost All Venders! Have Support © 2011 VOIPSA
  13. Almost All Customers! Don’t Turn It On © 2011 VOIPSA
  14. Why Not? © 2011 VOIPSA
  15. Complexity © 2011 VOIPSA
  16. Fingerpointing, a.k.a. “One Throat To Choke” PSTN PBX Gateways Physical Voicemail Wiring © 2011 VOIPSA
  17. Fingerpointing - 2011 Mobile Devices IM Application Internet Servers Networks Operating Systems PSTN IP-PBX Gateways VoIP Web IP Social Firewalls Servers Network Networks Physical Directory Voicemail Wiring Servers Desktop Email PCs Database Servers CRM Servers Systems Session Border Controllers © 2011 VOIPSA
  18. “UC” © 2011 VOIPSA
  19. Debugging © 2011 VOIPSA
  20. Turn It Back On? © 2011 VOIPSA
  21. SIP Is So Simple, Right? © 2011 VOIPSA
  22. Riiiiiigggghhhttt… (Fingerpointing Redux) © 2011 VOIPSA
  23. Evolution © 2011 VOIPSA
  24. The Old Boys’ Club Carrier Carrier Carrier PSTN Carrier Carrier Carrier Carrier © 2011 VOIPSA
  25. The Wild West… ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP PSTN ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP ITSP © 2010 VOIPSA and Owners as Marked © 2011 VOIPSA
  26. Evolution of Attacks © 2011 VOIPSA
  27. DoS © 2011 VOIPSA
  28. DDoS © 2011 VOIPSA
  29. Fraud © 2011 VOIPSA
  30. If 1 Is Good, Why Not 3? © 2011 VOIPSA
  31. Geography © 2011 VOIPSA
  32. Internet LAN © 2011 VOIPSA
  33. PC UC System Firewall Internet Home Firewall IP Corp  HQ   Phone Home   © 2011 VOIPSA
  34. Laptop UC client WiFi UC System Firewall Internet Café Router Corp  HQ   Mobile Data Network Mobile UC client © 2011 VOIPSA
  35. Corporate Internet Network IVR Voicemail IM IM IM Presence Presence Presence Call Call Call Control Control Control Conferencing Corp  HQ   Office  A   Office  B   PSTN © 2011 VOIPSA
  36. © 2011 VOIPSA
  37. Benefits (for us… and for attackers) © 2011 VOIPSA
  38. DDoS! (the old-fashioned kind)! (Asterisk & Amazon EC2, anyone?) © 2011 VOIPSA
  39. SPIT! (“SPam for Internet Telephony”) SPAM © 2011 VOIPSA
  40. Complexity © 2011 VOIPSA
  41. Fingerpointing - 2011 Mobile Devices IM Application Internet Servers Networks Operating Systems PSTN IP-PBX Gateways VoIP Web IP Social Firewalls Servers Network Networks Physical Directory Voicemail Wiring Servers Desktop Email PCs Database Servers CRM Servers Systems Session Border Controllers © 2011 VOIPSA
  42. The Device Formerly! Known As A! “Phone” © 2011 VOIPSA
  43. Mobility © 2011 VOIPSA
  44. RTCWEB / WebRTC © 2011 VOIPSA
  45. Complexity © 2011 VOIPSA
  46. Fingerpointing - 2011 Mobile Devices IM Application Internet Servers Networks Operating Systems PSTN IP-PBX Gateways VoIP Web IP Social Firewalls Servers Network Networks Physical Directory Voicemail Wiring Servers Desktop Email PCs Database Servers CRM Servers Systems Session Border Controllers © 2011 VOIPSA
  47. Interoperability © 2011 VOIPSA
  48. “The Hitchiker’s Guide! To SIP” © 2011 VOIPSA
  49. Forgotten! Simple Things © 2011 VOIPSA
  50. Biggest Financial Threat? © 2011 VOIPSA
  51. Toll Fraud © 2011 VOIPSA
  52. IT Security 101 © 2011 VOIPSA
  53. PIN = “1234” © 2011 VOIPSA
  54. Password = “password” © 2011 VOIPSA
  55. Default password list © 2011 VOIPSA
  56. VoIP = bits © 2011 VOIPSA
  57. IT Security 101 © 2011 VOIPSA
  58. Does Anyone Really ! Give A _____ About! VoIP Security? © 2011 VOIPSA
  59. WHEN Will They Care? © 2011 VOIPSA
  60. EVENT © 2011 VOIPSA
  61. Identity Theft © 2011 VOIPSA
  62. Celebrity © 2011 VOIPSA
  63. Trusted Leader © 2011 VOIPSA
  64. “VoIP Is Insecure!!!” © 2011 VOIPSA
  65. depl oyed tupi dly S “VoIP Is Insecure!!!” ^ © 2011 VOIPSA
  66. “VoIP Is Insecure!!!” © 2011 VOIPSA
  67. Cover Your ____ © 2011 VOIPSA
  68. SOLUTIONS? © 2011 VOIPSA
  69. IT Security 101 © 2011 VOIPSA
  70. Audit, Audit, Audit © 2011 VOIPSA
  71. Enable What You Have © 2011 VOIPSA
  72. Interoperability © 2011 VOIPSA
  73. www.sipit.net © 2011 VOIPSA
  74. Identity © 2011 VOIPSA
  75. Simplicity © 2011 VOIPSA
  76. Fabric © 2011 VOIPSA
  77. Air © 2011 VOIPSA
  78. © 2011 VOIPSA
  79. Secure By Default © 2011 VOIPSA
  80. Education © 2011 VOIPSA
  81. What is the Industry Doing to Help? Security Vendors VoIP Vendors “The Sky Is Falling!” “Don’t Worry, Trust Us!” (Buy our products!) (Buy our products!) © 2011 VOIPSA
  82. www.voipsa.org/Resources/tools.php © 2011 VOIPSA
  83. Security Links •  VoIP Security Alliance - http://www.voipsa.org/ –  Threat Taxonomy - http://www.voipsa.org/Activities/taxonomy.php –  VOIPSEC email list - http://www.voipsa.org/VOIPSEC/ –  Weblog - http://www.voipsa.org/blog/ –  Security Tools list - http://www.voipsa.org/Resources/tools.php –  Blue Box: The VoIP Security Podcast - http://www.blueboxpodcast.com •  NIST SP800-58, “Security Considerations for VoIP Systems” –  http://csrc.nist.gov/publications/nistpubs/800-58/SP800-58-final.pdf •  Network Security Tools –  http://sectools.org/ •  Hacking Exposed VoIP site and tools –  http://www.hackingvoip.com/ •  Seven Deadliest Unified Communications Attacks –  http://www.7ducattacks.com/ © 2011 VOIPSA
  84. Thank You For! Giving A _____ © 2011 VOIPSA
  85. Thank you! Q & eh? www.voipsa.org 7ducattacks.com Dan York - dan.york@voipsa.org! +1-802-735-1624 DisruptiveTelephony.com danyork.com! blueboxpodcast.com twitter.com/danyork © 2011 VOIPSA
Advertisement