IntelePeer, profile picture
Uploaded byIntelePeer
PDF, PPTX729 views

SIP Security Best Practices

This webinar discusses VoIP security best practices. It outlines common VoIP security threats like call interception, denial of service attacks, and data exfiltration. It then provides recommendations for securing VoIP systems, including using strong passwords, keeping systems updated, limiting remote access and management, and using a session border controller. The webinar emphasizes the importance of working with a SIP provider that follows security best practices.

Embed presentation

Download as PDF, PPTX
Proprietary and confidential. © 2015 IntelePeer, Inc. All rights reserved. Webinar: VoIP Security Best Practices Shawn Augenstein
Common Threats Best Practices Importance of a SBC Q&A Getting Started Introduction Leveraging your Service Provider
The following security issues and attacks have been identified on many standard VoIP implementations. Common Security Threats
1Call Interception
2Denial of Service Attacks
3Exfiltration of Data
4Vishing
5Spamming over Internet Telephony (SPIT)
6Caller ID Spoofing 

Session Manipulation 7
8 War Dialing

9 Registration Hacking 

10Man-In-The-Middle Attacks
Security Best Practices
P A S S W O R D S Secure all VoIP devices that have a configuration interface Join 2 or more words together Include numbers and letters Use minimum 8 characters, 12 characters is optimal
My Favorite movie line from Dirty Dancing is: N o b o d y p u t s B a b y i n t h e c o r n e r P A S S W O R D T I P S Choose a line from your favorite song, film or play Then use numbers, symbols and mixed-case letters to recreate it. 1987 is the year Dirty Dancing came out My favorite actor is Patrick Swayze NpBitC87P! here is my password
v p n Virtual Private Network remotelyaccessyournetwork TRAFFIC ENCRYPTED
Pa tc hes Keep systems up-to-date with operating system patches. New system VULNERABILITIES are being found every week, so it is important to patch systems REGULARLY.
Ma nagement Interfaces Open control ports are easily found. If a system can be reconfigured remotely, then a call can be rerouted to international destinations or premium numbers.
Services that allows a remote caller to get back to the PBX “dial tone” has potential for making unauthorized calls at your expense Configure the access PIN on your smartphone. Consider what services you want remote user to access Mobil e VoIP & M o b i l i t y S e rv ices
PBX Lock- Down VoIP phones can register with a PBX from anywhere in the world Limit registrations Secure phones via password, IP address or MAC (physical) address. Deny access by default, and create exceptions for authorized users.
Call Limits Enable fraud protection Uncharacteristic repeated calls to overseas destinations Automatically prevent calls until you authorize the extra spend
Securing Connections from Dynamic IP Addresses Use a direct, dedicated connection for trunk/ interconnect connections with your provider. Direct dedicated connections reduce the risk of security threats. Configure your SBC to allow only authorized interconnect traffic to/from your trunk/ interconnect provider.
Session Border Controllers (SBCs) are the best edge device for security in VoIP deployments. full session state standard network firewall same built in security features for voice traffic SBC Importance of a SBC
SBC Functions Statistics Security Connectivity QoS Media Services
Securing VoIP Devices Firewall Keep software on PC and phone patched up and up to date Use best practices for passwords
Securing VoIP Devices WHEN DISPOSING OF YOUR PHONE Remove your username and passwords Uninstall the application on soft phones Complete a factory reset of phone to remove directory and call records Change your password on the VoIP service
Proprietary and confidential. © 2015 IntelePeer, Inc. All rights reserved. Leverage your Provider Intelepeer’s Communications as a Service platform for voice and unified communications enablement SIP provider since 2003 Certified with all leading UC and PBX systems 
 With IntelePeer you can be certain Security Best Practices are followed.
service provider support C a l l B a r r i n g F r a u d A l e r t s IntelePeer’s Fraud Prevention Efforts T L S / S R T P
Q&A
Proprietary and confidential. © 2015 IntelePeer, Inc. All rights reserved. www.intelepeer.com 177 Bovet Road Suite 400| San Mateo, CA | 94402 | T: +1.650.525.9200 | F: +1.650.287.2628
 © 2015 IntelePeer Contact us at sales@intelepeer.com or 877-336-9171

More Related Content

PPTX
VoIP Security 101 what you need to know
byEric Klein
 
PDF
Yeastar My pbx standard_datasheet_en
byErick E. Guillén Araya
 
PDF
Remote setup guide
byVoicent
 
PDF
Yeastar My pbx soho_datasheet_en
byErick E. Guillén Araya
 
PDF
Solving the BYOD Problem with Open Standards
byChristina Inge
 
PPTX
Encrypted Voice Communications
bysbwahid
 
PPS
How To Successfully Implement IP Video
byVideoguy
 
PDF
VoIP and You - 2011
byrosecheng
 
VoIP Security 101 what you need to know
byEric Klein
 
Yeastar My pbx standard_datasheet_en
byErick E. Guillén Araya
 
Remote setup guide
byVoicent
 
Yeastar My pbx soho_datasheet_en
byErick E. Guillén Araya
 
Solving the BYOD Problem with Open Standards
byChristina Inge
 
Encrypted Voice Communications
bysbwahid
 
How To Successfully Implement IP Video
byVideoguy
 
VoIP and You - 2011
byrosecheng
 

What's hot

PDF
Yeastar My pbx u100_datasheet_en
byErick E. Guillén Araya
 
PPT
Voice Over IP Overview w/Secuirty
byChristopher Duffy
 
PPTX
2600Hz - Detecting and Managing VoIP Fraud
by2600Hz
 
PPT
VoIP Security
byDayanand Prabhakar
 
PPT
Cellcrypt Mobile for iPhone
byCellcrypt
 
PDF
Voice over IP
byTogis UAB Ltd
 
PDF
Yeastar My pbx u200_datasheet_en
byErick E. Guillén Araya
 
PPTX
PrivateGSM - Voice Encryption Technical Overview
byPrivateWave Italia SpA
 
PDF
Advanced fuzzing in the vo ip space
byUltraUploader
 
PDF
Ippbx for hotel
byKISHOREKUMAR V
 
PDF
*astTECS IP PBX
by*astTECS
 
PPTX
SMB Communications - is VoIP secure?
byUnified Communications Online
 
PDF
Yeastar My pbx u500 series_datasheet_en
byErick E. Guillén Araya
 
PPTX
Labmeeting - 20150211 - Novel End-to-End Voice Encryption Method in GSM System
bySyuan Wang
 
PDF
Video Conferencing Security
bySteve Roberts
 
PPTX
VOIP - Pankaj Karande
byShailesh Kabra
 
PDF
Electric Guard Dog FAQ
byhjames76
 
PDF
Technical Sheet - PrivateGSM VoIP - english
byPrivateWave Italia SpA
 
PDF
Week14
byksano100
 
Yeastar My pbx u100_datasheet_en
byErick E. Guillén Araya
 
Voice Over IP Overview w/Secuirty
byChristopher Duffy
 
2600Hz - Detecting and Managing VoIP Fraud
by2600Hz
 
VoIP Security
byDayanand Prabhakar
 
Cellcrypt Mobile for iPhone
byCellcrypt
 
Voice over IP
byTogis UAB Ltd
 
Yeastar My pbx u200_datasheet_en
byErick E. Guillén Araya
 
PrivateGSM - Voice Encryption Technical Overview
byPrivateWave Italia SpA
 
Advanced fuzzing in the vo ip space
byUltraUploader
 
Ippbx for hotel
byKISHOREKUMAR V
 
*astTECS IP PBX
by*astTECS
 
SMB Communications - is VoIP secure?
byUnified Communications Online
 
Yeastar My pbx u500 series_datasheet_en
byErick E. Guillén Araya
 
Labmeeting - 20150211 - Novel End-to-End Voice Encryption Method in GSM System
bySyuan Wang
 
Video Conferencing Security
bySteve Roberts
 
VOIP - Pankaj Karande
byShailesh Kabra
 
Electric Guard Dog FAQ
byhjames76
 
Technical Sheet - PrivateGSM VoIP - english
byPrivateWave Italia SpA
 
Week14
byksano100
 

Similar to SIP Security Best Practices

PDF
6 Steps to SIP trunking security
byFlowroute
 
PDF
DEFCON 23 - Patrick mcneil - guidelines for securing your voip PBX
byFelipe Prado
 
PDF
Secure your Voice over IP (VoIP)
byTechso
 
PDF
why-your-network-needs-an-sbc-guide.pdf
bytardis2
 
PPTX
Protect your IPPBX against VOIP attacks
byRohan Fernandes
 
PDF
VoIP security
byMile Blenton
 
PDF
It’s time to boost VoIP network security
byBev Robb
 
PPT
ETel2007: The Black Bag Security Review (VoIP Security)
byDan York
 
PDF
SBC: Do I really need it?
byBangladesh Network Operators Group
 
PPTX
Netas Nova Cyber Security Product Family
byCagdas Tanriover
 
PPTX
Making SIP Migration Easy
byIntelePeer
 
PPT
Cd213 percy-audiocodes
byTran Thanh
 
PDF
Voip (In)Security - AfricaHackOn v2
byGeorge Wahome
 
PPT
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
byDan York
 
PDF
SIP, Unified Communications (UC) and Security
byDan York
 
PPT
Vo ip overview
byviroj tanggasemsun
 
PPT
Meletis Belsis - Voip security
byMeletis Belsis MPhil/MRes/BSc
 
PPT
Positive Hack Days. Gurzov. VOIP - Reduce Your Expenses, Increase Your Income...
byPositive Hack Days
 
PDF
Askozia VoIP Security white paper - 2017, English
byAskozia
 
PPTX
VOIP voice over internet protocol presentation
byharshbhawar10
 
6 Steps to SIP trunking security
byFlowroute
 
DEFCON 23 - Patrick mcneil - guidelines for securing your voip PBX
byFelipe Prado
 
Secure your Voice over IP (VoIP)
byTechso
 
why-your-network-needs-an-sbc-guide.pdf
bytardis2
 
Protect your IPPBX against VOIP attacks
byRohan Fernandes
 
VoIP security
byMile Blenton
 
It’s time to boost VoIP network security
byBev Robb
 
ETel2007: The Black Bag Security Review (VoIP Security)
byDan York
 
SBC: Do I really need it?
byBangladesh Network Operators Group
 
Netas Nova Cyber Security Product Family
byCagdas Tanriover
 
Making SIP Migration Easy
byIntelePeer
 
Cd213 percy-audiocodes
byTran Thanh
 
Voip (In)Security - AfricaHackOn v2
byGeorge Wahome
 
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
byDan York
 
SIP, Unified Communications (UC) and Security
byDan York
 
Vo ip overview
byviroj tanggasemsun
 
Meletis Belsis - Voip security
byMeletis Belsis MPhil/MRes/BSc
 
Positive Hack Days. Gurzov. VOIP - Reduce Your Expenses, Increase Your Income...
byPositive Hack Days
 
Askozia VoIP Security white paper - 2017, English
byAskozia
 
VOIP voice over internet protocol presentation
byharshbhawar10
 

More from IntelePeer

PPTX
Time to Re-Visit Your Cloud Contact Center Decision
byIntelePeer
 
PPTX
Atmosphere Coffee Break - Scripting & Order Entry
byIntelePeer
 
PPTX
Atmosphere Scripting
byIntelePeer
 
PPTX
Atmosphere Coffee Break - Automated Call Distributor (ACD)
byIntelePeer
 
PPTX
Atmosphere Coffee Break: Virtual Predictive Dialer (VPD)
byIntelePeer
 
PPTX
Atmosphere Coffee Break: Cloud Routing
byIntelePeer
 
PPTX
Atmosphere Coffee Break: Interactive Voice Response (IVR)
byIntelePeer
 
PPTX
Intele peer atmosphere services overview
byIntelePeer
 
PPTX
Final sip is so much more! webinar
byIntelePeer
 
PPTX
Overview of IntelePeer and Cloud Communications
byIntelePeer
 
PPTX
Benefits of SIP Trunking
byIntelePeer
 
PDF
Business VoIP data sheet
byIntelePeer
 
PDF
Redundant trunk data sheet
byIntelePeer
 
PDF
Hosted Lync data sheet
byIntelePeer
 
PDF
Channel Partner data sheet
byIntelePeer
 
PDF
General SIP trunking data sheet
byIntelePeer
 
PDF
Lync SIP Trunking data sheet
byIntelePeer
 
PDF
VXI case study
byIntelePeer
 
PDF
Configuring IntelePeer SIP trunking in Lync server 2010
byIntelePeer
 
Time to Re-Visit Your Cloud Contact Center Decision
byIntelePeer
 
Atmosphere Coffee Break - Scripting & Order Entry
byIntelePeer
 
Atmosphere Scripting
byIntelePeer
 
Atmosphere Coffee Break - Automated Call Distributor (ACD)
byIntelePeer
 
Atmosphere Coffee Break: Virtual Predictive Dialer (VPD)
byIntelePeer
 
Atmosphere Coffee Break: Cloud Routing
byIntelePeer
 
Atmosphere Coffee Break: Interactive Voice Response (IVR)
byIntelePeer
 
Intele peer atmosphere services overview
byIntelePeer
 
Final sip is so much more! webinar
byIntelePeer
 
Overview of IntelePeer and Cloud Communications
byIntelePeer
 
Benefits of SIP Trunking
byIntelePeer
 
Business VoIP data sheet
byIntelePeer
 
Redundant trunk data sheet
byIntelePeer
 
Hosted Lync data sheet
byIntelePeer
 
Channel Partner data sheet
byIntelePeer
 
General SIP trunking data sheet
byIntelePeer
 
Lync SIP Trunking data sheet
byIntelePeer
 
VXI case study
byIntelePeer
 
Configuring IntelePeer SIP trunking in Lync server 2010
byIntelePeer
 

Recently uploaded

PPTX
Advance Computer Architecture Lecture 4.pptx
byBottshikanBottshikan
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
apidays Australia 2025 | User Brainpower vs. AI Blind Spots in API Docs
byapidays
 
PDF
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
PDF
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
PDF
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
PPTX
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
PPTX
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
PDF
What ONIX can do: Leveraging metadata to support the discoverability of First...
byBookNet Canada
 
PDF
10 Best AI Tools for Fashion Brands in 2026
bymockitseo
 
PPTX
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
PDF
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
PPTX
Strategic Shelf Planning for the New Year Turning Resolutions into Revenue .pptx
byAnoop Ashok
 
PDF
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
PPTX
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
PPTX
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
PPTX
Code Like Bro -A guide for better Coding
byMadan Panthi
 
PDF
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
Advance Computer Architecture Lecture 4.pptx
byBottshikanBottshikan
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
apidays Australia 2025 | User Brainpower vs. AI Blind Spots in API Docs
byapidays
 
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
Single Cell Protein from Methane or Methanol - Process development research c...
byJohn Downs
 
What ONIX can do: Leveraging metadata to support the discoverability of First...
byBookNet Canada
 
10 Best AI Tools for Fashion Brands in 2026
bymockitseo
 
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
How PayPal Account Verification Works – Complete Guide for Online Businesses
byjhdhj3989
 
Strategic Shelf Planning for the New Year Turning Resolutions into Revenue .pptx
byAnoop Ashok
 
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
Code Like Bro -A guide for better Coding
byMadan Panthi
 
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 

SIP Security Best Practices

  • 1.
    Proprietary and confidential.© 2015 IntelePeer, Inc. All rights reserved. Webinar: VoIP Security Best Practices Shawn Augenstein
  • 2.
    Common Threats Best Practices Importanceof a SBC Q&A Getting Started Introduction Leveraging your Service Provider
  • 3.
    The following securityissues and attacks have been identified on many standard VoIP implementations. Common Security Threats
  • 4.
  • 5.
  • 6.
  • 7.
  • 8.
  • 9.
  • 10.
  • 11.
  • 12.
  • 13.
  • 14.
  • 15.
    P A SS W O R D S Secure all VoIP devices that have a configuration interface Join 2 or more words together Include numbers and letters Use minimum 8 characters, 12 characters is optimal
  • 16.
    My Favorite movieline from Dirty Dancing is: N o b o d y p u t s B a b y i n t h e c o r n e r P A S S W O R D T I P S Choose a line from your favorite song, film or play Then use numbers, symbols and mixed-case letters to recreate it. 1987 is the year Dirty Dancing came out My favorite actor is Patrick Swayze NpBitC87P! here is my password
  • 17.
    v p n VirtualPrivate Network remotelyaccessyournetwork TRAFFIC ENCRYPTED
  • 18.
    Pa tc hes Keepsystems up-to-date with operating system patches. New system VULNERABILITIES are being found every week, so it is important to patch systems REGULARLY.
  • 19.
    Ma nagement Interfaces Open controlports are easily found. If a system can be reconfigured remotely, then a call can be rerouted to international destinations or premium numbers.
  • 20.
    Services that allowsa remote caller to get back to the PBX “dial tone” has potential for making unauthorized calls at your expense Configure the access PIN on your smartphone. Consider what services you want remote user to access Mobil e VoIP & M o b i l i t y S e rv ices
  • 21.
    PBX Lock- Down VoIP phonescan register with a PBX from anywhere in the world Limit registrations Secure phones via password, IP address or MAC (physical) address. Deny access by default, and create exceptions for authorized users.
  • 22.
    Call Limits Enable fraudprotection Uncharacteristic repeated calls to overseas destinations Automatically prevent calls until you authorize the extra spend
  • 23.
    Securing Connections from Dynamic IP Addresses Usea direct, dedicated connection for trunk/ interconnect connections with your provider. Direct dedicated connections reduce the risk of security threats. Configure your SBC to allow only authorized interconnect traffic to/from your trunk/ interconnect provider.
  • 24.
    Session Border Controllers(SBCs) are the best edge device for security in VoIP deployments. full session state standard network firewall same built in security features for voice traffic SBC Importance of a SBC
  • 25.
  • 26.
    Securing VoIP Devices Firewall Keepsoftware on PC and phone patched up and up to date Use best practices for passwords
  • 27.
    Securing VoIP Devices WHENDISPOSING OF YOUR PHONE Remove your username and passwords Uninstall the application on soft phones Complete a factory reset of phone to remove directory and call records Change your password on the VoIP service
  • 28.
    Proprietary and confidential.© 2015 IntelePeer, Inc. All rights reserved. Leverage your Provider Intelepeer’s Communications as a Service platform for voice and unified communications enablement SIP provider since 2003 Certified with all leading UC and PBX systems 
 With IntelePeer you can be certain Security Best Practices are followed.
  • 29.
    service provider support C a ll B a r r i n g F r a u d A l e r t s IntelePeer’s Fraud Prevention Efforts T L S / S R T P
  • 30.
  • 31.
    Proprietary and confidential.© 2015 IntelePeer, Inc. All rights reserved. www.intelepeer.com 177 Bovet Road Suite 400| San Mateo, CA | 94402 | T: +1.650.525.9200 | F: +1.650.287.2628
 © 2015 IntelePeer Contact us at sales@intelepeer.com or 877-336-9171