VoIP Security

New Admin

10 years ago

VoIP Security: An Introduction
- Overview of VoIP security challenges
- How VoIP relates to overall data security strategy
- How VoIP relates to traditional telecom security
- Introduction to the OSI model
- Learning VoIP security using the OSI model: An introduction
- VoIP architectural vulnerabilities
Physical Layer Security
- Cabling and devices
- Data center and server access, etc.
- Endpoints
Data Link Layer Security
- Firewalls and NAT’s
- DoS Attacks
Transport Layer Security
- Digest authentication
Session Layer Security
- Protocols
  - SIP standard and attacks
  - H.323
  - IETF RFC VoIP standards
- Application-level security vulnerabilities
  - Vendor-specific issues
- Encryption
Presentation Layer Security
- Rights and access levels
Application Layer Security
- Password issues with VoIP and applications
- User authentication
- Remote system access issues
Network Security Issues and VoIP
Gateway Security
- MGCP
- Megaco/H.248
Network Policies and Security Management
Security Best Practices
- Security audit methods
- Vendor management
- Testing systems and devices: Available tools
Wrap-up: Summary, Q/A, and Evaluations