
	Home > Ask the Security Experts > Network Security Questions & Answers > How should service providers address VoIP security issues and threats?

Ask The Security Expert: Questions & Answers

EMAIL THIS

How should service providers address VoIP security issues and threats?

EXPERT RESPONSE FROM: Mike Chapple, featured expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 23 January 2009
What security defenses should we expect from VoIP service providers? Although some experts say that the providers offer encryption, I've heard that that is not always the case.

BROWSE BY TAG

Network Security, VLAN Security Management, NAC and Endpoint Security Management, Enterprise Network Security, Network Protocols and Security, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Network Security
	How to set up a split-tunnel VPN in Windows Vista
	What is the difference between static and dynamic network validation?
	Port scan attack prevention best practices
	Securing the intranet with remote access VPN security
	How to prevent network sniffing and eavesdropping
	How to implement virtual firewalls in a complex network infrastructure
	How to manage network bandwidth with distributed ISP bandwidth
	How to edit group policy objects to give a user local admin rights
	How to prevent operating system cloning with AES 256-bit encryption
	How to securely connect a LAN POS to a remote point-of-sale device

VLAN Security Management

How to securely connect a LAN POS to a remote point-of-sale device

How to compartmentalize WiFi traffic with a VLAN

Cloud, virtualization servers pose challenges for PCI compliance

How to build security into a virtualized server environment

Server considerations for internal network application setup

Microsoft NAP-TNC compatibility won't speed adoption, users say

Hackers have knack for beating NAC systems

NAC helps aerospace firm's network blast off

Network Access Control Learning Guide

RSA Conference 2006

Network Protocols and Security

Expert calls SSL protocol vulnerability a non issue

How to prevent phishing attacks with social engineering tests

How SSL-encrypted Web connections are intercepted

DNSSEC deployment challenges can be overcome

Microsoft issues SMB vulnerability advisory, patch pending

Microsoft repairs Windows media, TCP/IP vulnerabilities

How to test IPv6 infrastructures

DNSSEC deployments gain momentum since Kaminsky DNS bug

Kaminsky interview: DNSSEC addresses cross-organizational trust and security

How to create secure Windows FTP automation

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

VLAN hopping (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

The advice that you've heard is correct. Many VoIP providers do not offer encryption services due to the difficulty inherent in encrypting voice traffic without producing a noticeable degradation in speech quality. When deploying an enterprise VoIP product, carefully consider the security measures used by the tool.

First, unless your provider offers encryption, you should definitely consider placing the call manager at your site. Doing so allows for all of the benefits of a VoIP network within the walls of the organization, but preserves the traditional security of the wired PSTN for calls leaving the enterprise.

In addition, you should provide security for internal calls as well; tools like Wireshark make it easy for savvy users to identify VoIP traffic and eavesdrop on VoIP calls. The simplest thing you can do is separate voice and data traffic on your network. Create segmented VLANs for all voice devices and use both policy and technical measures to prohibit the use of data devices on those VLANs. When configuring these protections, don't forget that most VoIP phones come with a data jack designed to allow users to share a single wall jack (and VLAN assignment!) between their phones and PCs. You'll want to disable those jacks!

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy