The Perfect Reference for the Multitasked SysAdmin This is the perfect guide if VoIP engineering is not your specialty. It is the perfect introduction to VoIP security, covering exploit tools and how they can be used against VoIP (Voice over IP) systems. It gives the basics of attack methodologies used against the SIP and H.323 protocols as well as VoIP network infrastructure. * VoIP Isn’t Just Another Data Protocol IP telephony uses the Internet architecture, similar to any other data application. However, from a security administrator’s point of view, VoIP is different. Understand why. * What Functionality Is Gained, Degraded, or Enhanced on a VoIP Network? Find out the issues associated with quality of service, emergency 911 service, and the major benefits of VoIP. * The Security Considerations of Voice Messaging Learn about the types of security attacks you need to protect against within your voice messaging system. * Understand the VoIP Communication Architectures Understand what PSTN is and what it does as well as the H.323 protocol specification, and SIP Functions and features. * The Support Protocols of VoIP Environments Learn the services, features, and security implications of DNS, TFTP, HTTP, SNMP, DHCP, RSVP, SDP, and SKINNY. * Securing the Whole VoIP Infrastructure Learn about Denial-of-Service attacks, VoIP service disruption, call hijacking and interception, H.323-specific attacks, and SIP-specific attacks. * Authorized Access Begins with Authentication Learn the methods of verifying both the user identity and the device identity in order to secure a VoIP network. * Understand Skype Security Skype does not log a history like other VoIP solutions; understand the implications of conducting business over a Skype connec

Key Features

*Provides system administrators with hundreds of tips, tricks, and scripts to complete administration tasks more quickly and efficiently *Short on theory, history, and technical data that ultimately is not helpful in performing their jobs *Avoid the time drains associated with securing VoIP


System Administrators; Security Professionals

Table of Contents

  • Lead Author and Technical Editor
  • Chapter 1: Introduction to VoIP Security
    • Introduction
    • The Switch Leaves the Basement
    • What Is VoIP?
    • VoIP Isn’t Just Another Data Protocol
    • Security Issues in Converged Networks
    • A New Security Model
    • Summary
  • Chapter 2: The Hardware Infrastructure
    • Introduction
    • Traditional PBX Systems
    • PBX Alternatives
    • VoIP Telephony and Infrastructure
    • Summary
  • Chapter 3: Architectures
    • Introduction
    • PSTN: What Is It, and How Does It Work?
    • PSTN Call Flow
    • PSTN Protocol Security
    • The H.323 Protocol Specification
    • The Primary H.323 VoIP-Related Protocols
    • H.235 Security Mechanisms
    • Understanding SIP
    • SIP Functions and Features
    • SIP Architecture
    • Instant Messaging and SIMPLE
    • Summary
  • Chapter 4: Support Protocols
    • Introduction
    • DNS
    • TFTP
    • HTTP
    • SNMP
    • DHCP
    • RSVP
    • SDP
    • Skinny
    • Summary
  • Chapter 5: Threats to VoIP Communications Systems
    • Introduction
    • Denial-of-Service or VoIP Service Disruption
    • Call Hijacking and Interception
    • H.323-Specific Attacks
    • SIP-Specific Attacks
    • Summary
  • Chapter 6: Confirm User Identity
    • Introduction
    • 802.1x and 802.11 i (WPA2)
    • 802.1x/EAP Authentication
    • Public Key Infrastructure
    • Minor Authentication Methods
    • Summary
  • Chapter 7: Active Security Monitoring
    • Introduction
    • Network Intrusion Detection Systems
    • NIDS Defined
    • Components
    • Types
    • Placement
    • Important NIDS Features
    • Maintenance
    • Alerting
    • Logging
    • Extensibility
    • Response<


No. of pages:
© 2007
Electronic ISBN:
Print ISBN:

About the authors