Threat assessment of IP based voice systems

1st IEEE Workshop on VoIP Management and Security, VoIP MaSe 2006

Volumn , Issue , 2006, Pages 17-26

  Rippon, William J ^a,b  

^a IBM RESEARCH   (United States)

^b Certified Information Systems Security Professional CISSP #72768

Author keywords

Attacks; Component; IPTelephony; Mitigation; Security; Threats; VoIP

Indexed keywords

ATTACKS; IP TELEPHONY; MITIGATION APPROACHES; THREAT ASSESSMENT; VOIP;

INTERNET TELEPHONY; NETWORK PROTOCOLS; OPTIMIZATION; RELIABILITY; SECURITY OF DATA;

VOICE/DATA COMMUNICATION SYSTEMS;

EID: 33751027241     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (27)

1. D. Richard Kuhn, Thomas J. Walsh and Steffen Fries, "Security considerations for voice over IP systems", NIST Special Publication 800-58, U.S., January 2005
2. Greg S. Tucker, "Voice over Internet Protocol and security", SANS Institute, October 2004 (available online http://www.sans.org/rr/ whitepapers/voip/1513.php)
3. A. Klein, "Security analysis: traditional telephony and IP telephony", SANS Institute, 2003 (available online http://www.sans.org/rr/ whitepapers/telephone/924.php)
4. Anonymous, "IP telephony security in depth", Cisco Systems Corporation, 2003 (available online http://www.cisco.com/go/safe)
5. Anonymous, "SAFE enterprise layer2 addendum", Cisco Systems Corporation, 2003 (available online http://www.cisco.com/go/safe)
6. S. Convery and B. Trudel, "Cisco SAFE: A security blueprint for enterprise networks", Cisco Systems Corporation, 2000 (available online http://www.cisco.com/go/safe)
7. B. Munch, "IP telephony security: Deploying secure IP telephony in the enterprise network", META Group, January 2005 (available online http://www.juniper.net/company/events/archive/metavoip.pdr)
8. Anonymous, "Security in real-time IP communications", Siemens AG, 2004 (available online at http://www.siemens.com/Daten/siecom/HQ/ICN/ Internet/Enterprise_Networks/WORKAREA/en_ezine/templatedata/English/file/binary/ 0105_Security_in_Real-Time_IP_en_1297948.pdf)
9. P. Brockmann, "IP telephony security - a double edged sword", 3Com Corporation, 2005 (available online http://www.3com.com/voip/whitepapers. html)
10. Anonymous, "Secure telephony solutions", Nortel Networks, 2003 (available online http://www.nortel.com/solutions/security/collateral/nn104820- 071403.pdf)
11. Anonymous, "Secure telephony solution appendices", Nortel Networks, 2003 (available online http://www.nortel.com/solutions/security/ collateral/nn105080-071103.pdf)
12. Anonymous, "Security for service provider VoIP networks", Nortel Networks, 2004 (available online http://www.nortel.com/products/01/ succession/cs/softswitch/collateral/nn109180-102904.pdf)
13. Anonymous, "Solution architecture reference manual for IPT, IP communications systems test release 2.0", Cisco Systems 2004 (available online at http://www.cisco.com/en/US/netsol/ns340/ns394/ns165/ns268/ networking_solutions_package.html)
14. R. Droms, "Dynamic host configuration protocol", Internet Engineering Task Force, RFC 2131, 1997
15. P. Mockapetris, "Domain names - concepts and facilities", Internet Engineering Task Force, STD 13, RFC 1034, 1987
16. P. Mockapetris, "Domain names - implementation and specification", Internet Engineering Task Force, STD 13, RFC 1035, 1987
17. D. Mills, "Network time protocol (version 3) specifications, implementation and analysis", Internet Engineering Task Force, RFC 1305, 1992
18. nd Edition
19. J. Rosenberg, H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Sparks, N. Handley, and E. Schooler, "SIP: Session initiation protocol", Internet Engineering Task Force, RFC 3261, 2002.
20. Anonymous, "802.3af IEEE Standard for Information technology - Telecommunications and information exchange between systems - Local and metropolitan area networks - Specific requirements, Part 3: Carrier Sense Multiple Access with Collision Detection (CSMA/CD) Access Method and Physical Layer Specifications, Amendment: Data Terminal Equipment (DTE) Power via Media Dependent Interface (MDI)", IEEE Standard 802.3af, 2003
21. International Telecommunications Union, "Packet based multimedia communications systems," ITU, Recommendation H.323, 2000.
22. T. Ylonen and C. Lonvick (Editor), "The secure shell (SSH) protocol architecture", Internet Engineering Task Force, RFC 4251, January 2006
23. D. Harrington, R. Presuhn and B. Wijnen, "An architecture for describing SNMP management frameworks", Internet Engineering Task Force, RFC 2261, January 1998
24. Anonymous, "802.1X - IEEE Standard for Local and metropolitan area networks - Port-Based Network Access Control", IEEE Standard 802.1x-2004
25. Anonymous, "TCG trusted network connect, TNC architecture for interoperability, version 1.0 revision 4", Trusted Computing Group, May 2005 (available online at https://www.trustedcomputinggroup.org/groups/network)
26. Cisco Network Admission Control, Cisco Systems (available online at http://www.cisco.com/en/US/netsol/ns466/networking_solutions_package.html)
27. Microsoft Network Access Protection, Microsoft Corporation, (available online at http://www.microsoft.com/technet/itsolutions/network/nap/default.mspx)