Evangelyze Community Site
Sign in
|
Join
|
Help
Home
Blogs
Forums
Tony's Blog
»
All Tags
»
VoIP
(
RSS
)
Browse by Tags
Tony's Blog
Home
About
Contact
Syndication
RSS for Posts
Atom
RSS for Comments
Email Notifications
Go
Recent Posts
Reality Check: Should you invest in IP PBX now, later or not at all?
The State of PCI Compliance
INVITE of Death
Reality Check: Can you have UC without VoIP/IP PBX?
Voice Convergence Saves Money, Increases Risk
Archives
June 2009 (1)
April 2009 (2)
March 2009 (8)
February 2009 (15)
January 2009 (9)
Sorry, but there are no more tags available to filter with.
Reality Check: Should you invest in IP PBX now, later or not at all?
Each month TechTarget's SearchUnifiedCommunications site does a podcast on a unified communications topic titled Reality Check. I appeared as a guest on this month's podcast and was interviewed by SearchUnifiedCommunications Associate Editor Elaine...
Published
25 Mar 2009 11:40
by
tony
Filed under:
VoIP
,
unified communications
,
PBX
,
podcast
,
Reality Check
,
IP PBX
,
searchunifiedcommunications
The State of PCI Compliance
As Director of Security for Evangelyze Communications my primary focus is on the security implications of VoIP and unified communications and helping our customers to understand the risks and implement effective security controls to protect their unified...
Published
18 Mar 2009 14:38
by
tony
Filed under:
security
,
VoIP
,
unified communications
,
unified communications security
,
podcast
,
PCI compliance
,
PCI DSS
,
compliance
INVITE of Death
Pretty cool name, huh? If you're going to create a new VoIP or unified communications attack, you want to have one with panache and it is hard to get a name with more impact than the 'INVITE of Death'. That said, the attack itself is not nearly...
Published
15 Mar 2009 19:51
by
tony
Filed under:
VoIP
,
VoIP security
,
SIP
,
INVITE
,
denial-of-service
,
OpenSBC
,
DoS
,
INVITE of Death
Reality Check: Can you have UC without VoIP/IP PBX?
Each month TechTarget's SearchUnifiedCommunications site does a podcast on a unified communications topic titled Reality Check. I appeared as a guest on this month's podcast and was interviewed by SearchUnifiedCommunications Associate Editor Elaine...
Published
25 Feb 2009 15:21
by
tony
Filed under:
VoIP
,
unified communications
,
PBX
,
podcast
,
Reality Check
,
IP PBX
,
searchunifiedcommunications
Voice Convergence Saves Money, Increases Risk
With OCS 2007 R2 Microsoft introduced a variety of new features and capabilities. One of the most anxiously anticipated features is the ability to bypass the PBX and do direct SIP-trunking into OCS. There are only a couple of VoIP providers designated...
Published
14 Feb 2009 7:55
by
tony
Filed under:
VoIP
,
VoIP security
,
unified communications
,
unified communications security
,
VoIP security assessment
,
smartsip
,
sip-trunking
VoIP Service Theft Fugitive Captured
Edward Pena was arrested in Mexico yesterday. Pena was originally charged in 2006 with computer fraud and wire fraud for selling stolen VoIP service . Working with his partner Robert Moore, the two scanned networks to find open or poorly secured VoIP...
Published
11 Feb 2009 14:26
by
tony
Filed under:
VoIP
,
VoIP security
,
vulnerabilities
,
best practices
,
VoIP security assessment
,
threats
,
theft
IBM Reports Increase in VoIP Vulnerabilities
The most recent IBM X-Force report provides a lot of insight into the state of network security and malware, including some bad news for VoIP (Voice over IP). The report which summarizes IBM's findings from 2008 and illustrates some trends and predictions...
Published
6 Feb 2009 8:36
by
tony
Filed under:
VoIP
,
VoIP security
,
unified communications
,
unified communications security
,
vulnerabilities
,
UC
,
IBM X-Force report
VoIP Security: The Basics
It is no secret that VoIP is a popular and growing technology. VoIP, and its bigger, more converged, and feature-rich brother, unified communications, represent a significant shift in communications technology and a quantum evolution in how businesses...
Published
5 Feb 2009 13:34
by
tony
Filed under:
VoIP
,
VoIP security
,
toll fraud
,
unified communications security
,
vulnerabilities
,
best practices
,
mitigation
Who Is Responsible for VoIP Security?
With each new revolution in digital communications there seems to come some sort of painful learning curve regarding security. Email, web surfing, and instant messaging have already gone through this evolution. Next up appears to be VoIP. One of the things...
Published
2 Feb 2009 11:49
by
tony
Filed under:
VoIP
,
VoIP security
,
Man-in-the-Middle attack
,
call redirection attack
SIP Over TLS
Session Initiation Protocol (SIP) is not inherently secure. It is essentially a communications-specific version of the HTTP protocol that makes up the basis for web data. Just as HTTP uses SSL (Secure Sockets Layer) and security certificates to encrypt...
Published
30 Jan 2009 12:41
by
tony
Filed under:
VoIP
,
VoIP security
,
SIP
,
encryption
,
TLS
,
S/MIME
,
MD5
,
IPSec
,
SIP over TLS
,
SIPS
,
URI
Predictions for 2009
Everyone loves to start the year making predictions. It is a fun exercise to try and guess what will happen in the coming year, and then reflect back at the beginning of next year to see if you were right or wrong. I suppose if you develop a record of...
Published
29 Jan 2009 7:02
by
tony
Filed under:
VoIP
,
VoIP security
,
unified communications
,
2009 predictions
,
Mark Collier
UC Security Threats: Call Redirection
When initiating VoIP communications with SIP, the first part of establishing a call is that the sending or initiating system sends a SIP INVITE request. The receiving or called system then sends a SIP response. The response could be that the phone is...
Published
28 Jan 2009 7:05
by
tony
Filed under:
VoIP
,
VoIP security
,
SIP
,
intercept
,
INVITE
,
call redirection attack
,
denial-of-service
UC Security Threats: Man-in-the-Middle (MitM) Attack
Did you ever play 'monkey in the middle' when you were a kid? That's the game where one kid stands in the middle while two or more other kids pass a ball back and forth and try to ensure that the kid in the middle doesn't intercept it...
Published
26 Jan 2009 21:34
by
tony
Filed under:
VoIP
,
VoIP security
,
SIP
,
SRTP
,
eavesdrop
,
Man-in-the-Middle attack
,
TLS
,
MitM
VoIP Attack Rings Up $120,000 Phone Bill
An Australian company received quite a shock when they got their phone bill and found that it was $120,000 higher than they expected . Investigators determined that attackers were able to access the companies phone system and place over 11,000 unauthorized...
Published
25 Jan 2009 7:27
by
tony
Filed under:
VoIP
,
VoIP security
,
encryption
,
social engineering
,
monitor call logs
,
toll fraud
Patch Your VoIP
When a hot new technology comes along businesses flock to adopt it and implement it and benefit from all of the features and flash the new technology has to offer. They buy the 'sizzle' and want to dive right in and start using it. Security is...
Published
15 Jan 2009 22:35
by
tony
Filed under:
security
,
VoIP
,
patching
,
VoIP security