Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures
In Securing VoIP Networks, two leading experts systematically review the security risks and vulnerabilities associated with VoIP networks and offer proven, detailed recommendations for securing them. Drawing on case studies from their own fieldwork, the authors address VoIP security from the perspective of real-world network implementers, managers, and security specialists.
The authors identify key threats to VoIP networks, including eavesdropping, unauthorized access, denial of service, masquerading, and fraud; and review vulnerabilities in protocol design, network architecture, software, and system configuration that place networks at risk. They discuss the advantages and tradeoffs associated with protection mechanisms built into SIP, SRTP, and other VoIP protocols; and review key management solutions such as MIKEY and ZRTP. Next, they present a complete security framework for enterprise VoIP networks, and provide detailed architectural guidance for both service providers and enterprise users.
Table of Contents
1 Introduction
2 VoIP Architectures and Protocols
3 Threats and Attacks
4 VoIP Vulnerabilites
5 Signaling Protection Mechanisms
6 Media Protection Mechanisms
7 Key Management Mechanisms
8 VoIP and Network Security Controls
9 A Security Framework for Enterprise VoIP Networks
10 Provider Architectures and Security
11 Enterprise Architectures and Security
Customer Review:
Good introduction to VoIP security. This book was useful for understanding VoIP security protocols, including somewhat obscure ones such as SIP over TLS. The threats section looks like it will be valuable for convincing managers to take VoIP security seriously. I used the book to evaluate Microsoft’s new VoIP products (I work for an analyst firm, Directions on Microsoft, that covers the company) and found it very helpful.
I wish that the book were organized to relate the threats and attacks to the countermeasures more clearly — I find it easier to understand a security protocol when someone shows me what attacks it can and can’t block. I’d like to see a book like this that focuses on SIP/RTP VoIP in more depth and leaves out H.323 — I know H.323 is more widely deployed, but SIP/RTP seems to be where the big vendors are headed. Still, these are minor quibbles — I would recommend this book to anyone who needs an introduction to VoIP network security.
Customer Review:
If you have any doubt whether VoIP is vulnerable . . .A quick read of the first 1/3 of the book will cure you of your doubts VoIP can be attacked forever! It was almost painful reading; exploit approach after exploit approach, but I mean that in a good way like the pain you feel in your muscles after exercise.
I was excited when this book came out, I have been following some of the author’s Thermos and Takanen work and I think they were the perfect team for this book. I feel that Chapter 3 and 4, threats and attacks and VoIP vulnerabilities are by far the strongest chapters and they alone are worth the purchase price of the book. The majority of the rest of the book is focused on mitigating controls and it is solid writing, solid research, but not quite at the level of the pen test side of the book.
Chapters 10 and 11 are invaluable to anyone considering a VoIP deployment including a deployment where you are depending on a service provider. The charts and diagrams are clear and easy to understand, the whole book team is to be commended for that, this is a complex subject. If you are even thinking about VoIP, you should read this book.
do you own this book? Leave a review below if you’d like.
