The only publication dedicated to OSS Volume 2, Issue 3 - August 2005 |
|
VoIP Security - Is It Really an Issue?By Chris Thatcher Consumer exposure to threats in the data world have consistently and exponentially grown over the past five years – a fact reinforced in the media each day, with reports of breaches in data security at lending institutions and retail outlets nationwide. The number of vulnerabilities grows daily, as does the simplicity of pre-packaged hacker tools. The potential loss of revenue or a tarnished reputation in the event of compromise is high. Though there have been no major threats to date to VoIP security, the multitude of security threats that plague today’s data networks will be inherited by VoIP infrastructures down the road. The addition of VoIP as an application on the network makes those threats even more dangerous. For example, a distributed Denial of Service (DoS) attack may slow down someone browsing the Web, but on a VoIP network this same attack could prevent 911 calls. Other potential breaches include: spam calling (SPIT), tapping into calls, viruses, user identity management issues, and of course the unknown. If the right steps are taken, VoIP can be made as secure -- if not more secure -- as its traditional counterpart. However, when it comes to securing VoIP networks, the traditional business mentality has been to focus on “probable,” near term security issues. Then, if there is budget left, businesses are considering the “possible.” Companies currently view many vulnerabilities as “too complex” or “too unlikely” to spend money on.
© 2005, All information contained herein is the sole property of Pipeline Publishing, LLC. Pipeline Publishing LLC reserves all rights and privileges regarding the use of this information. Any unauthorized use, such as copying, modifying, or reprinting, will be prosecuted under the fullest extent under the governing law. |