Home > Store > Security > Network Security
Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures
- By Peter Thermos, Ari Takanen
- Published Aug 1, 2007 by Addison-Wesley Professional.
- Copyright 2008
- Dimensions: 7x9-1/4
- Pages: 384
- Edition: 1st
- Book
- ISBN-10: 0-321-43734-9
- ISBN-13: 978-0-321-43734-1
Register your product to gain access to bonus material or receive a coupon.
Product Author Bios
Peter Thermos is CTO of Palindrome Technologies, which provides information
security consulting services to government and commercial organizations.
Peter started his career at Bellcore (now Telcordia) as a member of the technical
staff and later as a principal technical expert on key information security and
assurance tasks. He is a frequent speaker at conferences and industry forums
including the IEEE, MIS, IEC, ISACA, VON, and others. Peter is also known
for his contributions to the security community for discovering software
vulnerabilities, the release of SiVuS (The First VoIP Vulnerability Scanner)
and the vopsecurity.org Forum. Peter holds a Masters Degree in Computer
Science from Columbia University where he is currently furthering his
graduate studies.
Ari Takanen is founder and CTO of Codenomicon. Since 1998, Ari has
focused on information security issues in next-generation networks and security
critical environments. He began at Oulu University Secure Programming Group
(OUSPG) as a contributing member to PROTOS research that studied information
security and reliability errors in WAP, SNMP, LDAP, and VoIP implementations.
Ari and his company, Codenomicon Ltd. provide and commercialize automated
tools using a systematic approach to test a multitude of interfaces on mission-critical
software, VoIP platforms, Internet-routing infrastructure, and 3G devices.
Codenomicon and the University of Oulu aim to ensure new technologies are
accepted by the general public, by providing means of measuring and ensuring
quality in networked software. Ari has been speaking at numerous security and
testing conferences on four continents and has been invited to speak at leading
universities and international corporations.
Audio
SearchSecurity.com Hot Type podcast, featuring an excerpt from the book
In Securing VoIP Networks, two leading experts systematically review the security risks and vulnerabilities associated with VoIP networks and offer proven, detailed recommendations for securing them. Drawing on case studies from their own fieldwork, the authors address VoIP security from the perspective of real-world network implementers, managers, and security specialists. The authors identify key threats to VoIP networks, including eavesdropping, unauthorized access, denial of service, masquerading, and fraud; and review vulnerabilities in protocol design, network architecture, software, and system configuration that place networks at risk. They discuss the advantages and tradeoffs associated with protection mechanisms built into SIP, SRTP, and other VoIP protocols; and review key management solutions such as MIKEY and ZRTP. Next, they present a complete security framework for enterprise VoIP networks, and provide detailed architectural guidance for both service providers and enterprise users.
1 Introduction
2 VoIP Architectures and Protocols
3 Threats and Attacks
4 VoIP Vulnerabilites
5 Signaling Protection Mechanisms
6 Media Protection Mechanisms
7 Key Management Mechanisms
8 VoIP and Network Security Controls
9 A Security Framework for Enterprise VoIP Networks
10 Provider Architectures and Security
11 Enterprise Architectures and Security
Index
Preface
Foreword
Table of Contents
Chapter 1: Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1
Chapter 2: VoIP Architectures and Protocols . . . . . . . . . . . . . . . . . .29
Chapter 3: Threats and Attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . .53
Chapter 4: VoIP Vulnerabilities . . . . . . . . . . . . . . . . . . . . . . . . . . .127
Chapter 5: Signaling Protection Mechanisms . . . . . . . . . . . . . . . . .165
Chapter 6: Media Protection Mechanisms . . . . . . . . . . . . . . . . . . .217
Chapter 7: Key Management Mechanisms . . . . . . . . . . . . . . . . . . .231
Chapter 8: VoIP and Network Security Controls . . . . . . . . . . . . . .263
Chapter 9: A Security Framework for Enterprise VoIP Networks . .297
Chapter 10: Provider Architectures and Security . . . . . . . . . . . . . . .315
Chapter 11: Enterprise Architectures and Security . . . . . . . . . . . . . .334
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .345
Downloadable Sample Chapter
This book includes free shipping!
This book includes free shipping!
eBook (Watermarked)
$43.99
$35.19
Includes EPUB, MOBI, and PDF
About eBook Formats
This eBook includes the following formats, accessible from your Account page after purchase:
EPUBThe open industry format known for its reflowable content and usability on supported mobile devices.
MOBIThe eBook format compatible with the Amazon Kindle and Amazon Kindle applications.
PDFThe popular standard, used most often with the free Adobe® Reader® software.
This eBook requires no passwords or activation to read. We customize your eBook by discretely watermarking it with your name, making it uniquely yours.
- Request an Instructor or Media review copy.
- Corporate, Academic, and Employee Purchases
- International Buying Options
Get access to thousands of books and training videos about technology, professional development and digital media from more than 40 leading publishers, including Addison-Wesley, Prentice Hall, Cisco Press, IBM Press, O'Reilly Media, Wrox, Apress, and many more. If you continue your subscription after your 30-day trial, you can receive 30% off a monthly subscription to the Safari Library for up to 12 months. That's a total savings of $199.
