travel in the age of VoIP as a data and voice packets on the way Cyber Similarly, it is natural that many security concerns rise. With more information to be intercepted, corrupted or can be accessed illegally, the pirates are more deadly than ever to be used for pleasure or personal enrichment.
Those who should manage VoIP services with systems to ensure that many weaknesses are addressed to minimize the threats and mitigate the potential impact on flows of data and voice communications, it should attack. For VoIP, the two factors that must be examined in detail:
Encryption
can be easily intercepted and viewed by persons other than the addressee of packet sniffers and packet capture techniques to other than calls, it is necessary to send packets and voice signals the end of the encrypt and decrypt it only when required by the intended recipient.
The packages can include IP-level encrypted so that it incomprehensible to anyone who is the VoIP traffic with IPSec encryption algorithms and protocols, security begins. Encryption is also at the application level with VoIPSec (VoIP by using IPSec) that attacks be done to prevent man-in-the-middle, packet sniffing and analysis of voice traffic. Fortunately, the obstacles by using IPSec or VoIPSec as crypto engine, which slowly degrades the Quality of Service (QoS) can now by new developments, such as VoIP crypto-aware scheduler that bottlenecks are overcome encryption relieved.
Firewall
Today include, networks almost always firewalls that block traffic intrusive, invasive or malicious attempts, a LAN, WAN or even a single computer access. This is the first line of defense against attacks with all the traffic that the firewall is not blocked.
Firewalls are a blessing and a curse for VoIP networks. Since a firewall filters all traffic, it creates a bottleneck that real-time applications like VoIP hatred, for this cause latency (delay), jitter and packet loss, which is poor quality in voice quality. But leave open the alternative of certain ports to allow VoIP traffic through the system could pass through unfiltered exposure to possible attacks. On the other hand, VoIP networks configured to simplify and centralize security configurations on the gateway firewall rather than on each endpoint that will be considerably relieved.
With VoIP-enabled Application Layer Gateway (ALG), which can analyze and understand the VoIP traffic lights open and dynamic, or close the necessary ports one of the options that are used to enable VoIP signals can pass through the firewall is to . Session border controller (SBC), a special device, the firewall / NAT traversal and other security features can also be used does, though not yet widely available.
With the growing popularity of VoIP it is essential to use for designers and network administrators to view all available technologies to the problems found by the inclusion of VoIP network data to resolve resolve discrepancies. Ensure the protection of voice and data packets must also prevail, such as data loss or corruption can lead to very serious consequences.