PSTN Security. Sougat Ghosh Security Services Leader Asia, Nortel Delhi / September 29, 2008 BUSINESS MADE SIMPLE

Similar documents
WE SEE YOUR VOICE. SecureLogix We See Your Voice

ETM Reporting Voice Network Intelligence

Managing IP Telephony

Unified Communications Manager Express Toll Fraud Prevention

Jasper Maters Sales Director Benelux LINK YOUR LYNC Connected by AudioCodes Overview 2012

White Paper. SIP Trunking: Deployment Considerations at the Network Edge

10 Reasons to Choose AudioCodes Enterprise SBC

Spectrum Enterprise SIP Trunking Service AastraLink Pro 160 Firmware build 1005 IP PBX Configuration Guide

The ETM (Enterprise Telephony Management) System Technical Overview. Release 5.2. A product brief from SecureLogix Corporation

Application Note. Deploying Survivable Unified Communications Solutions with the Dialogic 2000 Media Gateway Series

Spectrum Enterprise SIP Trunking Service Avaya (Nortel) BCM50 Firmware IP PBX Configuration Guide

Spectrum Enterprise SIP Trunking Service Vertical TM Wave IP500TM / Wave IP2500 TM Release 4.0, 4.5 IP PBX Configuration Guide

Voice Systems. Reading: Bryan Pickett, "The Voice Network...", from The Network Manager's Handbook, John

The Spoofing/Authentication Threat

NEC: SIP Trunking Configuration Guide V.1

Communications Transformations 2: Steps to Integrate SIP Trunk into the Enterprise

8x8 Virtual Office Government

Never Drop a Call With TecInfo SIP Proxy White Paper

Ingate SIParator /Firewall SIP Security for the Enterprise

Spectrum Enterprise SIP Trunking Service SIPfoundry sipxecs Firmware IP PBX Configuration Guide

3050 Integrated Communications Platform

T3main. Powering comprehensive unified communications solutions.

Security Assessment Checklist

Unified Communication Platform

securing your network perimeter with SIEM

Opengear Technical Note

ENTERPRISE IP TELEPHONY - PRODUCT SPECIFICATION

Spectrum Enterprise SIP Trunking Service FORTINET - Fortivoice FVE 200D-T Software Verison: V5.0 B156 IP PBX Configuration Guide

Symantec Client Security. Integrated protection for network and remote clients.

Maintaining High Availability for Enterprise Voice in Microsoft Office Communication Server 2007

MANAGED CLOUD SERVICES

Hangzhou Synway Information Engineering Co., Ltd

Spectrum Enterprise SIP Trunking Service Cisco SPA 9000 Firmware IP PBX Configuration Guide

IFB No C032 Cloud Based VOIP System. December 28, 2016

Unified IP IVR Architecture

Voice Topology: Lync 2010

Digital Advisory Services Professional Service Description SIP IP Trunk with Field Trial for Legacy PBX Model

How to Connect MyPBX to NeoGate TA FXS Gateway

CCNA VOICE. Course Catalog

H.323-to-H.323 Interworking on CUBE

Making the Move to IP Telephony. Revolution, Evolution or Both?

Digital Advisory Services Professional Service Description SIP Centralized IP Trunk with Field Trial Model

Cbeyond s BeyondVoice TM with SIPconnect

Information Security Controls Policy

The Telephony Denial of Service (TDoS) Threat

Answer the call to keep costs down

SIP Trunks. PCI compliance paired with agile and cost-effective telephony

ADTRAN Enterprise Networks Portfolio Introduction

Grandstream Networks, Inc. UCM6100 Security Manual

Neox Hosted PBX. for NEXT GEN business communication.

Digital Advisory Services Professional Service Description SIP SBC with Field Trial Endpoint Deployment Model

Selling the Total Converged Solution Module #1: Nortel Enterprise Networking Overview of the 4 Pillars and Why Nortel Tom Price Nortel HQ Sales

WHITE PAPER. Session Border Controllers: Helping keep enterprise networks safe TABLE OF CONTENTS. Starting Points

SIP Trunking Workshop. SIPconnect - Lessons Learned Marc Robins President and Managing Director, SIP Forum. Copyright 2010 SIP Forum

The leader in session border control. for trusted, first class interactive communications

AVANTUS TRAINING PTE PTE LTD LTD

nexvortex Partner Training Webinar Summary Slides

The Designing & Implementing a Voice-Enabled IP Network course has been designed with three primary goals:

Avaya PBX SIP TRUNKING Setup & User Guide

Open Text Fax Gateway Specifications and Implementation Scenarios

The EXTender/PBXgateway Product Suite Simplified Voice Networking for Distributed Enterprises

SRX240 Services Gateway Quick Start

Dialogic 2000 Media Gateway Series by Sangoma

Spectrum Enterprise SIP Trunking Service Cisco Unified Communication Mgr Firmware 6.01 IP PBX Configuration Guide

Managing Voice Services VoiceCon March 7, Brian Gollaher Director, Product Management CA, Inc.

Implementing Cisco Voice Communications & QoS (CVOICE) 8.0 COURSE OVERVIEW: WHO SHOULD ATTEND: PREREQUISITES: Running on UC 9.

SECURE INFORMATION EXCHANGE: REFERENCE ARCHITECTURE

Automating Network and Application Management for Business Benefits

VoIP Application Note:

Course 20337B: Enterprise Voice and Online Services with Microsoft Lync Server 2013 Exam Code: Duration:40 Hrs

Grandstream Networks, Inc. UCM series IP PBX Security Manual

Unified Communications from West

ORACLE ENTERPRISE COMMUNICATIONS BROKER

Voice Trunking in an IP World: Charting a Practical Path for PRI and SIP. Michael Harris Kinetic Strategies

WHITE PAPER. Monitoring Converged Networks: Link Aggregation

ITSM SERVICES. Delivering Technology Solutions With Passion

Microsoft Enterprise Voice and Online Services with Microsoft Lync Server 2013

SteelGate Overview. Manage perimeter security and network traffic to ensure operational efficiency, and optimal Quality of Service (QoS)

IP Possibilities Conference & Expo. Minneapolis, MN April 11, 2007

Data Security and Privacy : Compliance to Stewardship. Jignesh Patel Solution Consultant,Oracle

The Role of E-SBC in VoIP Business Connectivity. 16 November 2011

Allstream NGNSIP Security Recommendations

More than a Unified Messaging Service

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

What methods of faxing does Switchvox support? Creative Innovation Customer Satisfaction Continual Quality Improvement

FlexIP SOLUTIONS FEATURES

Microsoft Selftestengine Exam Questions & Answers

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

IP Telephony Migration Options

VoIP Security and Mitel IP Telephony Solutions. Dan York Chair, Mitel Product Security Team February 2006


SIP trunks with Microsoft Skype For Business

Simplify IP Telephony with System i. IBM System i IP Telephony

SIP Enablement Services (SES) R3.1 Implementation Guide

Avaya Aura. Unified, Real-time Communications. avaya.com

Hangzhou Synway Information Engineering Co., Ltd

Crises Control Cloud Security Principles. Transputec provides ICT Services and Solutions to leading organisations around the globe.

Frequently Asked Questions (Dialogic BorderNet 500 Gateways)

Enterprise Voice and Online Services with Microsoft Lync Server 2013

VeriSign Communications Services. IP Network Solutions. Outsourcing the Softswitch Functionality. Where it all comes together.

Transcription:

PSTN Security Sougat Ghosh Security Services Leader Asia, Nortel Delhi / September 29, 2008 BUSINESS MADE SIMPLE 1

Disclaimer The slides and presentation templates are property of Nortel and must not be replicated. The slides have been taken from various sources and CERT / Nortel does not take any liability for reproduction 2

Agenda What is PSTN? Myths Threats Controls Acknowledgement 3

Myths PSTN / TDM Security Voice have similar threats as data networks Voice threat controls can be mitigated after convergence Traditional Security elements protect from zero day attack Authentication and Authorisation are the only security controls Analog phone guarantees security PBX implements policy on the network VoIP should not be extended to untrusted networks 4

Threats External Access to outsourced / 3rd party / vendors Inbound Access to critical devices storage, networks, etc Outbound access connecting external and internal network Toll fraud Internal Outbound access connecting external and internal network 5

Controls BUSINESS MADE SIMPLE 6

Controls (In the infrastructure ) Deploy controls on individual PBX (if supported) Review controls and usage regularly Modems connected for 3rd party access are enabled to specific phone numbers 7

Controls (Enterprise Policy) Enterprise Authentication for long distance calls Disable all modems (including on laptops) in the infrastructure 8

Controls (External) Authorisation Based on Policy (like User, Time of day, etc) Central Operations Centre Granular Policy Call Recording Based on Event Trigger Call Alerting Protection for Legacy PBX Organisation s Do Not Disturb Registry 9

PSTN Firewall Capabilities Secure Voice Gateway PBX orvoip Call Server Voice Firewall: Blocks phone line attacks. Controls voice network access and service use. Voice IPS: VoIP & TDM Trunks Prevents malicious and abusive call patterns such as toll fraud. Modem Performance Manager: Enterprise-wide dashboard. Real-time performance monitoring & diagnostics. Usage Manager: Enterprise-wide, PBX-independent CDR, call accounting, & resource utilization. Firewall Router L3 Switch Call Recorder: Policy-based recording of targeted calls. Trunk-side, cost effective solution. Real time Enterprise-wide PBX-independent 10

PSTN Security Voice Firewall & Management System Policy Enforcement Saves money Secures phone lines Customer Phone calls Who called who? When? How long? Type? (Voice/Fax/Internet) Threatening caller? Customer experience? Unanswered/busy calls? Long Distance abuse? Internet over phone lines? Bomb threats?... etc. Reports to help lower costs & increase sales. Alerts/stops/records restricted calls Discovers phone resources not working/needed 11 Records conversations

Why PSTN Security? Key Reports: Traffic by call type (voice/fax/modem) Summary traffic analysis Modem calls in/outbound ISP calls unmonitored Internet use Span resource utilization Traffic trending & analysis Toll fraud Fax resources utilization Tie-line analysis / VoIP toll bypass Telecom faults, errors, outages Business operations unanswered calls, excessive busies LD misuse/abuse non-business LD, toll calls, voice on fax.

Where has this been deployed / planned? Large Government Airport Defense Large retail store 13

References / Acknowledgement SecureLogix PSTN Standards Document 14

15

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback