FW: call for speakers and thoughts on VoIP Security - there's a long way to go!






Subject: call for speakers and thoughts on VoIP Security - there's a
long way to go!

There's no question that VoIP Security is a BIG issue. Most management
surveys say that it's the first or second reason given for why companies
are delaying on VoIP.

VoIPSA is certainly a resource, as NIST. They publish a free report
(it's really a 100 page book) on Securing VoIP and it's probably the
best guide in the industry. It's also a great VoIP primer and best of
all, you've already paid for it in your tax dollars so you can download
it at no cost. (The administration has not reclassified it as top secret
yet)

It's at:
http://www.csrc.nist.gov/publications/nistpubs/800-58/SP800-58-final.pdf

We've also completed a video podcast on VoIP available to the industry
at:
www.ip3inc.com/webinars.htm


The most important lessons here are the recommendations to avoid soft
phones and to segment VoIP on a VLAN will prevent many of the desired
voip benefits so the security frameworks don't map to reality.

If you'd like to present your work in this field or just learn a more
about VoIP security join us at the Second Annual Voip Security
Conference hosted by IP3 and Illinois Institute of Technology:

Call for Speakers and Sponsors
The 2nd Annual
Managing VoIP Security Conference
(MVSC 2006)
May 17-18, 2006

IIT- Illinois Institute of Technology
Herman Union Building- Conference Center Chicago, Illinois, USA
www.voip-wifi.net or visit:
www.ip3seminars.com/conf.htm


thanks
KWK



Relevant Pages

  • Re: VOIP: RTP vs SRTP
    ... Planning some internal presentations on VoIP, I was wondering if SRTP (Secure Real Time Protocol) is now really in use, as a secure replacement of RTP. ... In real life, VoIP security is getting better, but this is fairly new. ...
    (Pen-Test)
  • New: VoIP Security tools list
    ... The VoIP Security Alliance is pleased to announce the public release of its VoIP security tool list. ... Special thanks to VOIPSA members Shawn Merdinger and Dustin Trammell who created the list and have graciously agreed to maintain it. ... The Voice over IP Security Alliance aims to provide VoIP security related resources through a unique collaboration of VoIP and Information Security vendors, providers, and thought leaders. ...
    (Pen-Test)
  • Re: VoIP
    ... > As a matter of fact, I'm not sure which should be the 'scope' of a comprehensive VoIP test, and have not come across any methodologies of this type. ... The Voice over IP Security Alliance (VOIPSA) is pleased to announce the ... list focused on VoIP security issues, VoIP security technologies, and ... risks through discussion lists, white papers, sponsorship of VoIP security ...
    (Pen-Test)
  • Should VOIP be Put on Hold For Now?
    ... Let's Put VOIP on Hold ... How do you think people are going to feel about your VOIP (voice over ... who writes much of our VOIP security ... of new telephony hardware, new protocols, and different user behavior ...
    (comp.dcom.telecom)