How Secure is Your VoIP Network

By Jelani Harper
Updated: September 15, 2011

How Secure is Your VoIP Network

Security has long been a topic of concern for VoIP users, particularly those who employ VoIP service over networks with valuable customer and proprietary company information. Common threats to security for such networks involve both authentication-related and privacy issues, many of which are similar to those for any sort of data transmission system and which have, for the most part, similar solutions. Denial of service attacks or network security leaks are most susceptible in areas in which specific ports in an organization’s firewall must open to permit transmission of voice data packets, in which there are IP PBXs, and in which gateway technologies are employed.

Open Ports

Due to the fact that a network’s firewalls must be opened at certain ports to allow transmission of VoIP data, prudent security measures to compensate for this occurrence include the encryption of the entire computer network, which will enable VoIP transmissions to be encrypted as well. The encryption of internal VoIP traffic should significantly reduce insider attacks, while it is useful to separate and isolate voice traffic onto a virtual LAN and run the encrypted VoIP traffic over a virtual private network for external communication. Other effective means of compensating for open ports is to turn off VoIP protocols that aren’t currently being used by the network to seal those points of entry.

IP PBXs

IP PBXs, which are largely server-based and are used for logging call information as well as for facilitating VoIP service through an internal or a proprietary operating system, are frequently vulnerable to a number of infiltrations and viruses. Hacking into these areas can result in substantial compromising of valuable information, which is why it’s best to keep such equipment frequently monitored with intrusion detection systems and securely placed behind firewalls. Other security measures for IP PBXs include patching them against vulnerabilities and separating their domain from that of other servers to deny internet accessibility to them. It may even be useful to grant limited administrative access to their servers.

Gateway Technologies

These technologies also provide a means through which hackers may infiltrate a VoIP system and make free phone calls. The external use of VoIP requires gateway technologies to convert data packets from the IP network into voice information which is then sent over a public switched phone network, which allows infiltrators to the ability to modify, store, identify, and play back the traffic transmitted through the network. The key to compensating for this particular vulnerability is to restrict access control lists and configure the gateway so that only approved users have the ability to utilize voice calls.
 

Featured Research
  • Is Your Phone System Stealing Profits?

    Having the wrong phone system can dramatically cut into your profits. Despite this, many businesses just sign up for a plan or platform that seems ‘good enough’. If you haven’t carefully considered your options and the included features, there’s a very good chance that you are leaving money on the table in some way. more

  • Phone System Technology Showdown

    VoIP and IP telephony are often misconstrued as being the same type of phone system, but the truth is they operate on different technology and deployment methods. This guide will explain the differences between VoIP and IP, go into the pros and cons of both VoIP and IP-PBX, and give insight into which type of phone system will benefit your business the most. more

  • Why Enterprises are Making the Switch to VoIP

    Your phone system is your most important business communication system. It allows you to connect with your employees, prospects, and clients. And wouldn't it be great if there was a solution that helped drive down costs while providing a competitive advantage? more

  • Business Phone System Buyer's Guide

    Communication has been a focal point in business since inception, but the industry is changing drastically in how people connect to one another and what tools and systems they use to do so. Less than 15 years ago, 90% of people relied on landline phone systems for communication. Today, less than 60% of Americans even have a landline and 40% rely solely on their mobile phone. more

  • The IT Manager's Survival Guide

    As an IT manager, maintaining physical fax servers and infrastructure is not a high priority. However, fax capability remains a business need simply because chances are your industry is dependent on its security. What if there was a way to reduce the amount of time spent handling fax complaints and maintaining physical servers? And this way took into account security, cost savings, and freed up your IT resources. Would you be interested? more