SlideShare uma empresa Scribd logo

Security Challenges In VoIP

T
TomGilis

Nowadays VoIP technologies have taken the upper hand offering many advantages compared to the traditional telephone network, but what are the security risks involved when voice and data networks come together. In this presentation, we will identify and evaluate these different security risks and their countermeasures both from a defensive as offensive position.

TecnologiaNegócios
1 de 41
Baixar para ler offline
Security Challenges in VoIP Tom Gilis – Security Consultant Thursday, March 26, 2009
Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 2 © Copyright Dimension Data 2000 - 2009 26 March 2009
Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 3 © Copyright Dimension Data 2000 - 2009 26 March 2009
Who am I and what am I doing here ? Tom Gilis Security Consultant with Dimension Data Penetration tests infrastructures and applications Risk analysis Purpose Create awareness around VoIP security Identify security risks and weaknesses Evaluate protection mechanisms 4 © Copyright Dimension Data 2000 - 2009 26 March 2009
Do we need more security with VoIP? PBX More difficult to access Required specialized knowledge VoIP Uses an existing network (and its flaws) Increase in potential attackers Offers more services 5 © Copyright Dimension Data 2000 - 2009 26 March 2009
VoIP Networks today 6 © Copyright Dimension Data 2000 - 2009 26 March 2009
Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 7 © Copyright Dimension Data 2000 - 2009 26 March 2009
Network segregation Separate voice and data network Improve security Easier management Quality of service Physical Virtual • Expensive • Cheaper • New infrastructure • Uses current infrastructure • Difficult deployment • Easier deployment 8 © Copyright Dimension Data 2000 - 2009 26 March 2009
You probably already use … Virtual Local Access Networks Group devices together in one segment Separate Voice and Data network VLAN Trunking Automatic VLAN configuration I. DHCP Options II. Proprietary protocols (LLDP) III. … 9 © Copyright Dimension Data 2000 - 2009 26 March 2009
Automatic VLAN configuration Easy = YES , Security = NO ! Security tool: VoIPHopper (voiphopper.sourceforge.net) 10 © Copyright Dimension Data 2000 - 2009 26 March 2009
Add authentication layer... 802.1X standard Authentication and authorization Username/password or certificates Compatible with VLAN Trunking Requires: Phone and switch support Authentication server User administration 11 © Copyright Dimension Data 2000 - 2009 26 March 2009
Good effort but … Off-line brute force/dictionary attack tool (xtest.sourceforge.net) 12 © Copyright Dimension Data 2000 - 2009 26 March 2009
Conclusion segregation Recommended − Quality of service − First security barrier Hard to properly protect Not always possible Segregation alone is NOT enough! 13 © Copyright Dimension Data 2000 - 2009 26 March 2009
Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 14 © Copyright Dimension Data 2000 - 2009 26 March 2009
Information Security – CIA Triad Confidentiality Information Security Availability Integrity 15 © Copyright Dimension Data 2000 - 2009 26 March 2009
Information Security in VoIP Confidentiality Quality of Service Information Security in VoIP Availability Integrity C I A Q 16 © Copyright Dimension Data 2000 - 2009 26 March 2009
VoIP Call setup 17 © Copyright Dimension Data 2000 - 2009 26 March 2009
VoIP Security threats Unauthorized access Interruption-of-service Eavesdropping Registration and Media manipulation Social threats 18 © Copyright Dimension Data 2000 - 2009 26 March 2009
Unauthorized access Gaining unauthorized access to a VoIP system or component using one of the remote services. Administrative services (Telnet, HTTP(S), TFTP, …) − Attacks: Password sniffing, Brute force attack, Exploits, … − Goal: Change configuration, abuse telephone network … − Protection:  System hardening (Vendor patches, ACL’s, …)  Good password policy C I A Q 19 © Copyright Dimension Data 2000 - 2009 26 March 2009
Unauthorized access - TFTP bruteforce Brutefile.txt Source: hackingvoip.com 20 © Copyright Dimension Data 2000 - 2009 26 March 2009
Unauthorized access - TFTP bruteforce Brutefile.txt Source: hackingvoip.com 21 © Copyright Dimension Data 2000 - 2009 26 March 2009
Unauthorized access – VoIP Server 22 © Copyright Dimension Data 2000 - 2009 26 March 2009
Interruption-of-service Disrupting the VoIP service by attacking an essential part of the voice network. Network − Denial-of-service − SYN-flooding − ARP spoofing Service − DNS − DHCP Application − SIP flooding attack − RTP/RTCP injections 23 © Copyright Dimension Data 2000 - 2009 26 March 2009
Interruption-of-service – Network Disrupting the VoIP service by attacking network components Denial-of-service attacks − Attacks: DDoS, Ping of Death, ICMP Flooding, SYN Flooding… − Goal: Bring down an essential part of the VoIP network (routers, VoIP gateways, telephones, …), create delay, jitter or packets drops… − Protection:  Firewall  Intrusion Prevention Systems (IPS) A Q 24 © Copyright Dimension Data 2000 - 2009 26 March 2009
Interruption-of-service – Services Disrupting proper VoIP communication by attacking an essential service DNS/DHCP/… − Attacks: Rogue DHCP server, DNS Cache poisoning, … − Goal: Re-route traffic to another compromised host, block new systems from accessing the network − Protection (Network level):  Rogue DHCP server detection  Intrusion Prevention Systems A 25 © Copyright Dimension Data 2000 - 2009 26 March 2009
Interruption-of-service – Application Disrupting proper communication by targeting a VoIP control or signaling protocols’ security weaknesses or risks SIP/H323/RTCP/… − Attacks: SIP INVITE flooding, SIP/RTCP or malformed packet injection,… − Goal: Flooding SIP proxy, terminating or disturbing calls through injection of malicious messages, delay, jitter, packet drops, … − Protection:  Enforce authentication for all packets (preferably mutual)  Firewall or IPS with VoIP capabilities A Q 26 © Copyright Dimension Data 2000 - 2009 26 March 2009
SiVuS – VoIP Vulnerability Scanner 27 © Copyright Dimension Data 2000 - 2009 26 March 2009
Eavesdropping Listening in on private communications between two or more VoIP devices. RTP (Real-time Transport Protocol) − Attacks: MAC spoofing, WiFi hacking, ARP spoofing, MITM, … − Goal: Gain access to the media stream − Protection:  Network hardening  Encryption – Protocol encryption SRTP, ZRTP – (D)TLS, IPSec tunnels C 28 © Copyright Dimension Data 2000 - 2009 26 March 2009
ARP Spoof – Man-in-the-middle Man-in-the-middle attack 29 © Copyright Dimension Data 2000 - 2009 26 March 2009
Eavesdropping - Wireshark 30 © Copyright Dimension Data 2000 - 2009 26 March 2009
Registration manipulation Manipulating or inserting registration packets in order to redirect or hijack sessions Signalling protocols (SIP, H323) − Attacks: Registration removal, hijacking or addition − Goal: Masquerading, eavesdropping, … − Protection:  Require authentication for all packets  Enforce decent password policy C I 31 © Copyright Dimension Data 2000 - 2009 26 March 2009
SiVuS – Password Bruteforcing Attacks SIP authentication Works both online as offline Numeric passwords up to 10 chars  +/- 8 min 32 © Copyright Dimension Data 2000 - 2009 26 March 2009
Media manipulation Manipulation of the media stream exchanged between two clients RTP (Real-time Transport Protocol) − Attacks: RTP injection − Goal: Change or add certain voice messages in a conversion − Protection:  Network hardening  Protocol encryption SRTP, ZRTP  (D)TLS, IPSec tunnels C I 33 © Copyright Dimension Data 2000 - 2009 26 March 2009
Social threat – VoIP Spam (SPIT) Abusing public VoIP service providers or hacked VoIP solutions to get commercial messages to the different users Direct access to target user Low costs Hard to protect against Not popular now but what about in the future? Interconnections through SIP trunks More VoIP end-to-end Easier access 34 © Copyright Dimension Data 2000 - 2009 26 March 2009
Social threat – VISHING Social engineering attacks in order to entice users to call a specific number and give out confidential information 35 © Copyright Dimension Data 2000 - 2009 26 March 2009
Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 36 © Copyright Dimension Data 2000 - 2009 26 March 2009
Information Security in VoIP Confidentiality & Integrity • Use encryption where possible − Application layer:  SRTP, ZRTP, S/MIME in SIP − Transport/Network Layer:  (D)TLS, IPSec • Authentication − Preferably mutual − Strong passwords • Keep your software up-to-date 37 © Copyright Dimension Data 2000 - 2009 26 March 2009
Information Security in VoIP Availability and Quality-of-Service • Network hardening • Security devices − Firewall − Intrusion Prevention System • Redundancy − Fail-over − UPS • Logging and monitoring 38 © Copyright Dimension Data 2000 - 2009 26 March 2009
Conclusion – Security threats YES, secure VoIP exists ! Costs VS Security Added infrastructure: Better and faster hardware PKI environment, RADIUS server, … Maintenance Installation 39 © Copyright Dimension Data 2000 - 2009 26 March 2009
Recommendations  Design and implement a secure network environment  Use encryption where possible  Assure availability through proper redundancy – e.g. Network infrastructure, UPS, …  Good password management  Don’t use soft-phones  Protect your wireless clients with proper protection  Penetration tests and security audits 40 © Copyright Dimension Data 2000 - 2009 26 March 2009
Questions and Answers Thank you ! 41 © Copyright Dimension Data 2000 - 2009 26 March 2009

Recomendados

Grokking TechTalk #18B: VoIP Architecture For Telecommunications
Grokking TechTalk #18B: VoIP Architecture For TelecommunicationsGrokking TechTalk #18B: VoIP Architecture For Telecommunications
Grokking TechTalk #18B: VoIP Architecture For TelecommunicationsGrokking VN
 
Voice over IP: Issues and Protocols
Voice over IP: Issues and ProtocolsVoice over IP: Issues and Protocols
Voice over IP: Issues and ProtocolsVideoguy
 
VOIP Pros & Cons
VOIP Pros & ConsVOIP Pros & Cons
VOIP Pros & ConsZakaria Hasan
 
Voice Over Internet Protocol (VOIP)
Voice Over Internet Protocol (VOIP)Voice Over Internet Protocol (VOIP)
Voice Over Internet Protocol (VOIP)Aakura Pyakura
 
VOIP services
VOIP servicesVOIP services
VOIP servicesPankaj Saharan
 
VOIP Technology
VOIP TechnologyVOIP Technology
VOIP TechnologyMohammad Ali Khan
 
VoIP Literature review
VoIP Literature review VoIP Literature review
VoIP Literature review jodoh247
 
VoIP
VoIPVoIP
VoIPMd. Arif Hossain
 

Recomendados

Grokking TechTalk #18B: VoIP Architecture For Telecommunications
Grokking TechTalk #18B: VoIP Architecture For TelecommunicationsGrokking TechTalk #18B: VoIP Architecture For Telecommunications
Grokking TechTalk #18B: VoIP Architecture For TelecommunicationsGrokking VN
 
Voice over IP: Issues and Protocols
Voice over IP: Issues and ProtocolsVoice over IP: Issues and Protocols
Voice over IP: Issues and ProtocolsVideoguy
 
VOIP Pros & Cons
VOIP Pros & ConsVOIP Pros & Cons
VOIP Pros & ConsZakaria Hasan
 
Voice Over Internet Protocol (VOIP)
Voice Over Internet Protocol (VOIP)Voice Over Internet Protocol (VOIP)
Voice Over Internet Protocol (VOIP)Aakura Pyakura
 
VOIP services
VOIP servicesVOIP services
VOIP servicesPankaj Saharan
 
VOIP Technology
VOIP TechnologyVOIP Technology
VOIP TechnologyMohammad Ali Khan
 
VoIP Literature review
VoIP Literature review VoIP Literature review
VoIP Literature review jodoh247
 
VoIP
VoIPVoIP
VoIPMd. Arif Hossain
 
Voip Voice over IP IP telephony
Voip Voice over IP IP telephony Voip Voice over IP IP telephony
Voip Voice over IP IP telephony Premchand92
 
Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol) Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol) Ankit Gupta
 
VoIP for Dummies
VoIP for DummiesVoIP for Dummies
VoIP for DummiesGregory Morton
 
VoIP Research Paper
VoIP Research PaperVoIP Research Paper
VoIP Research PaperAashish Pande
 
Voice over IP
Voice over IPVoice over IP
Voice over IPDeepak Mangal
 
Wimax and VoIP Presentation
Wimax and VoIP PresentationWimax and VoIP Presentation
Wimax and VoIP PresentationMario B.
 
Research paper on VOIP Technology
Research paper on VOIP TechnologyResearch paper on VOIP Technology
Research paper on VOIP TechnologyKarama Said(BEng,MSc)
 
VoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATIONVoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATIONKarama Said(BEng,MSc)
 
Voice Over IP (VoIP)
Voice Over IP (VoIP)Voice Over IP (VoIP)
Voice Over IP (VoIP)habib_786
 
Voice over internet protocol (voip)3
Voice over internet protocol (voip)3Voice over internet protocol (voip)3
Voice over internet protocol (voip)3Vishnu M Dinesan
 
What is VoIP and How it works?
What is VoIP and How it works?What is VoIP and How it works?
What is VoIP and How it works?broadconnect
 
VOIP business model
VOIP business modelVOIP business model
VOIP business modelLatte Media
 
Final report of dcn
Final report of dcnFinal report of dcn
Final report of dcnMohsin Arif
 
VOIP BASIC
VOIP BASICVOIP BASIC
VOIP BASICdhara patel
 
Voip Ppt
Voip PptVoip Ppt
Voip Pptguest61a8d3
 
VOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOLVOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOLRajan Kumar
 
VOIP: VOICE OVER IP
VOIP: VOICE OVER IPVOIP: VOICE OVER IP
VOIP: VOICE OVER IPVideoguy
 
Introduction to VoIP
Introduction to VoIPIntroduction to VoIP
Introduction to VoIPPaloSanto Solutions
 
Voip introduction
Voip introductionVoip introduction
Voip introductiondaksh bhatt
 
VoIP - Technology To Business Models
VoIP - Technology To Business ModelsVoIP - Technology To Business Models
VoIP - Technology To Business Modelsguesta5f2fb
 
SIP Beyond VoIP
SIP Beyond VoIPSIP Beyond VoIP
SIP Beyond VoIPSaúl Ibarra Corretgé
 
VoIP – vulnerabilities and attacks
VoIP – vulnerabilities and attacksVoIP – vulnerabilities and attacks
VoIP – vulnerabilities and attacksn|u - The Open Security Community
 

Mais conteúdo relacionado

Mais procurados

Voip Voice over IP IP telephony
Voip Voice over IP IP telephony Voip Voice over IP IP telephony
Voip Voice over IP IP telephony Premchand92
 
Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol) Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol) Ankit Gupta
 
Wimax and VoIP Presentation
Wimax and VoIP PresentationWimax and VoIP Presentation
Wimax and VoIP PresentationMario B.
 
VoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATIONVoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATIONKarama Said(BEng,MSc)
 
Voice Over IP (VoIP)
Voice Over IP (VoIP)Voice Over IP (VoIP)
Voice Over IP (VoIP)habib_786
 
Voice over internet protocol (voip)3
Voice over internet protocol (voip)3Voice over internet protocol (voip)3
Voice over internet protocol (voip)3Vishnu M Dinesan
 
What is VoIP and How it works?
What is VoIP and How it works?What is VoIP and How it works?
What is VoIP and How it works?broadconnect
 
VOIP business model
VOIP business modelVOIP business model
VOIP business modelLatte Media
 
Final report of dcn
Final report of dcnFinal report of dcn
Final report of dcnMohsin Arif
 
VOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOLVOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOLRajan Kumar
 
VOIP: VOICE OVER IP
VOIP: VOICE OVER IPVOIP: VOICE OVER IP
VOIP: VOICE OVER IPVideoguy
 
Voip introduction
Voip introductionVoip introduction
Voip introductiondaksh bhatt
 
VoIP - Technology To Business Models
VoIP - Technology To Business ModelsVoIP - Technology To Business Models
VoIP - Technology To Business Modelsguesta5f2fb
 

Mais procurados (20)

Voip Voice over IP IP telephony
Voip Voice over IP IP telephony Voip Voice over IP IP telephony
Voip Voice over IP IP telephony
 
Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol) Voip(Voice over internet Protocol)
Voip(Voice over internet Protocol)
 
VoIP for Dummies
VoIP for DummiesVoIP for Dummies
VoIP for Dummies
 
VoIP Research Paper
VoIP Research PaperVoIP Research Paper
VoIP Research Paper
 
Voice over IP
Voice over IPVoice over IP
Voice over IP
 
Wimax and VoIP Presentation
Wimax and VoIP PresentationWimax and VoIP Presentation
Wimax and VoIP Presentation
 
Research paper on VOIP Technology
Research paper on VOIP TechnologyResearch paper on VOIP Technology
Research paper on VOIP Technology
 
VoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATIONVoIP Techniques and Challenges PRESENTATION
VoIP Techniques and Challenges PRESENTATION
 
Voice Over IP (VoIP)
Voice Over IP (VoIP)Voice Over IP (VoIP)
Voice Over IP (VoIP)
 
Voice over internet protocol (voip)3
Voice over internet protocol (voip)3Voice over internet protocol (voip)3
Voice over internet protocol (voip)3
 
What is VoIP and How it works?
What is VoIP and How it works?What is VoIP and How it works?
What is VoIP and How it works?
 
VOIP business model
VOIP business modelVOIP business model
VOIP business model
 
Final report of dcn
Final report of dcnFinal report of dcn
Final report of dcn
 
VOIP BASIC
VOIP BASICVOIP BASIC
VOIP BASIC
 
Voip Ppt
Voip PptVoip Ppt
Voip Ppt
 
VOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOLVOICE OVER INTERNET PROTOCOL
VOICE OVER INTERNET PROTOCOL
 
VOIP: VOICE OVER IP
VOIP: VOICE OVER IPVOIP: VOICE OVER IP
VOIP: VOICE OVER IP
 
Introduction to VoIP
Introduction to VoIPIntroduction to VoIP
Introduction to VoIP
 
Voip introduction
Voip introductionVoip introduction
Voip introduction
 
VoIP - Technology To Business Models
VoIP - Technology To Business ModelsVoIP - Technology To Business Models
VoIP - Technology To Business Models
 

Destaque

Voice over Internet Protocol (VoIP) using Asterisk
Voice over Internet Protocol (VoIP) using AsteriskVoice over Internet Protocol (VoIP) using Asterisk
Voice over Internet Protocol (VoIP) using AsteriskSameer Verma
 
The Art of VoIP Hacking - Defcon 23 Workshop
The Art of VoIP Hacking - Defcon 23 WorkshopThe Art of VoIP Hacking - Defcon 23 Workshop
The Art of VoIP Hacking - Defcon 23 WorkshopFatih Ozavci
 
Voip powerpoint
Voip powerpointVoip powerpoint
Voip powerpointGW1992
 
Voice over IP (VoIP)
Voice over IP (VoIP)Voice over IP (VoIP)
Voice over IP (VoIP)Peter R. Egli
 
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best PracticesE Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best PracticesDan York
 
Recording Remote Hosts/Interviews with VoIP/Skype
Recording Remote Hosts/Interviews with VoIP/SkypeRecording Remote Hosts/Interviews with VoIP/Skype
Recording Remote Hosts/Interviews with VoIP/SkypeDan York
 
Hacking and Attacking VoIP Systems - What You Need To Know
Hacking and Attacking VoIP Systems - What You Need To KnowHacking and Attacking VoIP Systems - What You Need To Know
Hacking and Attacking VoIP Systems - What You Need To KnowDan York
 
Der Kolner Dom (The Dom of Cologne/ Koln )
Der Kolner Dom (The Dom of Cologne/ Koln )Der Kolner Dom (The Dom of Cologne/ Koln )
Der Kolner Dom (The Dom of Cologne/ Koln )Nazmul Hossain Rakib
 
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...Mostafa El-Beheiry
 
VoIP - seminar at IASRI, New Delhi
VoIP - seminar at IASRI, New DelhiVoIP - seminar at IASRI, New Delhi
VoIP - seminar at IASRI, New DelhiNishikant Taksande
 
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)Thomas Siegers
 
Setup VoIP System and Interconnection with LTE network
Setup VoIP System and Interconnection with LTE networkSetup VoIP System and Interconnection with LTE network
Setup VoIP System and Interconnection with LTE networkNazmul Hossain Rakib
 
VoIP Wars: Destroying Jar Jar Lync (Filtered version)
VoIP Wars: Destroying Jar Jar Lync (Filtered version)VoIP Wars: Destroying Jar Jar Lync (Filtered version)
VoIP Wars: Destroying Jar Jar Lync (Filtered version)Fatih Ozavci
 

Destaque (17)

SIP Beyond VoIP
SIP Beyond VoIPSIP Beyond VoIP
SIP Beyond VoIP
 
VoIP – vulnerabilities and attacks
VoIP – vulnerabilities and attacksVoIP – vulnerabilities and attacks
VoIP – vulnerabilities and attacks
 
voip gateway
voip gateway voip gateway
voip gateway
 
Voice over Internet Protocol (VoIP) using Asterisk
Voice over Internet Protocol (VoIP) using AsteriskVoice over Internet Protocol (VoIP) using Asterisk
Voice over Internet Protocol (VoIP) using Asterisk
 
The Art of VoIP Hacking - Defcon 23 Workshop
The Art of VoIP Hacking - Defcon 23 WorkshopThe Art of VoIP Hacking - Defcon 23 Workshop
The Art of VoIP Hacking - Defcon 23 Workshop
 
VoIP Seminar
VoIP SeminarVoIP Seminar
VoIP Seminar
 
Voip powerpoint
Voip powerpointVoip powerpoint
Voip powerpoint
 
Voice over IP (VoIP)
Voice over IP (VoIP)Voice over IP (VoIP)
Voice over IP (VoIP)
 
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best PracticesE Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
E Tel2007 Black Bag Session - VoIP Security Threats, Tools and Best Practices
 
Recording Remote Hosts/Interviews with VoIP/Skype
Recording Remote Hosts/Interviews with VoIP/SkypeRecording Remote Hosts/Interviews with VoIP/Skype
Recording Remote Hosts/Interviews with VoIP/Skype
 
Hacking and Attacking VoIP Systems - What You Need To Know
Hacking and Attacking VoIP Systems - What You Need To KnowHacking and Attacking VoIP Systems - What You Need To Know
Hacking and Attacking VoIP Systems - What You Need To Know
 
Der Kolner Dom (The Dom of Cologne/ Koln )
Der Kolner Dom (The Dom of Cologne/ Koln )Der Kolner Dom (The Dom of Cologne/ Koln )
Der Kolner Dom (The Dom of Cologne/ Koln )
 
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...
Challenges in VoIP Systems - Mostafa Ahmed Mostafa El Beheiry - First Draft F...
 
VoIP - seminar at IASRI, New Delhi
VoIP - seminar at IASRI, New DelhiVoIP - seminar at IASRI, New Delhi
VoIP - seminar at IASRI, New Delhi
 
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)
Efficient Telecommunication Infrastructure with Internet Telephony (VoIP)
 
Setup VoIP System and Interconnection with LTE network
Setup VoIP System and Interconnection with LTE networkSetup VoIP System and Interconnection with LTE network
Setup VoIP System and Interconnection with LTE network
 
VoIP Wars: Destroying Jar Jar Lync (Filtered version)
VoIP Wars: Destroying Jar Jar Lync (Filtered version)VoIP Wars: Destroying Jar Jar Lync (Filtered version)
VoIP Wars: Destroying Jar Jar Lync (Filtered version)
 

Semelhante a Security Challenges In VoIP

Wifi Security for SOHOs: Cyberoam UTM CR15wi
Wifi Security for SOHOs: Cyberoam UTM CR15wiWifi Security for SOHOs: Cyberoam UTM CR15wi
Wifi Security for SOHOs: Cyberoam UTM CR15winiravmahida
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxronak56
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxdaniahendric
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxmakdul
 
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...Amazon Web Services
 
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &ML
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &MLAWS re:Invent Comes to London 2019 - Database, Analytics, AI &ML
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &MLAmazon Web Services
 
Secure Connectivity on Every Network Layer
Secure Connectivity on Every Network LayerSecure Connectivity on Every Network Layer
Secure Connectivity on Every Network LayerADVA
 
An approach to mitigate DDoS attacks on SIP.pptx
An approach to mitigate DDoS attacks on SIP.pptxAn approach to mitigate DDoS attacks on SIP.pptx
An approach to mitigate DDoS attacks on SIP.pptxamalouwarda1
 
Presentation cloud security the grand challenge
Presentation cloud security the grand challengePresentation cloud security the grand challenge
Presentation cloud security the grand challengexKinAnx
 
Ip tunnelling and_vpn
Ip tunnelling and_vpnIp tunnelling and_vpn
Ip tunnelling and_vpnRajesh Porwal
 
Web rtc expo v keynote final3
Web rtc expo v keynote final3Web rtc expo v keynote final3
Web rtc expo v keynote final3Robin Carley
 
WebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiWebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiRobin Carley
 
WebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiWebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiDialogic Inc.
 
Case study about voip
Case study about voipCase study about voip
Case study about voipelmudthir
 

Semelhante a Security Challenges In VoIP (20)

Hosted Contact Centre Security
Hosted Contact Centre SecurityHosted Contact Centre Security
Hosted Contact Centre Security
 
Wifi Security for SOHOs: Cyberoam UTM CR15wi
Wifi Security for SOHOs: Cyberoam UTM CR15wiWifi Security for SOHOs: Cyberoam UTM CR15wi
Wifi Security for SOHOs: Cyberoam UTM CR15wi
 
Craft2.ppt
Craft2.pptCraft2.ppt
Craft2.ppt
 
Craft2.ppt
Craft2.pptCraft2.ppt
Craft2.ppt
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docxAbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
 
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
 
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &ML
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &MLAWS re:Invent Comes to London 2019 - Database, Analytics, AI &ML
AWS re:Invent Comes to London 2019 - Database, Analytics, AI &ML
 
Meletis Belsis - Voip security
Meletis Belsis - Voip securityMeletis Belsis - Voip security
Meletis Belsis - Voip security
 
Secure Connectivity on Every Network Layer
Secure Connectivity on Every Network LayerSecure Connectivity on Every Network Layer
Secure Connectivity on Every Network Layer
 
F5 DDoS Protection
F5 DDoS ProtectionF5 DDoS Protection
F5 DDoS Protection
 
An approach to mitigate DDoS attacks on SIP.pptx
An approach to mitigate DDoS attacks on SIP.pptxAn approach to mitigate DDoS attacks on SIP.pptx
An approach to mitigate DDoS attacks on SIP.pptx
 
Presentation cloud security the grand challenge
Presentation cloud security the grand challengePresentation cloud security the grand challenge
Presentation cloud security the grand challenge
 
Ip tunnelling and_vpn
Ip tunnelling and_vpnIp tunnelling and_vpn
Ip tunnelling and_vpn
 
Ip tunneling and vpns
Ip tunneling and vpnsIp tunneling and vpns
Ip tunneling and vpns
 
Web rtc expo v keynote final3
Web rtc expo v keynote final3Web rtc expo v keynote final3
Web rtc expo v keynote final3
 
WebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiWebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim Machi
 
WebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim MachiWebRTC Expo V keynote by Jim Machi
WebRTC Expo V keynote by Jim Machi
 
Case study about voip
Case study about voipCase study about voip
Case study about voip
 

Último

Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Alkin Tezuysal
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch TuesdayIvanti
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Scott Andery
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfLoriGlavin3
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Strongerpanagenda
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesThousandEyes
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI AgeCprime
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersRaghuram Pandurangan
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfIngrid Airi González
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPathCommunity
 

Último (20)

Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch Tuesday
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdf
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI Age
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information Developers
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdf
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to Hero
 

Security Challenges In VoIP

  • 1. Security Challenges in VoIP Tom Gilis – Security Consultant Thursday, March 26, 2009
  • 2. Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 2 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 3. Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 3 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 4. Who am I and what am I doing here ? Tom Gilis Security Consultant with Dimension Data Penetration tests infrastructures and applications Risk analysis Purpose Create awareness around VoIP security Identify security risks and weaknesses Evaluate protection mechanisms 4 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 5. Do we need more security with VoIP? PBX More difficult to access Required specialized knowledge VoIP Uses an existing network (and its flaws) Increase in potential attackers Offers more services 5 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 6. VoIP Networks today 6 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 7. Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 7 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 8. Network segregation Separate voice and data network Improve security Easier management Quality of service Physical Virtual • Expensive • Cheaper • New infrastructure • Uses current infrastructure • Difficult deployment • Easier deployment 8 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 9. You probably already use … Virtual Local Access Networks Group devices together in one segment Separate Voice and Data network VLAN Trunking Automatic VLAN configuration I. DHCP Options II. Proprietary protocols (LLDP) III. … 9 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 10. Automatic VLAN configuration Easy = YES , Security = NO ! Security tool: VoIPHopper (voiphopper.sourceforge.net) 10 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 11. Add authentication layer... 802.1X standard Authentication and authorization Username/password or certificates Compatible with VLAN Trunking Requires: Phone and switch support Authentication server User administration 11 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 12. Good effort but … Off-line brute force/dictionary attack tool (xtest.sourceforge.net) 12 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 13. Conclusion segregation Recommended − Quality of service − First security barrier Hard to properly protect Not always possible Segregation alone is NOT enough! 13 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 14. Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 14 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 15. Information Security – CIA Triad Confidentiality Information Security Availability Integrity 15 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 16. Information Security in VoIP Confidentiality Quality of Service Information Security in VoIP Availability Integrity C I A Q 16 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 17. VoIP Call setup 17 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 18. VoIP Security threats Unauthorized access Interruption-of-service Eavesdropping Registration and Media manipulation Social threats 18 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 19. Unauthorized access Gaining unauthorized access to a VoIP system or component using one of the remote services. Administrative services (Telnet, HTTP(S), TFTP, …) − Attacks: Password sniffing, Brute force attack, Exploits, … − Goal: Change configuration, abuse telephone network … − Protection:  System hardening (Vendor patches, ACL’s, …)  Good password policy C I A Q 19 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 20. Unauthorized access - TFTP bruteforce Brutefile.txt Source: hackingvoip.com 20 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 21. Unauthorized access - TFTP bruteforce Brutefile.txt Source: hackingvoip.com 21 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 22. Unauthorized access – VoIP Server 22 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 23. Interruption-of-service Disrupting the VoIP service by attacking an essential part of the voice network. Network − Denial-of-service − SYN-flooding − ARP spoofing Service − DNS − DHCP Application − SIP flooding attack − RTP/RTCP injections 23 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 24. Interruption-of-service – Network Disrupting the VoIP service by attacking network components Denial-of-service attacks − Attacks: DDoS, Ping of Death, ICMP Flooding, SYN Flooding… − Goal: Bring down an essential part of the VoIP network (routers, VoIP gateways, telephones, …), create delay, jitter or packets drops… − Protection:  Firewall  Intrusion Prevention Systems (IPS) A Q 24 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 25. Interruption-of-service – Services Disrupting proper VoIP communication by attacking an essential service DNS/DHCP/… − Attacks: Rogue DHCP server, DNS Cache poisoning, … − Goal: Re-route traffic to another compromised host, block new systems from accessing the network − Protection (Network level):  Rogue DHCP server detection  Intrusion Prevention Systems A 25 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 26. Interruption-of-service – Application Disrupting proper communication by targeting a VoIP control or signaling protocols’ security weaknesses or risks SIP/H323/RTCP/… − Attacks: SIP INVITE flooding, SIP/RTCP or malformed packet injection,… − Goal: Flooding SIP proxy, terminating or disturbing calls through injection of malicious messages, delay, jitter, packet drops, … − Protection:  Enforce authentication for all packets (preferably mutual)  Firewall or IPS with VoIP capabilities A Q 26 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 27. SiVuS – VoIP Vulnerability Scanner 27 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 28. Eavesdropping Listening in on private communications between two or more VoIP devices. RTP (Real-time Transport Protocol) − Attacks: MAC spoofing, WiFi hacking, ARP spoofing, MITM, … − Goal: Gain access to the media stream − Protection:  Network hardening  Encryption – Protocol encryption SRTP, ZRTP – (D)TLS, IPSec tunnels C 28 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 29. ARP Spoof – Man-in-the-middle Man-in-the-middle attack 29 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 30. Eavesdropping - Wireshark 30 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 31. Registration manipulation Manipulating or inserting registration packets in order to redirect or hijack sessions Signalling protocols (SIP, H323) − Attacks: Registration removal, hijacking or addition − Goal: Masquerading, eavesdropping, … − Protection:  Require authentication for all packets  Enforce decent password policy C I 31 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 32. SiVuS – Password Bruteforcing Attacks SIP authentication Works both online as offline Numeric passwords up to 10 chars  +/- 8 min 32 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 33. Media manipulation Manipulation of the media stream exchanged between two clients RTP (Real-time Transport Protocol) − Attacks: RTP injection − Goal: Change or add certain voice messages in a conversion − Protection:  Network hardening  Protocol encryption SRTP, ZRTP  (D)TLS, IPSec tunnels C I 33 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 34. Social threat – VoIP Spam (SPIT) Abusing public VoIP service providers or hacked VoIP solutions to get commercial messages to the different users Direct access to target user Low costs Hard to protect against Not popular now but what about in the future? Interconnections through SIP trunks More VoIP end-to-end Easier access 34 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 35. Social threat – VISHING Social engineering attacks in order to entice users to call a specific number and give out confidential information 35 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 36. Agenda  Introduction  Segregation of Voice and Data  VoIP security threats  Conclusion 36 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 37. Information Security in VoIP Confidentiality & Integrity • Use encryption where possible − Application layer:  SRTP, ZRTP, S/MIME in SIP − Transport/Network Layer:  (D)TLS, IPSec • Authentication − Preferably mutual − Strong passwords • Keep your software up-to-date 37 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 38. Information Security in VoIP Availability and Quality-of-Service • Network hardening • Security devices − Firewall − Intrusion Prevention System • Redundancy − Fail-over − UPS • Logging and monitoring 38 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 39. Conclusion – Security threats YES, secure VoIP exists ! Costs VS Security Added infrastructure: Better and faster hardware PKI environment, RADIUS server, … Maintenance Installation 39 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 40. Recommendations  Design and implement a secure network environment  Use encryption where possible  Assure availability through proper redundancy – e.g. Network infrastructure, UPS, …  Good password management  Don’t use soft-phones  Protect your wireless clients with proper protection  Penetration tests and security audits 40 © Copyright Dimension Data 2000 - 2009 26 March 2009
  • 41. Questions and Answers Thank you ! 41 © Copyright Dimension Data 2000 - 2009 26 March 2009