VOIP Relays

What title will be tomorrow? Google had an official position in their blogs Google today by Merrill Douglas, VP of Engineering. The post is entitled How Google keeps your information secure, and it has to do with Google's effort to protect your personal information. According to Merrill, "… we take security very seriously, and that's why we have some of the best engineers in the world working here for information.

I like to be assured that my private information will remain private. When worries me is when someone reassure me. TrackBack (0) | Comments (0) | with the label. Icio. | Greg Galitzine VoIP Authority Blog | Permalink: Google Reassures On Information Security Tags: google, security copyright Greg Galitzine VoIP Authority Blog.

Original Source!, Click here for detail story!

Here is a presentation from the 3rd ETSI Security Workshop on SIP security:http://www. tschofenig. com/wp/wp-content/uploads/2008/01/tschofenig-ietf-security. ppt.

Original Source!, Click here for detail story!

Blue Box Podcast #76 is now available discussing Cisco, Skype and BT vulnerabilities, when SIP looks like SPIT, VoIP security threat predictions and the FBI forgets to pay their bills, plus listener comments and more… Jonathan and I recorded the show on January 22nd and I’m now *almost* caught up with 1 main show still in the production queue (and about 10 special editions!) Technorati Tags: bluebox, blue box, voip, voip security, security .

Original Source!, Click here for detail story!

Want to learn more about the voip security aspects of peer-to-peer SIP? As I mentioned in the VOIPSEC mailing list last week, researchers from Huawei and the University of California recently released an Internet-Draft called “P2PSIP Security Analysis and Evaluation” which dives into an analysis of security issues in P2PSIP. It’s a good overview and one I’d strongly recommend to folks.

Peer-to-peer SIP is a fascinating area of current research and it’s good to see work like this being put into exploring the security aspects. Note - the researchers are looking for feedback so if you have comments on what you read, their contact information is in the Internet-Draft. Technorati Tags: SIP, IETF, security, voip security, SIP security, p2p, p2psip, peer-to-peer .

Original Source!, Click here for detail story!

Some of you may remember Peter Cox who put out an eavesdropping tool SIPTap last November. For those who have a short memory, SIPTap monitors “multiple voice-over-IP call streams, listening in and recording them for remote inspection as . wav files. ” At the time, however, the tool didn’t appear to me to be much of a threat because it only worked on the VLAN it was attached to and only if it saw the traffic.

They are already announcing three products described on the company’s website and here New VoIP security products are always welcome and UM Labs appears to be looking towards the future to find ways to meet some of the upcoming security challenges of unified networks. .

Original Source!, Click here for detail story!

Dan York published its submission to the recent Astricon conference: http://voipsa. Org/blog/2008/01/17/hacking-and-attacking-voip-systems-slides-from-my-astricon-2007-presentation-about-asterisk-and-voip-security.

Original Source!, Click here for detail story!

Here is a good presentation of some current proposals and the SIP security mechanisms: http://www. Tschofenig. It WP /? P = 269.

Original Source!, Click here for detail story!

Here is a link to a fairly lengthy (125 pages), the document on the security of VoIP. It has some very good content. My only complaint is that the first reference to our Hacking Exposed: VoIP book and the author does not include me. Http: / / www. Sans. Org/reading_room/whitepapers/voip/2036. PHP.

Original Source!, Click here for detail story!

Here is an article with the top 5 predictions for 2008. Http: / / www. VoIP news. Com/feature/top-security-threats-2008-012408.

Original Source!, Click here for detail story!

Here is a piece of research into security vulnerabilities of VoIP. I am not sure of the exact date on which it was published, but at some point in 2007: http://www. Ladera. Net/plop/2007/papers/PLoP2007_PelaezEtAl. Pdf.

Original Source!, Click here for detail story!