Vulnerability assessment procedures, security configuration guidelines, and attack countermeasures with QoS management strategies.

The Current Status of the Market

Converging Voice and Data Networks are a reality. Carriers are providing service offerings for both enterprise and residential customers. Enterprise organizations are deploying IP PBX services quickly and effectively. Cisco Systems alone is selling over 6,000 IP Phones a day. What was once an interesting and curious technology is now a legitimate cost reducing solution for IT Managers and a revenue producing strategy for Technology Product Manufacturers and Service Providers.

The Numbers Prove It

In 2000, roughly 17% of U.S. businesses began implementing IP telephone systems, according to a new study by The Phillips Group InfoTech, a global research and consulting firm. By the end of 2004, the researchers say, more than 80% of U.S. enterprises will adopt LAN-based IP telephone systems, and shipments of IP PBX systems will almost catch up with declining sales of traditional PBXs. About 267,000 IP PBXs shipped in the United States last year; by the end of 2004, shipments will increase to 5.7 million. In contrast, traditional PBX shipments will fall from 7.7 million last year to 6.2 million.

An Allied Business Intelligence report says enterprises buying new phone switches will opt for IP-based systems over circuitswitched PBXs. The report says that new IP PBX lines will grow from 1.9 million in 2001 to 42 million by 2007!

What You Have to be Concerned About

Now imagine hackers penetrating your remote office IP PBX or gateway to make hundreds of long-distance calls through your traditional central office PBX. Worse yet, they pass detailed R&D voice mail discussions between Product Manager and Engineer to your competitors. The worst, an upset employee taps into the system and begins snooping calls. We expect this type of activity on a data network, but not a voice network - which for decades, although expensive, was a reliable service with very little downtime and nominal security concerns. Once moved onto the data network, voice services come into contact with the same worms, denial-of-service attacks, and viruses seen every day.

Voice over IP Security

This two-day in-depth training class was designed to provide you a detailed technical perspective on VoIP Security with specifics on how to design and implement IP telephony to properly mitigate your security risk. The course will examine IP Telephony security design considerations for small, medium and large network deployments. It will detail the architecture and security capabilities of VoIP protocols (including H.323, SIP, and MGCP). You will get in-depth security implementation best practices guidelines for VoIP. To mitigate your risks, the architecture of common VoIP attacks will be documented and countermeasures provided.

IN CLASS DEMONSTRATIONS

This two-day interactive class will use demonstrations to reinforce key concepts learned throughout the course. To enhance your learning experience, you will examine specific procedures, including:

Demo 1: Capture & Replay of RTP Streams

Overview: Place a call between 2 VoIP endpoints. Before call is established, begin capture session with Sniffer analyzer. After call completes, save the capture file to disk. Use the capripper utility to extract & play back the RTP audio streams.

Demo 2: Media Encryption

Overview: Attempt capture/replay demo again, but this time media is encrypted using SRTP and cannot be played back.

Demo 3: Denial of Service Attacks on VoIP Networks

Overview: The effects of a denial of service attack will be demonstrated on three key components for VoIP networks: a) VoIP endpoints b) call control servers c) infrastructure components. A software utility will be used to generate a large volume of traffic to each of the components. The attacks will be timed to show the effects on calls in progress and the ability to place new calls.

Demo 4: Tools for Conducting a Vulnerability Assessment

Overview: The demonstration will show commonly available network security tools you can use to assess VoIP networks that are already deployed. Security scanners will be used to scan the hardware components available for the demonstration and identify vulnerabilities. In-Class Demonstrations