Voice Over IP Security (VOIP)

Description

This in-depth training class was designed to provide a detailed technical perspective on VoIP Security with specifics on how to design and implement IP telephony to properly mitigate your security risk. The course will examine IP Telephony security design considerations for small, medium and large network deployments. It will detail the architecture and security capabilities of VoIP protocols (including H.323, SIP, and MGCP). You will get in-depth security implementation best practices guidelines for VoIP. To mitigate your risks, the architecture of common VoIP attacks will be documented and countermeasures provided. Kit includes:

• VOIP Security Student Guide
• Instructor Guide (issued per instructor)
  
  • Lab Manual

Outline

Chapter 1: IP Telephony & Converged Network Security Issues
Although IP telephony design differs greatly with the size of enterprises, the underlying best practices remain virtually the same. For this reason the design discussions are somewhat similar. In this section, you will get an overview of the most common types of attacks in any IP network, and will focus on those attacks that significantly impact an IP Telephony network.

1. Sources of attacks B. All Networks (Especially VOIP) are targets
2. Chapter 2: VoIP Network Security Design Considerations Security architecture for IP Telephony network must prevent most attacks from successfully affecting valuable network resources. The attacks that succeed in penetrating the first line of defense, or originate from inside the network, must be accurately detected and quickly contained to minimize their effect on the rest of the network. However, in being secure, the network must continue to provide critical services that users expect, especially phone services. Proper network security and good network functionality can be provided at the same time. This section focuses on best practices and design guidelines to maintain QoS while ensuring IP Telephony network security.
   1. Small Voice Network Designs
   2. Medium Voice Network Designs
   3. Large Voice Network Designs
   4. Service Provider Voice Network Designs
   5. VPN (Virtual Private Networks) and VoIP
   6. VON (Voice over network) or Internet voice over IP
   7. Example Designs
3. Chapter 3: IP Telephony Operating System Level Security In this chapter, you will explore the specific issues with the applications that drive IP Telephony networks and the proper designs to mitigate the effects of attacks. We will discuss basic but important security configurations to handle issues such as time stamping, AAA, and anti-replay configurations.
   1. Authentication
   2. Operating System Security
4. Chapter 4: Network Access Security In this chapter you will review Network Access including Firewalls and Packet filters and review configurations of these services with VoIP. The emphasis in this section will be on how Network Access security impacts QoS in VoIP and what your trade-offs are with regard to service and performance against security.
   1. Stateful Firewalls
   2. NAT
   3. Issues with Firewalls & NAT
   4. VoIP Issues with Firewalls & NAT
   5. Proxy Servers
   6. Overcoming NAT Issues
   7. VPN - advantages and disadvantages
5. Chapter 5: IP Telephony Application Security The objective of this chapter is to provide you with information on potential attacks that may be waged against Call Manager, Unity, and many of the other application servers that can be integrated with Call Manager. You will also see examples of approved configuration techniques and third party applications used in securing Cisco Call Manager version 3.2. A.
   1. Call Manager and other Vendor IP PBX Security
   2. Unity and other Messaging and Collaboration Security
   3. XML Services and Security Chapter
6. Physical Security This chapter deals with general hardware access security-related issues, objectives, and examples.
   1. Hardware Access
   2. Biometrics
   3. Human Engineering
   4. Example installations
   5. Summary
7. Chapter 7: Protocol Security This chapter's objective is to give the user a better look into the protocols that are common in an IP Telephony network. Special care will be given to each protocol’s security-related issues and appropriate configurations to reduce risks.
   1. A. H.323
   2. B. SIP
   3. CMGCP, Megaco/H.248 Chapter 8: Attack Mitigation This chapter covers common attacks in any data network and some of the tools Hackers will use to exploit the IP Telephony network.
      1. Unauthorized Access
      2. Toll Fraud
      3. Denial of Service
      4. IP Spoofing
      5. Packet Sniffers - Interception and mitigation
      6. Virus and Trojan-horse applications
      7. Caller Identity Spoofing
      8. Repudiation
      9. Application Layer Attack Mitigation
      10. Summary