You are previewing How to Cheat at VoIP Security.
O'Reilly logo
How to Cheat at VoIP Security

Book Description

The Perfect Reference for the Multitasked SysAdmin

Table of Contents

  1. Cover image
  2. Title page
  3. Table of Contents
  4. Copyright page
  5. Lead Author and Technical Editor
  6. Contributors
  7. Chapter 1: Introduction to VoIP Security
    1. Introduction
    2. The Switch Leaves the Basement
    3. What Is VoIP?
    4. Security Issues in Converged Networks
    5. A New Security Model
    6. Summary
  8. Chapter 2: The Hardware Infrastructure
    1. Introduction
    2. Traditional PBX Systems
    3. PBX Alternatives
    4. VoIP Telephony and Infrastructure
    5. Summary
  9. Chapter 3: Architectures
    1. Introduction
    2. PSTN: What Is It, and How Does It Work?
    3. PSTN Call Flow
    4. PSTN Protocol Security
    5. The H.323 Protocol Specification
    6. The Primary H.323 VoIP-Related Protocols
    7. H.235 Security Mechanisms
    8. Understanding SIP
    9. SIP Functions and Features
    10. SIP Architecture
    11. Instant Messaging and SIMPLE
    12. Summary
  10. Chapter 4: Support Protocols
    1. Introduction
    2. DNS
    3. TFTP
    4. HTTP
    5. SNMP
    6. DHCP
    7. RSVP
    8. SDP
    9. Skinny
    10. Summary
  11. Chapter 5: Threats to VoIP Communications Systems
    1. Introduction
    2. Denial-of-Service or VoIP Service Disruption
    3. Call Hijacking and Interception
    4. H.323-Specific Attacks
    5. SIP-Specific Attacks
    6. Summary
  12. Chapter 6: Confirm User Identity
    1. Introduction
    2. 802.1x and 802.11 i (WPA2)
    3. 802.1x/EAP Authentication
    4. Public Key Infrastructure
    5. Minor Authentication Methods
    6. Summary
  13. Chapter 7: Active Security Monitoring
    1. Introduction
    2. Network Intrusion Detection Systems
    3. NIDS Defined
    4. Components
    5. Types
    6. Placement
    7. Important NIDS Features
    8. Maintenance
    9. Alerting
    10. Logging
    11. Extensibility
    12. Response
    13. Limitations
    14. Honeypots and Honeynets
    15. Host-Based Intrusion Detection Systems
    16. Logging
    17. Syslog
    18. SNMP
    19. What Is a Penetration/Vulnerability Test?
    20. Methodology
    21. Discovery
    22. Scanning
    23. Vulnerability Assessment
    24. Exploitation
    25. Reporting
    26. Summary
  14. Chapter 8: Logically Segregate Network Traffic
    1. Introduction
    2. VLANs
    3. QoS and Traffic Shaping
    4. NAT and IP Addressing
    5. Firewalls
    6. Access Control Lists
    7. Summary
  15. Chapter 9: IETF Encryption Solutions for VoIP
    1. Introduction
    2. Suites from the IETF
    3. S/MIME: Message Authentication
    4. TLS: Key Exchange and Signaling Packet Security
    5. SRTP: Voice/Video Packet Security
    6. Summary
  16. Chapter 10: Skype Security
    1. Security
  17. Chapter 11: Skype Firewall and Network Setup
    1. A Word about Network Address Translation and Firewalls
    2. What You Need to Know about Configuring Your Network Devices
    3. Ports Required for Skype
    4. Using Proxy Servers and Skype
    5. How to Block Skype in the Enterprise
  18. Appendix A: Validate Existing Security Infrastructure
    1. Introduction
    2. Security Policies and Processes
    3. Physical Security
    4. Server Hardening
    5. Supporting Services
    6. Unified Network Management
    7. Summary
  19. Appendix B: The IP Multimedia Subsystem: True Converged Communications
    1. Introduction
    2. IMS Security Architecture
    3. IMS Security Issues
    4. Early IMS Security Issues
    5. Summary
  20. Appendix C: Regulatory Compliance
    1. Introduction
    2. SOX: Sarbanes-Oxley Act
    3. GLBA: Gramm-Leach-Bliley Act
    4. HIPAA: Health Insurance Portability and Accountability Act
    5. CALEA: Communications Assistance for Law Enforcement Act
    6. E911: Enhanced 911 and Related Regulations
    7. EU and EU Member States’ eCommunications Regulations
    8. Summary
  21. Index