|
VoIP Security ‘Best Practices' Project |
|
|
|
Written by Adam Gosling
|
|
Thursday, 30 November 2006 |
With VoIP security concerns getting plenty of airplay in the
media over the past month or so, it's good time for the VOIPSA "VoIP Security Best Practices" project to get
underway.
Voice over IP Security Alliance (VOIPSA) is an open,
vendor-neutral organization. VOIPSA is made up of VoIP and information security
companies, organizations, and individuals that have a desire to participate in
project releases, strategy and other decisions.
VOIPSA Chairman is David Endler of the TippingPoint division in 3Com,
but the Best Practices Chair running the Security project is Mitel's Security specialist and
Director of IP Technology, Dan
York.
The
project hopes to bring together a document
that describes the core set of "best common practices" that can be used for
securing VoIP systems against the threats outlined in VOIPSA's VoIP Security Threat
Taxonomy project.
While specific practices will vary according to vendor and
architecture, the document created by this group will provide an overall view
of how best to secure VoIP systems.
These best practices will aim to mitigate security threats
across the VoIP ecosystem including individual VoIP building blocks, supporting
security technology components (SBCs, Firewalls, etc.), architecture and
network design (NAT, VPN, port security, etc.), network management, and end
point Access and Authentication to name a few.
It is ground floor opportunity to sign-up right now, and York says all are welcome
regardless of experience level.
Those interested in following the progress or taking part
are encourage to subscribe to the best
practices email list.
Related news items Newer news items
Older news items
|
|
|
|
