VoIP security

VoIP security has been called in question recently, though there is little evidence to indicate that VoIP security is any less than conventional telephony systems.

VoIP voice data is transmitted via a packet-switched data network using IP. VoIP systems can carry a significant higher number of calls, and very much faster, than traditional PSTN networks due to compression of the voice packets, modern broadband technology and a number of other gateway developments which have reduced the previous packet delivery problems to an extent that the protocol is now a viable mainstream telephony solution to most business needs.

VoIP security should therefore be shown to be at least as effective as that of traditional telephone systems.

There is actually very little difference between VoIP security and that required for any other type of data transmission system. Look on it the same as you do your email system. The same as your office LAN if you have one. You probably have a system in operation whereby only authorized personnel can use certain aspects of the network. VoIP security can, and do, use the same techniques.

However, having said that, let’s have a look at potential weak points in VoIP security that budding hackers may see as good points of attack.

IP PBX CALL MANAGEMENT BOXES

PBX stands for Private Branch Exchange, and is piece of software running on a server. It’s function is to deal with all the switches and connections involved in the telephone system. These can be attacked by hackers or viruses which could compromise sensitive data. VoIP security systems are designed with this risk in mind.

PBX equipment should be placed behind firewalls, locked down and regularly monitored for unwarranted intrusions using intrusion-detection software. It is also possible to put the server in a different domain from the rest of the system, making it much more difficult for intruders to reach. PBX security is a basic aspect of VoIP security systems

GATEWAYS AND DATA PACKETS

The gateway’s job is to convert voice to data packets, transmit them then receive and convert the packets back into voice. These are a potential VoIP security risk in that thy can be hacked into unless there is an access-control system in place to prevent unauthorized people from accessing the system. VoIP calls should only be permitted to specific people, and most good VoIP security systems allow only authorized user to operate VoIP systems under password control.

The data packets themselves can be hacked into using data-sniffing techniques. This can be a serious VoIP security risk and packet sniffers, as they are often called, capture binary data passing through your network and can reroute it to a computer on another network for decoding into a readable form. In order to do this, the ‘sniffers’ has to be on the same network wire as the packet is using to reach its destination. The problem in installing an effective VoIP security system is that there is usually a lot of information passing at any one time, and the hacker has a higher probability of getting useful information than from a conventional telephone system.

Encrypting VoIP traffic and routing it through a virtual private network would reduce the VoIP security risk, and most corporate systems have multiple encryption layers for external messages. Internal security could be improved by running internal VoIP messages through this corporate network. Small businesses should seek the advice of their supplier, or of a security expert if they feel that they may be subject to such attacks.

However, VoIP security advisors can point small to medium companies in the right direction. Corporate VoIP security is generally not so much problem in that it is normally contracted out to expert advisers.

In the final analysis, however, there are no real differences between VoIP security and the normal security concerns associated with any data network service, such as normal office internet and email LANs. The security firewalls and restricted access to use, common on these systems, should suffice to deal with VoIP security

About The Author

Peter Nisbet is an industrial research chemist with almost a fixation with data transfer systems, starting with audio and video file formats and codecs, and here with telephonic transmission systems which allow what is commonly known as VoIP. His fascination with subject is obvious from his website: http://www.data-voip-solutions.com

unix and windows hosting

Windows and UNIX are in fact two different systems and of course we are referring to computer systems. A web host uses computers, (we shall refer to them as servers, just computers, but sometimes larger) to host websites, and all computers need a operating system, so Windows and UNIX are the operating system.

The Windows used is normally Windows NT or 2000 and of course as you know Microsoft charges for it's software, while UNIX is an open source operating system, this means that the original creators of the system have given up the rights and anyone can use it, change, improve or do anything they want with, free of charge.

From this we already have to main differences, Window hosts are more expensive and UNIX is more reliable, because it as been improved by thousands of anonymous people.

Most probably you are reading this in front of your computer which most probably is operates on a Windows XP, have you noticed that it sometimes, it freezes, and the only solution is to restart it? UNIX is much more stable, robust, time-tested, flexible platform for a web server.



But Windows servers have also it's positive sides, they are compatible with Microsoft applications, and fully support Microsoft FrontPage, Microsoft Access and MS SQL, they also offer advance-programming environments and features such as Active Server Pages (ASP), the ASP.NET framework, Visual Basic Scripts, MS Index Server, Macromedia's and Cold Fusion.

Windows operating system require little or no experience in web development to get advanced features working very quickly because of better graphical user interface (GUI) Software such as Microsoft's FrontPage is specially developed for the webmaster to decrease the website development time and efforts.

Lets go back again to UNIX, they support FrontPage, Flash, Shockwave, Real Audio/Video, Cgi Scripts, Perl, PHP, SSH (Secure Telnet), MySQL, Web-Based Control System, Anonymous FTP, Web Site Graphical Statistics, Web-Based Email System, Miva/XML, Cold Fusion Perl, JAVA, PHP, C, C++, Miva, Shell Access and other wide verity of feature like Telnet and SSH that provides lots of flexibility and freedom in managing file and directories, but some of this require advance knowledge of Unix commands in order for you to customize the scripts to match your website needs.

Because of the nature of UNIX, (open source) and the people who love it, there is on the WWW freely available software and scripts, again bringing the cost down.

Concluding which one is the best, it really depends what you need, if you need high uptime, security and not so expensive then go with UNIX, if you need to run Windows applications like, MS Access or the MS SQL SERVER then Windows is your choice.

About The Author

Paul Santos
CEO
Hosting Marketers
http://hosting-marketers.com/