Free Delivery Over $100
|
|
|||
|
||||
OverviewInSecuring VoIP Networks, two leading experts systematically review the security risks and vulnerabilities associated with VoIP networks and offer proven, detailed recommendations for securing them. Drawing on case studies from their own fieldwork, the authors address VoIP security from the perspective of real-world network implementers, managers, and security specialists. The authors identify key threats to VoIP networks, including eavesdropping, unauthorized access, denial of service, masquerading, and fraud; and review vulnerabilities in protocol design, network architecture, software, and system configuration that place networks at risk. They discuss the advantages and tradeoffs associated with protection mechanisms built into SIP, SRTP, and other VoIP protocols; and review key management solutions such as MIKEY and ZRTP. Next, they present a complete security framework for enterprise VoIP networks, and provide detailed architectural guidance for both service providers and enterprise users. 1 Introduction 2 VoIP Architectures and Protocols 3 Threats and Attacks 4 VoIP Vulnerabilites 5 Signaling Protection Mechanisms 6 Media Protection Mechanisms 7 Key Management Mechanisms 8 VoIP and Network Security Controls 9 A Security Framework for Enterprise VoIP Networks 10 Provider Architectures and Security 11 Enterprise Architectures and Security Full Product DetailsAuthor: Peter Thermos , Ari Takanen , Ari TakanenPublisher: Pearson Education (US) Imprint: Addison-Wesley Educational Publishers Inc Dimensions: Width: 17.80cm , Height: 1.80cm , Length: 23.40cm Weight: 0.540kg ISBN: 9780321437341ISBN 10: 0321437349 Pages: 384 Publication Date: 16 August 2007 Audience: Professional and scholarly , Professional & Vocational Format: Paperback Publisher's Status: Out of Print Availability: In Print  Limited stock is available. It will be ordered for you and shipped pending supplier's limited stock. Table of ContentsChapter 1: Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1 Chapter 2: VoIP Architectures and Protocols . . . . . . . . . . . . . . . . . .29 Chapter 3: Threats and Attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . .53 Chapter 4: VoIP Vulnerabilities . . . . . . . . . . . . . . . . . . . . . . . . . . .127 Chapter 5: Signaling Protection Mechanisms . . . . . . . . . . . . . . . . .165 Chapter 6: Media Protection Mechanisms . . . . . . . . . . . . . . . . . . .217 Chapter 7: Key Management Mechanisms . . . . . . . . . . . . . . . . . . .231 Chapter 8: VoIP and Network Security Controls . . . . . . . . . . . . . .263 Chapter 9: A Security Framework for Enterprise VoIP Networks . .297 Chapter 10: Provider Architectures and Security . . . . . . . . . . . . . . .315 Chapter 11: Enterprise Architectures and Security . . . . . . . . . . . . . .334 Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .345ReviewsAuthor InformationPeter Thermos is CTO of Palindrome Technologies, which provides information security consulting services to government and commercial organizations. Peter started his career at Bellcore (now Telcordia) as a member of the technical staff and later as a principal technical expert on key information security and assurance tasks. He is a frequent speaker at conferences and industry forums including the IEEE, MIS, IEC, ISACA, VON, and others. Peter is also known for his contributions to the security community for discovering software vulnerabilities, the release of SiVuS (The First VoIP Vulnerability Scanner) and the vopsecurity.org Forum. Peter holds a Masters Degree in Computer Science from Columbia University where he is currently furthering his graduate studies. Ari Takanen is founder and CTO of Codenomicon. Since 1998, Ari has focused on information security issues in next-generation networks and security critical environments. He began at Oulu University Secure Programming Group (OUSPG) as a contributing member to PROTOS research that studied information security and reliability errors in WAP, SNMP, LDAP, and VoIP implementations. Ari and his company, Codenomicon Ltd. provide and commercialize automated tools using a systematic approach to test a multitude of interfaces on mission-critical software, VoIP platforms, Internet-routing infrastructure, and 3G devices. Codenomicon and the University of Oulu aim to ensure new technologies are accepted by the general public, by providing means of measuring and ensuring quality in networked software. Ari has been speaking at numerous security and testing conferences on four continents and has been invited to speak at leading universities and international corporations. Tab Content 6Author Website:Countries AvailableAll regions |
||||
