Top Threats

Back to discussions
Expand all | Collapse all

NSA Cybersecurity Technical Report Deploying Secure Communications Voice and Video Over IP Systems

  • 1.  NSA Cybersecurity Technical Report Deploying Secure Communications Voice and Video Over IP Systems

    Posted Jun 26, 2021 12:00:00 AM
      |   view attached
    Hi All,

    NSA just published Cybersecurity Technical Report Deploying Secure Communications Voice and Video Over IP Systems

    Unified Communications (UC) and Voice and Video over IP (VVoIP) call-processing
    systems provide rich collaboration tools and offer flexible ways to communicate by
    combining voice, video conferencing, and instant messaging in the modern workplace.
    Today these systems are integrated into an enterprise's existing Internet Protocol (IP)
    infrastructure, use commodity software and are likely to use open-source and standard
    protocols.
    However, the same IP infrastructure that enables UC/VVoIP systems also extends the
    attack surface into an enterprise's network, introducing vulnerabilities and the potential
    for unauthorized access to communications. These vulnerabilities were harder to reach
    in earlier telephony systems, but now voice services and infrastructure are accessible to
    malicious actors who penetrate the IP network to eavesdrop on conversations,
    impersonate users, commit toll fraud, or perpetrate a denial of service effects.
    Compromises can lead to high-definition room audio and/or video being covertly
    collected and delivered using the IP infrastructure as a transport mechanism.
    If properly secured, a UC/VVoIP system limits the risk to data confidentiality and
    communication system availability. This security requires careful consideration, detailed
    planning and deployment, and continuous testing and maintenance. Deploying Secure
    Unified Communications/Voice and Video over IP Systems outlines best practices for
    the secure deployment of UC/VVoIP systems and presents mitigations for vulnerabilities
    due to inadequate network design, configurations, and connectivity. This report is
    separated into four parts. Each part speaks to the system administrators who will lead
    mitigation efforts in each area of the system. It describes the mitigations and best
    practices to use when:

     Preparing networks
     Establishing perimeters
     Using enterprise session controllers (ESCs)
     Adding UC/VVoIP endpoints for the deployment of a UC/VVoIP system

    Using the mitigations and best practices explained here, organizations may embrace
    the benefits of UC/VVoIP while minimizing the risk of disclosing sensitive information or
    losing service.

    ------------------------------
    Michael Roza CPA, CISA, CIA, MBA, Exec MBA
    ------------------------------