sip

Current, the safe topic for discussion that VoIP is faced with basically has 4: Block breaks type to serve (DoS) access attack, illegally, telephone bill barratrous or the menace such as eavesdrop. And the consultative safety of VoIP is however cannot of oversight painful. The net is in charge of allied Www.bitsCN.com

Information safety expert can warn you so, if be opposite VoIP deploy is undeserved,seo, internet phone can get the attack of hacker and baleful code. VoIP may destroy the safety precaution of the network, to intranet sth resembling a net, the menace of VoIP especially big, because the enterprise can be eager to deploy this one technology and ignored safety. Chinese net is in charge of forum Bbs.bitsCN.com

Anatomize can see, is the safe problem that should VoIP face above all the most rock-bottom harm? ? The soft hardware establishment of its oneself. Because at present major VoIP equipment is based on standard operating system, transmission agreement also attributes open skill, so quite high probability gets the assault of aggressor. And fall in major case, voIP establishment needs to provide long-range government ability, the service that its depend on and software may exist as much safe flaw.

Specific the transmission agreement that has a look at VoIP. The network technology agreement related to VoIP is very much, the RTP that the common data when having control fact sheds application to be transmitted in IP network (real time transmits an agreement) with RTCP (real time transmits control agreement) ; Have the RSVP that makes sure network QoS quality serves (resource obligate agreement) wait with IP Different Service, a series of agreements that still traditional speech digitlizes encode are like G.711, G.728, G.723, G.729 to wait a moment. But the one’s voice in speech with VoIP the at present most commonly used technology is built and controlling a letter to make is H.323 and SIP (conversational and initiative agreement) .

Among them, SIP agreement is the main component in data of IETF definition multimedia and structure of hierarchy of control. In the meantime,mba, because SIP is in charge of providing conversational join and conversation management only, and have nothing to do with application, because this SIP can be used at many domains. Nowadays, on the market already everywhere sees SIP IP phone, group the system of group video conference, frequency conference medium that provides to serve a provider only server, and but at the same time the phonic video conference of compatible H.323 and SIP controls unit at many o’clock. Current, SIP is bringing the most extensive interconnection each other to connect to conference market. However, even if consultative itself also has potential safe problem:

H.323 and SIP are an open consultative system on the whole. In a series of communicate process respect, each equipment manufacturer has substantive package to bear the weight of. These product some use Windows NT operating system, also have those who be based on Linux. And the operating system that opens the more, its product uses the influence that the process is atttacked more easily by virus and ill will. And these application are had installed when the product leaves factory between equipment, cannot assuring is newest version or it is acceptance had remedied certain and safe flaw. In the meantime, most the transmission agreement of technology of a kind of burgeoning development, SIP is not perfect, it is used be similar to FTP, email or the form of HTTP server will launch the link between the user. Use technology of this kind of join, hackers can have charge to VOIP likewise. 54com.cn

Two years ago, processing of technology of lash-up of national computer network coordinates a center (CERT) a blemish that ever reported SIP agreement inn is medium. Use this blemish, aggressor obtains organic meeting illegal visit prerogative, launch DoS attack, create a system flabby wait for a problem. Apparent, this blemish and SIP equipment send each other, use initialization VoIP call, text chats or of the telephone channel such as video 』 invite 』 the letter is concerned. The net is in charge of net BitsCN_com

Say from the principle, use flaw to be able to launch the attack of all sorts of types. Than consistent dawn gateway by hacker breach, IP phone need not pass attestation to be able to be dialed at will, communicate to suffer intercept and eavesdrop likely without protective speech, and can be cut off at any time. The hacker uses heavy directional charge to be able to replace speech mailing address into the specific IP address that he appoints, open private channel and back door for oneself. And the most typical is, hackers can have cheated SIP and IP address restrict and filch arrives whole talk process. The net is in charge of net BitsCN_com

Accordingly, not perfect consultation causes serious consequence: If somebody passes SIP flaw to pretend to be your agent and you to communicate, he is OK easily all sorts of data that get you (include a bank to block date and password of course among them) , so, when phone hang up, your work laboriously earns the saving that come will by loot one sky. Additional, a hacker also can be easily in your SIP server refer the holiday that exceeds an amount to serve a request, such servers cannot be received namely also cannot hear a telephone call, cause a service to reject a phenomenon.

The problem on the agreement is far more than these. In the agreement of SIP of the intercept on the network, the port that obtains RTP very easily and road by, pass specific mode to be able to realize eavesdrop easily next. Pass the jumbly mode that the net blocks, are hackers OK the agreement that can you achieve all POP3 in intercepting and capture a local area network very easily? ? Include countersign, it is very relaxed can intercept.

54com.cn

Additional, the implementation of VoIP relies on TCP/IP agreement inn move, all safe problems that so TCP/IP agreement faces we cannot evasive. A few common and troublesome virus issues also are destined to want to cause a worry to VoIP application environment. Accordingly, to VoIP equipment oneself, should pay attention to the implementation of principle of common information safety more than common computer equipment, provide necessary service only for example, shut the port with screen no use; The agreement with needless disuse? ? Not was necessary to enable needless with the agreement that had not used and service, lest offer more opportunities for the hacker.

54ne.com

Ignore these principles to will cause very serious safe harm. Reason clearly: If the infrastructure of VoIP cannot get be protectived effectively, it can by easily attack, the conversational content of memory is met by eavesdrop. Compare with traditional phone equipment photograph, the network that is used at transmitting VoIP — road by implement, server, it is switching equipment even, be atttacked more easily. And the PBX that traditional telephone call uses, it is stability and safety. The net is in charge of allied Www.bitsCN.com

The forestall times of traditional telephone call is about to go, the times that belongs to VoIP is coming. This forces VoIP to serve a provider people the technical centre of gravity that examines them afresh. Worth while and gratified is, current a few transmission agreements are perfect with each passing day, and each company has begun to realize the value of consultative safety. Chinese net is in charge of forum Bbs.bitsCN.com