Course Description
CLOSE WINDOW
Course Title:
Voice Over IP Security Seminar
Course Number: VoIPSS
Course Description: This three day in-depth seminar with hands-on labs was designed to provide a detailed technical perspective on VoIP Security with specifics on how to design and implement IP telephony to properly mitigate your security risk. The course will examine IP Telephony security design considerations for small, medium and large network deployments. It will detail the architecture and security capabilities of VoIP protocols (including H.323, SIP, and MGCP). It will give in-depth security implementation best practices guidelines for VoIP. To mitigate risks, the architecture of common VoIP attacks will be documented and countermeasures provided.
Course Objectives/Topics Covered:
  • Vulnerability assessment procedures, security configuration guidelines, and attack countermeasures with QoS management strategies.
  • Identify methods that an attacker could use to gain unauthorized access to VoIP traffic.
  • Security “Best Practices” to combat network intrusions.
  • Inside, how to:
    • Combat a denial of service attack on your VoIP endpoints, call control servers, and infrastructure components
    • Use packet capture utilities to perform Man-in-the Middle attacks against signaling and bearer channel
    • Use SRTP to encrypt VoIP media streams
    • Design security on top of an existing VoIP deployment, taking into consideration network function and QoS
    • Secure VoIP applications, regardless of what product vendor(s) solutions you've deployed
    • Configure security based on the VoIP protocol(s) you are using (H.323, SIP, or MGCP)
    • Mitigate your risks by learning the architecture of the most common attacks against VoIP solutions
    • Discuss how converging Voice and data can introduce vulnerabilities into the data infrastructure.
  • Knowledge gained:
    • Detailed strategies and design guidelines to maintain QoS while ensuring IP Telephony Network Security
    • Apply proper design and integration techniques to your VoIP application deployment to mitigate risks of attack
    • Examine VoIP management tools and best practices to support risk mitigation
    • Design security solutions for multiple voice network deployments
    • Learn how NAT and Firewalls impact call setup, media streams, latency, and application level gateway
    • Build and manage VoIP solutions over a VPN
    • Identify configuration guidelines that can assist in implementing VoIP.
    • Identify SIP Security Features and learn how to configure and administer those features
    • Learn H.323 security issues including Port usage risk, firewall inspection, and NAT configurations
    • Understand the threats and security holes with VoIP call control protocols H.323, SIP, and MGCP
    • Detail how IPSec and RTP Encryption help protect the confidentiality of voice communications.
    • Administer security for LAN and WAN VoIP Traffic
Course PreRequisites: This course is designed for students that have a basic understanding of Voice over IP. To include: TCP/IP, Firewalls, SIP, H.323, MGCP.