Mark Collier and I presented a 3 hour tutorial on VoIP security this Monday at VoiceCon where I think the reporter grabbed all of those quotes from. It’s unfortunate that the reporter took about 15 minutes worth of our presentation and used it to further his faulty premise. Our presentation outlined certain threats to general VoIP installations, and then detailed the specific countermeasures that could be applied to mitigate each threat. Mark and I stated several times throughout our presentation that even though there are security concerns associated with deploying VoIP (as with any application), all of the enterprise class VoIP solutions that we had tested are securable with the right amount of effort and research. It’s a shame that point didn’t get included in the article.

Dan, you are spot on with your rebuttal. Having been in the security industry for a while, I’m not as surprised anymore at fear based reporting. It’s just a little more upsetting when it’s your own words being taken out of context to sex up a headline.

My hope is that as VOIPSA grows as a voice piece in this industry, we can continue to combat this type of FUD with our projects, guidelines, and outreach messaging.