[VOIPSEC] [Voipsec] Enterprise VoIP certifications
dan_york at Mitel.com
dan_york at Mitel.com
Fri Dec 9 18:33:27 CST 2005
Tony,
The quick answer is no, there is not something in the enterprise space
similar to the certifications that the military has for connection to the
DSN (such as JITC). I have seen a number of RFPs ask how our
systems comply with the US NIST 800-58 recommendations, but that
is about as close as it comes. Otherwise, any specifications are those
of the specific enterprise.
>From what I have seen, you all in the military have a little bit easier of
a
time enforcing such certifications/standards than is possible in the
corporate world which lacks the centralized command and control.
My 2 cents,
Dan
--
Dan York, CISSP
Dir of IP Technology, Office of the CTO
Mitel Corp. http://www.mitel.com
dan_york at mitel.com +1-613-592-2122
PGP key (F7E3C3B4) available for
secure communication
"Ortega, Anthony C C-E LCMC HQISEC" <Tony.Ortega at us.army.mil>
Sent by: Voipsec-bounces at voipsa.org
12/07/2005 04:19 PM
To: "'Voipsec at voipsa.org'" <Voipsec at voipsa.org>
cc:
Subject: [VOIPSEC] [Voipsec] Enterprise VoIP certifications
I'm a security engineer for the Army and we currently have two
certifications an organization must have prior to connection onto the
Army's
Defense Switched Network (DSN). These certifications are the Interim
Authority to Operate/Authority to Operate and the Interim Certificate to
Operate/Authority to Connect from separate certification authorities.
I was wondering if there are any similar required certifications at the
enterprise level for VoIP solutions.
Thank you,
Tony Ortega
More information about the Voipsec
mailing list