[VOIPSEC] Blue Box Podcast #42 uploaded with a discussion about the insecurity of some VoIP Service Providers... and other VoIP security news
dan_york at Mitel.com
dan_york at Mitel.com
Tue Oct 24 12:22:54 CDT 2006
VOIPSEC readers,
FYI, late last night I uploaded Blue Box Podcast #42 that Jonathan and I
had actually recorded last week:
http://www.blueboxpodcast.com/2006/10/blue_box_42_the.html
It was a bit different than some of other shows in that we started with a
discussion (well, really a "rant") about the lack of security demonstrated
by some VoIP Service Providers and how, in my opinion, the eventual public
exploit of this could tar all of us in VoIP with the same brush (even
those with existing secure solutions). To me it's not a question of IF
there will be an exploit, but more WHEN.
This rant came out of the Internet Telephony West conference earlier this
month in San Diego where there was a "Service Provider Shootout" panel
featuring eight service providers:
http://www.tmcnet.com/voip/conference/CA06/sd06-special-attractions.htm#shootout
In the public question time, I stood up and asked what many others later
told me was a perfectly valid question that they, too, had been wondering
about:
"All of this is going across broadband connections across the Internet.
What are you folks doing to secure the connections to the sets that are in
people's homes?"
The answer, as you will hear, was not terribly encouraging.
As I said in the podcast, I'd very much love to learn that I'm wrong about
this and would welcome any comments or feedback. (Either to this list or
as comments in to the podcast.)
Regards,
Dan
More information about the Voipsec
mailing list