• About
  • Privacy Policy
  • Contact
Tech Newsday
  • Security
  • Future of Work
  • Mobility
  • Emerging Tech
  • Today’s News
No Result
View All Result
Tech Newsday
  • Security
  • Future of Work
  • Mobility
  • Emerging Tech
  • Today’s News
No Result
View All Result
Tech Newsday
No Result
View All Result
Home Security

NSA Gives Tips on Securing Voice, Video Communications

TND News Desk by TND News Desk
August 3, 2021
in Security
0 0
0

The National Security Agency (NSA) recently released mitigations and best practices that system administrators should follow if they want to secure Unified Communications (UC) and Voice and Video over IP (VVoIP) call-processing systems.

UC and VVoIP are call-processing systems used in enterprise environments for various purposes such as video conferencing, instant messaging and project collaboration.

Because these communication systems are highly integrated with other IT devices in corporate networks, they also increase the vulnerability by introducing new vulnerabilities and the potential for covert access to an organization’s communications.

In addition, inadequately secured UC/VVoIP devices are exposed to the same security risks and are targeted by cyberattackers through spyware, viruses, software vulnerabilities and other malicious means if they are not sufficiently secured and configured.

Administrators should take important steps to minimize the risk of their organization’s corporate network being attacked by the use of UC/VVoIP systems:

  • Segment enterprise network using Virtual Local Area Networks (VLANs) to separate voice and video traffic from data traffic.
  • Use access control lists and routing rules to limit access to devices across VLANs.
  • Implement layer 2 protections and Address Resolution Protocol (ARP) and IP spoofing defenses.
  • Secure PSTN gateways and Internet perimeters by authenticating all UC/VVoIP connections.
  • Always keep software updated to mitigate UC/VVoIP software vulnerabilities.
  • Authenticate and encrypt signalling and media traffic to prevent impersonation and eavesdropping by malicious actors.
  • Deploy session border controllers (SBCs) to monitor UC/VVoIP traffic and audit call data records (CDRs) using fraud detection solutions to prevent fraud.
  • Maintain backups of software configurations and installations to ensure availability.
  • Use identification cards, biometrics, or other electronic means to control physical access to secure areas with network and UC/VVoIP infrastructure.

For more information, read the original story in BleepingComputer.

Please login to join discussion

Subscribe

About Tech News Day

In just 10 minutes you will have all your leadership tech news needs covered. Our Editors browse the top tech news sites for you, get rid of the fluff and post summaries of the best. Our content is created by trained professionals and enhanced for IT leaders using leading edge artificial intelligence.

About

Tech Newsday

Tech News Day picks the new, most relevant tech stories.

Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize these to give you a quick summary and the key takeaways.

SUBSCRIBE

Categories

  • Artificial Intelligence
  • Auto Tech
  • Blockchain
  • Careers & Education
  • Channel Strategy
  • Cloud
  • Communications & Telecom
  • Companies
  • Data & Ananytics
  • Development
  • Digital Transformation
  • Distribution
  • Diversity & Inclusion
  • eCommerce
  • Emerging Tech
  • End User Hardware
  • Engineering
  • Financial
  • Fintech
  • Future of Work
  • Governance
  • Government & Public Sector
  • Human Resources
  • Infrastructure
  • IoT
  • Leadership
  • Legal
  • Legislation & Regulation
  • Managed Services & Outsourcing
  • Marketing
  • Martech
  • Medical
  • Mobility
  • Not for Profit
  • Open Source
  • Operations
  • People
  • Podcasts
  • Privacy
  • Security
  • Service
  • Smart Home
  • SMB
  • Social Networks
  • Software
  • Supply Chain
  • Sustainability
  • Today's News
  • Top Stories This Week
  • Women in Tech
  • Home
  • Today’s News
  • About
  • Privacy
  • Contact

2022 Tech News Day

No Result
View All Result
  • Security
  • Future of Work
  • Mobility
  • Emerging Tech
  • Today’s News

2022 Tech News Day

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
-
00:00
00:00

Queue

Update Required Flash plugin
-
00:00
00:00