Secure VoIP, an Achievable Goal 103
An anonymous reader writes "ITO is running a comprehensive article on VoIP security issues and how one can protect against them: "VoIP creates new ways of delivering fully-featured phone services that promise big cost savings and open the way for a whole new range of multimedia communication services. After years of 'will it, won't it' speculation and unfulfilled predictions of universal adoption, Gartner is now positioning VoIP firmly on its way to the 'plateau of productivity' on its widely-respected technology hype cycle. But questions about its security and reliability persist.""
Re:I'd like to be able to hear the pin drop first. (Score:3, Interesting)
I'm more interested in the security aspect. Cell phones used to be atrociously noisy but the technology rapidly evolved to where, when your call isn't being inconveniently dropped, you can hold a conversation that's pretty clear. It will take VoIP a while, but in the end the audio quality will match what the phone company offers now. I just hope the prices don't start to balloon shortly thereafter.
Secure VoIP is easy (Score:3, Interesting)
The vonage server in that case would only exist to do call setup, teardown and control etc.
If you are making a call to a PSTN user, its encrypted all the way from you to the PSTN connection link server again with keys known only to both ends.
I am sure there are ways to handle secure key exchange and such to make this actually work (and ways that dont require the user to know anything about how to create keys and other things)
And there are encryption algorithims good enough to use for real-time encryption of compressed voice data.
With this idea, no-one between the 2 points can listen to the phonecall. (other than what can normally be done on the PSTN side of the PSTN linkup if it is a PSTN call)
My Problem With VoIP (Score:2, Interesting)
Granted, I hate the phone company too so I was going to check into a VoIP solution just so I didn't have to pay the phone company "as" much as I currently did. So, the problem is - phone companies do not offer a data only DSL package. To even get DSL you have to have full phone package.
So, my choices...go back to the cable company. Nope!
Add $24.95 a month or so to an existing phone package just so I can run VoIP on my home DSL line. Nope!
Stick with what I have - which is what I did.
What are the current problems with VOIP security? (Score:1, Interesting)
Now the reliability aspect is something else and it does need to be addressed, when people pick up a phone they expect and sometimes depend on it working. When they dial 911, they expect help to get to the right address. The building can be on fire and so long as there is a copper pair, your analog phone might get the job done.
Hmmm (Score:2, Interesting)
VoIP crypto with Diffie-Hellman? (Score:2, Interesting)
Re:I'd like to be able to hear the pin drop first. (Score:3, Interesting)
I run an Asterisk-based switch for all the company PBX traffic as well as a separate one for our VSAT satellite customers. We have full control over all aspects of the network and we have our own PSTN termination circuits, so there has never been an issue with quality.
Voip is HUGE and these are very minor hangups (Score:2, Interesting)
Re:VoIP crypto with Diffie-Hellman? (Score:2, Interesting)