sangoma sbcs keeping your voip network secure
play

Sangoma SBCs Keeping Your VoIP Network Secure Simon Horton - PowerPoint PPT Presentation

Feb 10, 2024 •242 likes •723 views

Sangoma SBCs Keeping Your VoIP Network Secure Simon Horton Sangoma shorton@sangoma.com Inside this Deck About Sangoma/ProVu SIP Market SBCs Demystified Business Applications and Use Cases Portfolio of SBCs Sangoma

  1. Sangoma SBCs – Keeping Your VoIP Network Secure Simon Horton – Sangoma shorton@sangoma.com

  2. Inside this Deck � About Sangoma/ProVu � SIP Market � SBCs Demystified � Business Applications and Use Cases � Portfolio of SBCs � Sangoma Advantages � Summary

  3. Who are Sangoma? � Industry pioneer with over 25 years of experience is communications hardware and software � Publicly traded company since 2000 � TSXV: STC � One of the most financially healthy companies in our industry � Growing, Profitable, Cash on the Balance Sheet, No Debt � Mid-market sized firm with around 70 staff in all global territories � Offices in Canada (Toronto), US, EU (UK), APAC (India), CALA (Miami) � World Wide Customer base

  4. Broad Line of Great Products � ���������������������� � �������������������������������� � �������������������������� � ������� ������ � ��!"�#���$��� � �������������������#���$��� � ��%��"&!��&' � �����(����������#���$��� � "&!��"&'�����������&! � �������������� �$��� � ����������()����� � �����"�������������*�� � ������������+�����������������, � -�������������.����+���/, � �������������0���

  5. SIP TRUNKING & SBC MARKET

  6. SIP Trunking Introduction � Replace physical PSTN trunk with IP based connection � Lower cost � UC services � Channel flexibility � Disaster recovery �!"���0�1����������.��������0���1�

  7. UK SIP Market � SIP market growing fast: � End 2013 1.1M SIP trunks. Up 200K in last 6 months * � Hosted VoIP 1.3M users * � ISDN market shrinking � ISDN channels 3.6M 2011 to 3.3M 2012 ^ #��$�����!"�2��1���������.��������0���1� * source: Illume Consulting ^ source: Ofcom

  8. UK SIP Market � SIP growth facilitated by availability and reducing costs of connectivity � Growth ethernet big affect

  9. SBCS DEMYSTIFIED

  10. Legacy TDM Connections �������"�3 "�3����� "&!�+(/, "��� (�������� ������0� �&! � TDM based phone calls take place on approved equipment connected to private networks run by the telco � Nothing else connected � Fixed protocol

  11. Why VoIP Brings More Risk !"4"�3 "��� !������� !"����!" !"4"����� � VoIP often carried across public networks � Calls can be placed and terminated on many devices – IP-Phones, smart phones, desktops, etc. � Threat level more like that of any internet device � Would you access the internet without a firewall?

  12. SBC Is The Front Door To Networks � SBC controls entry (or not) to a network � Directs communication between end devices � This communication is called a session � SBC can do this because it sits ������� ��220��������� ���$�����$���!"���.���� at the border between two ������ �����$��1�������� �������� ����$��1� networks ���������� ����������������� ��������

  13. SIP Session � Signalling: Sets call path up, negotiates codec to be used � Media: Transports the voice or video � Media Control: Collect information on voice quality Signalling ������� Media ������ Media Control

  14. Regular Call (No SBC) �� ������ ����� Signalling UAC UAS Media Media Control 5����������������� � All three elements of a session are direct between endpoints

  15. SBC is a B2BUA �� UAC UAS ������ ����� Signalling Signalling UAS UAC Media Media Media Ctrl Media Ctrl 5����������������� � ������������14��4���1�6��������� � �'�6������2���������������������4������������ ��$�������������������������� � ������������������� ������������ � ������������������������2������ ������������ ��

  16. THE ROLE OF THE SBC

  17. SBCs Protect the Enterprise Network Three ways that SBCs protect the network: 1. DoS Protection. Prevent Denial-of Service (DoS) attacks from affecting network performance. 2. Topology Hiding. Hide the topology of the network. This makes it much harder for hackers to access the system. 3. Encryption. Encrypt the communications, both signalling (SIP) and media (RTP).

  18. SBCs Provide Call Access Control Three ways that SBCs allow secure deployment: 1. BYOD. Users within an enterprise now expect to be able to make calls on many different devices. Malicious apps on those devices can facilitate toll fraud. 2. Toll Fraud Detection. Only allow authorised users. 3. Call Policies. Manage policies that define what devices and users are allowed to make certain call types.

  19. SBCs Allow Easy Interop Three ways that SBCs allow simple deployment: 1. SIP Normalisation. Different vendors have different SIP implementations. SBCs can translate between these SIP variations. 2. Transcoding. Converting between different codecs for the media stream. 3. Enable SIP Trunking. SIP trunking saves money and brings flexibility.

  20. Firewall Is Not Enough � Traditional firewalls cannot � Prevent SIP-specific overload/SIP DoS � Open/Close RTP media ports in sync with SIP signaling � Track session state and provide uninterrupted service � Perform internetworking or security on encrypted sessions � Solve multi-vendor SIP interoperability � Topology Hiding � SBCs do all of the above

  21. BEST PRACTICES

  22. Best Practices � Everywhere a VoIP Network needs to interface to another VoIP Network, you need an SBC � Same rule with IP Network and Firewalls really � SBC are required in both Carriers and Enterprise Networks �!" !" &�" �� ��$���� !"4"�3 �����������!"����$��1 (�������������!"����$��1

  23. Integration at the Edge has its Advantages � Because SBC ‘sees’ all traffic, they have evolved to be much more than interop/security devices � Migration – Intelligent call routing for VoIP � Lawful intercept – Call forking for recording devices � Quality of Service reporting � Billing � Intrusion Management � Session Border Controllers have become essential in VoIP networks

  24. BUSINESS APPLICATIONS AND USE CASES

  25. Enterprise Security Threats � Denial of Services � Call/registration overload � Malformed messages (fuzzing) � Configuration errors � Mis-configured devices � Operator and application errors � Theft of service/Fraud � Unauthorized users � Unauthorized media types � BYOD � Smartphones running unauthorized apps � Viruses and Malware attacking your VoIP network

  26. SIP Trunking

  27. Remote Office Connection without VPN

  28. SBC For Hosted PBX Advantages: � Known demarcation point � Reduces interoperability issues/resource with core � Transcoding if required

  29. Interworking with IP-PBX Advantages: � All advantages of SBC for SIP trunks � Least Cost Routing � Resilience � Load Balancing

  30. SIP Trunking Support for Microsoft Lync �����()����� �!"� SBC ��0�1� �!" (������������� �����'7/8 ��������� �����(���"���� ���.�� ���.�� SBC: � Performs SIP Security functions � UDP / TCP Translation � SIP harmonization � Media harmonization

  31. SANGOMA SBC PORTFOLIO

  32. Product Positioning The most cost-effective, easiest to provision, and easiest to manage line of SBCs on the market.

  33. Session Border Controllers � Vega Enterprise SBC � 25-250 Sessions/Calls � Vega VM Enterprise SBC � 25-500 Sessions/Calls � Software Only/Virtual Machine Ready � Vega VM/Hybrid Enterprise SBC � SANGOMA EXCLUSIVE � 25-500 Sessions/Calls � SBC Maintained in VM � Media Functions offloaded to external hardware resource � NetBorder Carrier SBC � 250-4000 Sessions/Calls

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Quest-V: A Secure and Predictable System for IoT and Beyond Richard West richwest@cs.bu.edu

Quest-V: A Secure and Predictable System for IoT and Beyond Richard West richwest@cs.bu.edu

Quest-V: A Secure and Predictable System for IoT and Beyond Richard West richwest@cs.bu.edu Computer Science Talk Outline Background on embedded single board computers (SBCs) Quest(-V) OS for x86 SBCs Work status Lessons

495 views • 27 slides
What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for

What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for

Welcome to Business Matters Todays topic: What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for Voice over Internet Protocol - Phone service through your Internet connection 2 Components of

510 views • 29 slides
ZFONE ZRTP Philip Zimmermanns new secure VOIP Hello(As Zid, Hash, Enc, SAS.)

ZFONE ZRTP Philip Zimmermanns new secure VOIP Hello(As Zid, Hash, Enc, SAS.)

ZFONE ZRTP Philip Zimmermanns new secure VOIP Hello(As Zid, Hash, Enc, SAS.) application Interoperates with SIP signaling Commit(Bs Zid, HVI, .) Communication with AES by SRTP DH1(pvr, Hash(secret), .)

412 views • 3 slides
End to End Delay Performance Evaluation for VoIP in the LTE Network Dai, Hongxin

End to End Delay Performance Evaluation for VoIP in the LTE Network Dai, Hongxin

ENSC 427 COMMUNICATION NETWORKS SPRING 2013 Final Project Presentation End to End Delay Performance Evaluation for VoIP in the LTE Network Dai, Hongxin danield @ sfu.ca Ishita, Farah fishita @ sfu.ca Lo, Hao Hua

530 views • 24 slides
my and Outlook PublicFolders drive Electronic records-keeping: Use, Manage, Keep, Secure a BKI

my and Outlook PublicFolders drive Electronic records-keeping: Use, Manage, Keep, Secure a BKI

my and Outlook PublicFolders drive Electronic records-keeping: Use, Manage, Keep, Secure a BKI project Introduction Shared drives need to be used in a manner that maximises the business benefits and minimizes the risks and costs to

730 views • 14 slides
Voice over IP (VoIP) Technology Services 875-4357 cchelpdesk@ccis.edu What is VoIP? VoIP

Voice over IP (VoIP) Technology Services 875-4357 cchelpdesk@ccis.edu What is VoIP? VoIP

Voice over IP (VoIP) Technology Services 875-4357 cchelpdesk@ccis.edu What is VoIP? VoIP (voice over IP) is an IP telephony term for a set of facilities used to manage the delivery of voice information over the Internet. A major advantage of

1.26k views • 5 slides
Cross-Network Gateway (Radio-VoIP-GSM-Public Announce) xTrunk302 www.manasrekha.com What is a

Cross-Network Gateway (Radio-VoIP-GSM-Public Announce) xTrunk302 www.manasrekha.com What is a

Cross-Network Gateway (Radio-VoIP-GSM-Public Announce) xTrunk302 www.manasrekha.com What is a Cross-Network Gateway? It enables voice communications among the Radio, VoIP, GSM, and Public Announce (PA) networks. It incorporates Radio

530 views • 25 slides
Keeping Dynamics GP Secure February 23, 2017 Charles Allen Senior Managing Consultant BKD

Keeping Dynamics GP Secure February 23, 2017 Charles Allen Senior Managing Consultant BKD

Keeping Dynamics GP Secure February 23, 2017 Charles Allen Senior Managing Consultant BKD Technologies callen@bkd.com To Receive CPE Credit Participate in entire webinar Answer attendance checks & polls when they are provided

288 views • 17 slides
Keeping objects secure IN TRODUCTION TO AW S BOTO IN P YTH ON Maksim Pecherskiy Data

Keeping objects secure IN TRODUCTION TO AW S BOTO IN P YTH ON Maksim Pecherskiy Data

Keeping objects secure IN TRODUCTION TO AW S BOTO IN P YTH ON Maksim Pecherskiy Data engineer Why care about permissions? df = pd.read_csv('https://gid-staging.s3.amazonaws.com/potholes.csv') INTRODUCTION TO AWS BOTO IN PYTHON Why care

1.16k views • 68 slides
Warm Welcome Matrix SETU VTEP Single Span VoIP to T1/E1 PRI Gateway Introduction VoIP to T1/E1

Warm Welcome Matrix SETU VTEP Single Span VoIP to T1/E1 PRI Gateway Introduction VoIP to T1/E1

Warm Welcome Matrix SETU VTEP Single Span VoIP to T1/E1 PRI Gateway Introduction VoIP to T1/E1 PRI Gateway Dedicated VoIP-ISDN PRI Gateway Plug-n-Play device VoIP access device for an existing PBX PRI trunking for an

404 views • 27 slides
VoIP switching and billing suite Break through your data VoIP switching and billing suite

VoIP switching and billing suite Break through your data VoIP switching and billing suite

VoIP switching and billing suite Break through your data VoIP switching and billing suite components VoIP switch - SIP softswitch based on VoIP switch Opensips significantly re-developed by 5g 5g Future. Future Dynamic or static routing - a

156 views • 11 slides
VoIP Technologie, Implementationsbeispiel und wirtschaftliche Aspekte Karl-Heinz Kafka Senior

VoIP Technologie, Implementationsbeispiel und wirtschaftliche Aspekte Karl-Heinz Kafka Senior

4/9/2003 VoIP Technologie, Implementationsbeispiel und wirtschaftliche Aspekte Karl-Heinz Kafka Senior Consultant HP Services Network Solutions Group (NSG) 9. April 2003 Agenda Die Voraussetzungen der Implementierung einer VoIP

434 views • 9 slides
Transporting Voice by Using IP NTP VoIP Testbed: A SIP-based VoIP Platform Department of CSIE,

Transporting Voice by Using IP NTP VoIP Testbed: A SIP-based VoIP Platform Department of CSIE,

Transporting Voice by Using IP NTP VoIP Testbed: A SIP-based VoIP Platform Department of CSIE, NCTU Quincy Wu Email: solomon@ipv6.club.tw 1 Outline Introduction Voice over IP RTP & SIP NTP VoIP Platform Conclusion

1.02k views • 64 slides
VoIP Hacking Lars Strand PhD student Norwegian Defence Research Establishment (FFI) Jely,

VoIP Hacking Lars Strand PhD student Norwegian Defence Research Establishment (FFI) Jely,

VoIP Hacking Lars Strand PhD student Norwegian Defence Research Establishment (FFI) Jely, 15.-16. January 2009 VoIP? PSTN: 100 year old technology, 99.999% uptime, call anyone anytime can VoIP offer that today? VoIP next

479 views • 15 slides
Introduction (1 of 2) An Empirical Evaluation of VoIP Playout Buffer Dimensioning in VoIP

Introduction (1 of 2) An Empirical Evaluation of VoIP Playout Buffer Dimensioning in VoIP

4/3/2015 Introduction (1 of 2) An Empirical Evaluation of VoIP Playout Buffer Dimensioning in VoIP increasingly important Skype, Google Talk, and MSN Started with inexpensive use at home with friends and family Messenger Now businesses

631 views • 7 slides
Secure Communications 1. The network employs the IMBE (Improved Multi-Band Excitation),voice

Secure Communications 1. The network employs the IMBE (Improved Multi-Band Excitation),voice

A Uni Unique que an and Po Powerful werful Com ommunications munications Sys ystem tem NETWORK INNOVATIONS SATELLITE RADIO/TELEPHONE ( FORMERLY SKYTERRA, MSV, LIGHT SQUARED ) Secure Communications 1. The network employs the IMBE

910 views • 54 slides
Financial Results Conference Call Wednesday, November 13, 2019 Safe Harbor All statements in

Financial Results Conference Call Wednesday, November 13, 2019 Safe Harbor All statements in

Third Quarter 2019 Financial Results Conference Call Wednesday, November 13, 2019 Safe Harbor All statements in this presentation that are not based on historical fact are "forward looking statements." While management has based any

751 views • 18 slides
Switching Nigerians to .ng ccTLD A Multi stakeholder Approach To Growing ng.ccTLD Ope Odusan

Switching Nigerians to .ng ccTLD A Multi stakeholder Approach To Growing ng.ccTLD Ope Odusan

Switching Nigerians to .ng ccTLD A Multi stakeholder Approach To Growing ng.ccTLD Ope Odusan Chief Operating Officer Nigerian Internet Registration Association oodusan@nira.org.ng http://www.nira.org.ng Tel: +234 808 208 2766

1.35k views • 11 slides
Trend in Submarine Maintenance as IP and DWDM Converge Ken Herrmann Ken Herrmann VSNL

Trend in Submarine Maintenance as IP and DWDM Converge Ken Herrmann Ken Herrmann VSNL

Trend in Submarine Maintenance as IP and DWDM Converge Ken Herrmann Ken Herrmann VSNL International VSNL International Presenter Profile Ken has 21 years of experience in the Telecommunications industry. His undersea cable experience

489 views • 20 slides
I. T. SET UP OF BANKS I. T. SET UP OF BANKS- DATA CENTER DATA CENTER BY CA. UDAY KULKARNI

I. T. SET UP OF BANKS I. T. SET UP OF BANKS- DATA CENTER DATA CENTER BY CA. UDAY KULKARNI

I. T. SET UP OF BANKS I. T. SET UP OF BANKS- DATA CENTER DATA CENTER BY CA. UDAY KULKARNI Disclaimers Disclaimers

409 views • 30 slides
Presentation by Chris Kirkcaldy Director, DAS March 2018 The United Nations Office at Nairobi

Presentation by Chris Kirkcaldy Director, DAS March 2018 The United Nations Office at Nairobi

Presentation by Chris Kirkcaldy Director, DAS March 2018 The United Nations Office at Nairobi was established with effect from 1 January 1996 as a successor to the United Nations Common Services Unit at Nairobi and two separate divisions of

253 views • 10 slides
Investor Presentation L D M i c r o D av id P a is , C F O Apivio Systems Inc. (TSX: APV.V) D

Investor Presentation L D M i c r o D av id P a is , C F O Apivio Systems Inc. (TSX: APV.V) D

A Global Leader in Voice Technology Solutions Bringing Android, Wi-Fi and VoIP Together Investor Presentation L D M i c r o D av id P a is , C F O Apivio Systems Inc. (TSX: APV.V) D e c e mbe r 6 , 2 0 1 6 www.apivio.com DISCLAIMER THIS

538 views • 23 slides
SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference

SCAP for VoIP Automating Configuration Compliance 6 th Annual IT Security Automation Conference Presentation Overview 1. The Business Challenge 2. Securing Voice over IP Networks 3. The ISA VoIP Security Project 4. Next Steps With SCAP 5. Summary

388 views • 23 slides
BIPCOM Voice and Data Solutions OVERVIEW: o 10 Years managing call centre's o 15 Years in

BIPCOM Voice and Data Solutions OVERVIEW: o 10 Years managing call centre's o 15 Years in

BIPCOM Voice and Data Solutions OVERVIEW: o 10 Years managing call centre's o 15 Years in business providing telecoms services o Now service & support over 100 businesss Call: 01202 069692 Email: info@bipcom.co.uk BIPCOM Voice and Data

637 views • 16 slides

More recommend