Home

Syndicate content
more
  • About
  • Training
    • Telecom
    • Hardware
    • Computer Tech. Skills
    • Catalog
  • Consulting
  • Development
  • Worldwide
  • Contact Us
  • Join Us
  • Conferences
  • Blogs
  • Why Logtel for training
  • Lecturers
  • Our classes
  • Customers
  • Choose course category
Choose course category:
  • INTRODUCTORY SEMINARS
  • DATACOM & NETWORKS
  • IP NETWORKING
  • TELEPHONY NETWORKS & ADVANCED TELEPHONY (Voice over IP - VoIP)
  • WIRELESS & CELLULAR
  • SECURITY
  • MOBILE OPERATING SYSTEM
  • VIDEO TECHNOLOGIES
  • TRANSMISSION & OPTICAL TECHNOLOGIES
  • OSS/BSS
.

TELECOM

SIP Security

Nº 1309
DATE: CALL
PRICE NIS: 2120 + VAT
DURATION: 2 Days
application/pdf iconSIP Security.pdf

Course Overview:
In this two day course you will learn the security aspects of VoIP in general and of Session Initiation Protocol (SIP) in particular. In the course we will discuss the SIP attack surface and the various security enhancements to the SIP protocol (SIPS, SIP and S/MIME & SRTP), as well as the SIP authentication mechanism.
We will analyze the behavior of the protocol in Firewall and NAT/NAPT environment, and discuss how SIP enabled Firewalls and SBC handle the SIP security threats.

Who should attend?
People who want to gain understanding on the information security risks SIP based systems are facing, and who to mitigate these risks, including:
  • System Architects
  • Engineers and Software developers
  • Technical support and field engineers
  • Professional people in the communication and IT
     



Prerequisities:
Basic knowledge of SIP

Course Outline:
1. SIP Security Overview
  • SIP Overview
  • The SIP Security Problem
  • Attack classification
 2. Introduction to Security Mechanisms
  • Symmetric encryption
  • Asymmetric encryption
  • Message digest and Digital signature
  • Digital certificates
 3. SIP Attack Surface
  • Registration Hijacking
  • Impersonating a server
  • Interception/modification - message tampering
  • Session tear-down
  • SIP Denial of Service (DOS/DDOS)
  • SIP SPAM/SPIT
  • The danger of soft-phones
  • And others….

4. SIP Authentication

  • Methods of authentication for SIP
  • Authenticated registration
  • Authenticated outgoing calls
  • Authenticated incoming calls
  • Black lists

 5. SIPS (SIP Secure)

  • SSL/TLS (Transport Layer Security) Overview
  • SIP over SSL/TLS
    •  

6. SIP and S/MIME
  • S/MIME Overview
  • S/MIME usage to secure SIP messages
7. Secure Real Time Transport Protocol (SRTP)
  • Packet structure
  • Authentication
  • Encryption
8. SIP Enabled Firewalls
  • Firewall limitations to handle SIP
  • SIP traversal through Firewall
  • SIPS traversal through Firewall
  • RTP traversal through Firewall
  • Firewall enhancements to handle SIP
 9. NAT Traversal in SIP
  • NAT types
  • SIP – NAT problem
  • Simple Traversal of UP through NAT (STUN)
  • Traversal Using Relay NATs (TURN)
  • Universal Plug and Play (UPNP)
  • Interactive Connectivity Establishmnet (ICE) – The IETF approach
10. Session Border Controller (SBC)
  • What is SBC?
  • Main SBC Security features
11. SIP Security Products (optional)
 
12. Summary

Back to the courses page
Courses
Carrier Ethernet
Debugging Techniques using the ChipScope Protool
USB 3.0 System Architecture
Embedded Open-Source Linux Development
Telecom
Carrier Ethernet
MPLS Basic
ATM and ATM Networking
IP Security
Hardware
Debugging Techniques using the ChipScope Protool
Embedded Open-Source Linux Development
Designing with the PlanAhead tool
FPGA Architecture and ISE Features
CTS
USB 3.0 System Architecture
Object Oriented Analysis and Design
Social Networks
Real Time and Embedded Linux Development
  • About
  • Training
  • Consulting
  • Development
  • Site map

Logtel (c) All rights reserved 2010-2011 | www.logtel.com | Developed by: Hagit Bagno | Designed: NotFromHere