BorderWare Joins VOIP Security Alliance.BOSTON & TORONTO -- Chairs Committee on Security Requirements BorderWare Technologies Inc. today announced that it has joined VOIPSA, the industry's first Voice over Internet Protocol See Internet and TCP/IP. (networking) Internet Protocol - (IP) The network layer for the TCP/IP protocol suite widely used on Ethernet networks, defined in STD 5, RFC 791. IP is a connectionless, best-effort packet switching protocol. (VoIP) Security Alliance. VOIPSA is an open group of leading VoIP vendors, providers, security researchers, and thought leaders with the purpose of improving the public awareness of issues and best practices for security and privacy of Voice over IP. BorderWare will chair the Security Requirements committee within VOIPSA. The group is tasked with defining security requirements across the wide spectrum of the VoIP ecosystem including individual VoIP building blocks, supporting security technology components (SBCs, Firewalls, etc.), architecture and network design (NAT (Network Address Translation) An IETF standard that allows an organization to present itself to the Internet with far fewer IP addresses than there are nodes on its internal network. , VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. , port security, etc.), network management, and end point access and authentication. VoIP Adoption Accelerating, Security A Concern By all accounts, the VoIP industry is on a global growth path. In-Stat/MDR reported that the overall percentage of companies using VoIP communications quadrupled in 2004, growing from 3 percent in 2003 to 12 percent in 2004, and showed substantially higher growth rates Growth Rates The compounded annualized rate of growth of a company's revenues, earnings, dividends, or other figures. Notes: Remember, historically high growth rates don't always mean a high rate of growth looking into the future. among larger enterprises. In-Stat/MDR forecasted that by the end of 2004, VoIP penetration would reach 34 percent among mid-sized businesses, and 43 percent in large enterprises. Only recently, however, have industry vendors and researchers begun to raise concerns that VoIP and its underlying communications protocols such as SIP (Session Initiation Protocol (protocol) Session Initiation Protocol - (SIP) A very simple text-based application-layer control protocol. It creates, modifies, and terminates sessions with one or more participants. Such sessions include Internet telephony and multimedia conferences. It is described in RFC 2543. ), are vulnerable to a number of exploits such as faked Caller ID A telephone company service that sends the caller's telephone number between the first and second ring of the call. If the calling number is not blocked, the calling number is displayed on the handset or base station of the called party. . A recent report from the U.S. National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) advises federal government agencies to implement appropriate security measures when deploying voice over Internet Protocol (VoIP) telecommunications technologies. "As a leader in securing Internet communications, BorderWare welcomes the opportunity to work with the industry to identify and establish security requirements that will enable the widespread adoption of VoIP," said John Alsop, Chairman, BorderWare. About Session Initiation Protocol (SIP) Like HTTP HTTP in full HyperText Transfer Protocol Standard application-level protocol used for exchanging files on the World Wide Web. HTTP runs on top of the TCP/IP protocol. and SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. , SIP has been endorsed by the Internet Engineering Task Force (c/o Corporation for National Research Initiatives (CNRI), Reston, VA, www.ietf.org) Founded in 1986, the IETF is a non-membership, open, voluntary standards organization dedicated to identifying problems and opportunities in IP data networks and proposing technical solutions to the (IETF See Internet Engineering Task Force. IETF - Internet Engineering Task Force ) and is emerging as the dominant session protocol for real-time Internet (IP) communications applications including instant messaging (IM), VoIP, and video conferencing. Industry players from carriers to equipment makers are all moving to SIP because it provides the convenience and benefit of ensuring that hardware equipment and applications from different vendors will work in tandem. SIP, however, is also susceptible to similar types of threats and exploits that plague the Web and email. BorderWare has developed the industry's first SIP-specific firewall, SIPassure, which is designed to make SIP communications safe. About VOIPSA The VoIP Security Alliance (VOIPSA) is the first and only group solely and holistically dedicated to VoIP security research and education backed by a wide spectrum of organizations represented by universities, security researchers, VoIP vendors, thought leaders and VoIP providers. The mission of VOIPSA is to improve the public awareness of issues and best practices for security and privacy of Voice over IP. VOIPSA is an open group that aims to help organizations discover, understand and avoid VoIP security risks through discussion lists, white papers, sponsorship of VoIP security research projects, and the development of tools and methodologies for public use. For more information, please visit www.voipsa.org. About BorderWare BorderWare Technologies makes Internet communications safe. The company's perimeter and "application-specific" firewalls for email and SIP enable customers to mitigate the risks and threats associated with Internet communications. Founded in 1994, BorderWare has developed partnerships and affiliations with some of the industry's most prominent companies including 3Com Corp., Cisco Systems, F5 Networks, Kaspersky Labs, Research In Motion (RIM), RSA Security, Sun Microsystems and Symantec. More than 7500 customers in 65 countries have selected BorderWare's solutions for their superior security, scalability, business continuity and lower total cost of ownership. For more information visit http://www.borderware.com or call 1-877-814-7900. (c) 2005 BorderWare Technologies Inc. All Rights Reserved. BorderWare is a trademark of BorderWare Technologies Inc. All other company and product names may be trademarks or registered trademarks of their respective holders. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion