 |
| We are here to help... |
 |
| With easy ways to get the answers you need: |
 |
Or call us at:
1-888-742-3214 |
| |
|
|
SIP |
| |
|
| |
|
| Course Name: |
SIP Security Training |
| |
|
| Deployment Options: |
Onsite - Instructor-Led Training |
| |
|
| Course Duration: |
2-3 days depending on audience background and options |
|
|
| |
|
| Related Courses |
| |
 |
| |
|
|
|
| Introduction: |
| |
Security is a concern for every company at every level. The introduction of media gateways to handle traditional telephony converted to SIP protocol for VoIP introduces many security management challenges on the data network. If not using media gateways, many organizations are starting to use VoIP providers who carry voice traffic on an IP network connection using the SIP protocol. The widespread adoption of SIP opens potential threats exposing the vulnerabilities of the protocol.
This course will help you understand the issues of network security as they relate to the use of the SIP protocol. We will examine the security vulnerabilities of the protocol as well as each component in a SIP design for a comprehensive review of SIP security issues. We will conclude with a discussion of the policies and procedures that enhance SIP security. |
| |
| Audience: |
| |
| Network security planning teams, network administrators, IT and telecommunications engineers, IT security management, multimedia applications/services designers and marketing/sales professionals will benefit from this course. The course will also be of interest to the homeland security, crime prevention/investigation, and law enforcement community. |
| |
| Prerequisites: |
| |
| Those contemplating taking this course should have completed the above course or possess equivalent knowledge and experience. |
| |
| Customize it: |
| |
| This 2-3-day SIP Security course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of telecommunication training. They will typically have a broad and general course, one size fits all, already developed and just put your organization?s name on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren't too sure of what that was. We fit the class to your eeds. We never fit you into our standard, one size fits all, class. Please call or e-mail to schedule a no-obligation conference call to help us understand your audience background and training objectives. |
| |
| Objectives: |
| |
|
On completing this course, you will be able to:
- Learn how to evaluate your SIP security concerns on all levels
- Understand the key components for security planning purposes
- Discern security vulnerabilities of SIP at the protocol layer
- Design for secure network communications by understanding protocol level attack methods
|
| |
| Course Outline |
| |
|
SIP Security: An Introduction
- SIP security challenges: An overview
- How SIP security fits into the overall data security strategy
- How SIP security relates to the traditional telecommunications security
- Discussion of the SIP protocol using the OSI model
- SIP’s architectural vulnerabilities
Physical Layer Security: Discussion of Security Factors of SIP Endpoints (Telephones)
- Configuration files
- Tools for loading configuration files
- User access levels
- Other security factors
Data Link Layer Security
- Firewalls and NAT’s
- SIP architecture and potential threats that are handled by the firewall
- Denial of Service (DoS) attacks
- --DoS attacks on SIP network components
- --DoS risk mitigation
Transport Layer Security: Digest Authentication and SIP
- How it is implemented in the SIP protocol
- How it is used against threats or attacks.
Session Layer Security
- Security vulnerabilities of the SIP protocol
- --SIP standard and attacks
- --IETF and security standards
- Application-level security vulnerabilities
- --General
- --Vendor-specific issues for the leading vendors
- Encryption issues for SIP
- --Encryption as it relates to SIP
- --Tradeoff between real-time processing requirements and security
Presentation Layer Security: Rights and Access Levels
Application Layer Security: Load Balancers, Proxy Servers, Media Servers, etc.
- Securing SIP architecture components
- Password issues with SIP and applications
- User authentication
- Remote system access issues
Network Security Issues and SIP
- New vulnerabilities related to SIP messages on the network
- How SIP fits into the current network security plans and designs
Security of Gateways, One of the Most Vulnerable Elements of SIP design
Security Best Practices Related to the SIP Protocol
- Security audit methods
- Vendor management
- Testing systems and devices: Available tools
Wrap-up: Course Recap, Q/A, and Evaluations |
| |
| Other Expertise: |
| |
|
|
|
| |
|
For organizational purchases, please send us a message at  salesinfo@eno.com
or complete and submit this form . |
| |
|
 |
Request A Quote
Convert your currency
RSS Feed
Facebook
LinkIn
Twitter
You Tube
