Tito Torres
IS3120
Assignment 7: Solving a Business Challenge Using SIP Technology
To reduce costs, increase flexibility as well as to have a centralized I would use IP/SIP (internet Protocol/Session Initiation Protocol) with this technology customers can be routed to the best internal resource of their needs, regardless where that might be , the contact server, back office , or even a remote location. With IP-based technology, centralized management is enabled across all sites to balance the call load with greater flexibility while costs are reduced.
SIP has the same IP and application-level vulnerabilities as other VoIP protocols. There are several factors, which make SIP potentially less secure:
1.- The SIP standard and support implementations is relatively new.
2.-Complexity, SIP itself is moderately complex , but with all the necessary extensions is a complicated protocol.
3.-Extensibilty, SIP supports extensions which are new and often fragile from a security point of view .
4.-Encoding, SIP uses text messages which are easier to see with a sniffer.
Some of the vulnerabilities are just to name a few: Registration Hijacking , Proxy Impersonation, Message Tampering, Denial of Service(Dos), Firewall/Network Address Translation (NAT) Issues
To minimize this concerns the bank should use TCP/IP for signaling to make it harder for an attacker to spoof SIP messages also utilize a security standard such as the Transport Layer Security(TLS) to provide strong authentication and encryption between your SIP components , this standards should be used on every component of your sip system , and choose vendors that support them, once a security standard such as TLS has been implemented avoid any components that are not able to use it , using any none secure components such as an inexpensive SIP phone can allow the types of attacks that were mentioned.