- Version [version]
- Download 19
- File Size 669 KB
- File Count 1
- Create Date May 1, 2013
- Last Updated May 1, 2013
9. Panel Discussion: Anatomy of a VoIP DMZ
This special panel discussion will present ideas for provisioning phones safely and securely and then intentionally deciding to use (or not to use) SIP over TLS and SRTP.
In addition, the discussion will cover the motivation for a DMZ; the secrets that should be protected (e.g. provisioning password, web portal password, SIP authorization password); Testing the factory-installed CERT before giving out important secrets in config files; Using a service-provider self-signed CERT so that phones that can’t prove their identity don’t learn any important secrets; The costs and benefits of HTTPS vs. HTTP; and the whether it makes sense to put a layer-3 firewall in front of a Session Border Controller.