In Depth

VoIP Security: When Voice Becomes Data

With voice over IP picking up speed, CSOs face the challenge of navigating an entirely new security threat landscape for the phone system

By Scott Berinato

September 01, 2006CSO

To understand the significance of voice over IP (VoIP), it's useful to travel back in time. Specifically, go to 4:45 a.m. on Sunday, Sept. 3, 1967. If you happened to be in a car in Sweden at that moment, you had to stop the car and do nothing for five minutes. Then at 4:50 you had to move your car from the left side of the road to the right, and then stop again. Finally, at 5 a.m., you could proceed, on the right. In those 15 minutes, the entire country changed a 300-year-old custom of Vänstertrafik, left-side driving, to Högertrafik, right-side driving.

In fact Dagen H, or H Day as it was called (the H for Högertrafik), began earlier than 4:45 that morning. It began in 1963, when the Riksdag (Swedish parliament) voted to switch in order to simplify border crossings with right-side-driving Norway, and to reduce accidents associated with Sweden's use of left-hand-drive cars on the left, which puts the driver at the edge of the road instead of the middle.

It was an epic cultural and infrastructural shift. Sweden created the Högertrafikkommision (HTK) — an entire bureaucracy to manage the massively complex project. Bus stops jumped sides of the street, traffic lights moved, roads got new lines and signs, one-way streets went the other way.

And, of course, people had to figure out how to drive on the right, so an education program started that included psychologists.

Even the day itself was more complex than a 15-minute square dance of Saabs and Volvos. In fact, nonessential vehicles were banned from the roads until 6 a.m., an hour past the official 5 a.m. crossover. Stockholm extended its ban until 3 p.m. A picture taken of a street in Stockholm right before the switch shows vehicles comically strewn across a street, like someone bumped a table full of Matchbox cars. Still, it worked. No fatalities were reported on Dagen H, and over the long term it seemed to have the desired effect, or at least no measurable negative effect, on road safety.

Similar to Dagen H, the changeover from plain old telephone service, POTS, to VoIP will deeply challenge ingrained customs. For 100 years, telecommunications has been carried on a closed proprietary network, highly stable but limited in its applications, and connected to tens of millions of cheap appliances, dumb terminals called phones. A utility.

As voice over IP and voice over the Internet grow, telecom will change to become open and

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors
Sponsored Links

E-LOAN Maintains Reputation as a Privacy Leader with Symantec

Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands

Prudential Financial Protects its Brand with Symantec

Efficient - Flexible - Compliant

Envision Identity-Based Access Control for the Datacenter

Using Likewise to Comply with PCI Data Security Standard

When Customer Relationship is Everything, Businesses Bank on SSL Solutions

The Case for Business Software Assurance ~ Securing Your Applications

Maximizing Site Visitor Trust Using Extended Validation SSL

Solving Online Credit Fraud Using Device Reputation

Understanding Data Location is Imperative for Data Loss Prevention

Secure your virtual and physical environments with the same software

Manage your IT more effectively

IDC Defines an Identity and Access Management Submarket

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

7 Requirements of Data Loss Prevention

Information Security: Data Drains and How to Prevent Loss

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

How Are Open Source Development Communities Embracing Security Best Practices?

Digital Identity Protection and Data Security Get Personal

Simplify your data center with Juniper Networks. View the webcast

Managing SSL Security in Multi-Server Environments

The Latest Advancements in SSL Technology

How to Offer the Strongest SSL Encryption

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Get in Compliance With Government Data Regulations

Taking the Botnet Threat Seriously

Any company can promise identity protection. Only Debix can prove it

Welcome to the age of Service-Oriented Security (SOS)

Enabling Compliance with Converged Mainframe Security and Storage

5 Steps to Secure Outsourced Application Development