1 / 9

H.248 Link Encryption

S8700. G700 w/S8300. H.248 TCP Port 2945 PTLS TCP Port 1039. ICC. H.248 Link Encryption. IPSI. VoIP. Prowler. CLAN. IPSI Link Encryption. MGP. i960. Encryptet H.248 over Encryptet Ipsi link. H.248 Registration message are encrypted using session keys. H.248 Link Encryption.

jess
Download Presentation

H.248 Link Encryption

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. S8700 G700 w/S8300 H.248 TCP Port 2945 PTLS TCP Port 1039 ICC H.248 Link Encryption IPSI VoIP Prowler CLAN IPSI Link Encryption MGP i960 Encryptet H.248 over Encryptet Ipsi link H.248 Registration message are encrypted using session keys H.248 Link Encryption

  2. G 700 WAN IPSI VoIP CLAN IPSI G 350 ¿Por que es crucial la encriptación del Link H.248?

  3. S8700 SYSADMIN Admin LAN Servers Gateways Endpoints Encrypted IPSI Control (AES) Media Link Encryption (AES/SRTP & AEA) Encrypted H.248 (AES) IP H.323 Links (RAS and Signaling, AES) IP Phone IP Phone IP Phone Enlaces segurosEsto es más que encriptación, es autentificación, privacidad, e integridad.

  4. ¿Que es Media Encryption? • Encriptación de VoIP RTP bearer • Usa H.235 extensions to H.323 • La capacidad de encriptación se negocia entre los H.323 Endpoints y el H.323 Gatekeepers • Avaya fue el primero en ofrecer esta posibilidad (con AEA Media Encryption) • CM2.0 incluye encriptación basada en “Advanced Encryption Standard” (AES) • AES Media Encryption: • AES ha sido especificado por el IETF,como el algoritmo de encriptación estándar para conexiones seguras en internet RTP - SRTP Media Encryption NO afecta a la calidad de la voz!!!

  5. Call Server LAN Arquitectura tradicional No Operating System hardening Call server conectado directamente a la LAN Vulnerable frente a cualquier ataque H I G H R I S K ! ! !

  6. IP Control 1 IP Control 2 G700 Media Gateway Media Server Isolation Red de cliente Center StageNetwork Administraciónvía IP Redundancia y Fiabilidad Fiabilidad garantizada 99.999 Terminales IP

  7. Fiabilidad • Fiabilidad de 99% suena bien pero …. / year

  8. Digital / analog Phones Admin Server Media Server PSTN Digital / analog Phones VPN Firewall Media Gateway & Backup Media Server Media Gateway LAN WAN VPN Firewall LAN IP Phones IP Phones VPN Firewall Entornos Remotos LSP Mode PSTN Backup Toda la funcionalidad !!!!!

  9. Enterprise Survival Server Main S8700 Cluster MBO or ESS

More Related