• Home
• Topics
• Implementing Unified Communications Systems
• Unified Communications Security
• Security concerns for migrating from open source VoIP to UC

Security concerns for migrating from open source VoIP to UC

Requires Free Membership to View

Login



SearchUnifiedCommunications.com members gain immediate and unlimited access breaking industry news, expert advice on UC, technical guides, and more -- all at no cost. Join me on SearchUnifiedCommunications.com today!

Kate Gerwig, Editorial Director

• E-mail Address: 

By submitting your registration information to SearchUnifiedCommunications.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchUnifiedCommunications.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Open source, in one example of a platform used for many web forums is found vulnerable. It needs patching but this doesn't mean that all the vulnerabilities are yet known. You can argue the same for non-open source.The vulnerability has a potential effect that could impact several areas of the organization. What will these issues have on any industry governed by a regulatory framework, what are the legal implications and what are the security ramifications of any breach?

I would apply any industry regulations that your organization may be saddled with such as SOX, HIPPA and SEC to evaluating open source VoIP security in your UC migration. You will need to ensure that your open source solution is meeting any regulatory or compliance requirements. Then, you need to investigate further known vulnerabilities of what you are using and put into action any determined necessary security measures and assessments. I do think security and network assessments, along with continuous monitoring, will soon be within embedded or hosted infrastructures and will satisfy regulatory issues.

Still, have your counsel review the open source agreements/licenses and determine whether or not there are conflicts or room for any issues or potential and probable liabilities. This maybe challenging and you may get into some un-chartered waters. In short -- you should always review your regulatory, security and legal areas. Open source or not, security is always a concern even when it's not on your radar or field of vision. I'm not implying, however, that open source is any better or worse than closed or proprietary systems.

For more information and resources regarding open source security, check out the Open Source Vulnerability Database.

Dig Deeper

This was first published in October 2008

More from Related TechTarget Sites

• Mobile Computing
• Networking
• Telecom
• Networking Channel
• Enterprise WAN
• Exchange

• Mobile Computing

  • Bringing BYOD to your enterprise

    Bring your own device (BYOD) can be a boon for both employees and enterprises, but clear policies and management tools are needed.

  • Meeting technical requirements for mobile health care deployments

    IT departments deploying mobile health care solutions must ensure that using mobile devices in health care settings doesn't violate federal laws or compromise security.

  • Making the call: Distributed antenna systems and in-building wireless

    Distributed antenna systems and in-building wireless solutions are two options to improve wireless cellular coverage within an enterprise facility.

• Networking

  • Testing FCoE and data center bridging at UNH’s InterOperability Lab

    In this video Mikkel Hagen, a testing manager with UNH-IOL tells SearchNetworking.com about the work that UNH-IOL provides and the testing it is doing with data center bridging and Fibre Channel over Ethernet (FCoE) products.

  • Taking WPS attack precautions can reduce unauthorized WLAN access

    Admins should take WPS attack precautions to avoid unauthorized WLAN access, yet understanding the WPS protocol and its own vulnerabilities is key to complete network protection.

  • Integrating Juniper QFabric into your existing data center network

    In this video, learn how to integrate Juniper QFabric into existing data center architecture, taking into account the issues that can be associated with the technology.

• Telecom

  • Smartphone adoption spurs advanced services demand in Latin America

    Latin American smartphone adoption is more robust than North America's, and the consumers are more mobile-friendly than their peers in developed economies.

  • Need for wireless network upgrade is key AT&T/T-Mobile driver

    Rising demand for high-quality network service delivery will require operators to undertake a massive wireless network upgrade, driving deals like the AT&T/T-Mobile acquisition.

  • Video: ACG Research dissects telecom routing and switching market

    In this ACG Research HotSeat video, Managing Partner Ray Mota gives viewers a quarterly update on the telecom service provider routing and switching market.

• Networking Channel

  • Five WLAN questions answered: WPS attacks, access control, and more

    Even after a successful Wi-Fi network implementation, users are fraught with WLAN questions regarding access control and management. Do you have the answers?

  • Cisco Live London: 40 and 100 GbE switching and souped up WLAN

    At Cisco Live London, Cisco debuted 40 and 100 GbE line cards for Nexus and Catalyst switching lines, as well as a 4-antenna wireless access point meant to soup up the WLAN.

  • Selling public sector IT solutions forces partners to do some homework

    The need for public sector IT solutions is growing due to developing network activity, but can partners must be ready to commit to longer sales cycles and other complications.

• Enterprise WAN

  • Riverbed Granite enables branch infrastructure consolidation

    Riverbed Granite enables branch infrastructure consolidation with its edge-VSI architecture. You can finally eliminate those last branch-based servers.

  • How to calculate the cost of VPN links

    Do you need to upgrade the bandwidth of your virtual private network (VPN)? Calculating link capacity will help control the cost of VPN links.

  • WAN optimization Magic Quadrant: Bandwidth management is an old hat

    WAN optimization has evolved beyond bandwidth management, according to Gartner's new Magic Quadrant: Enterprises need cloud and mobile optimization.

• Exchange

  • Microsoft Exchange Online explained

    With all the chatter around hosted services these days, it pays to know about Exchange Online. Get a handle on its benefits and drawbacks.

  • Exchange Online mobile device support: A comprehensive look

    As Exchange organizations look to Office 365, questions arise about mobile device support in the cloud. Exchange Online may have the features your enterprise wants and needs.

  • Distinguishing between mail contacts and mail users in Exchange 2010

    It’s easy to confuse mail users with mail contacts in Exchange 2010. Our expert sorts out the differences between these seemingly interchangeable terms.

• About us
• Contact us
• Site index
• Privacy policy
• Advertisers
• Business partners
• Events
• Media kit
• TechTarget corporate site
• Reprints
• Site map