While enterprises have long protected their data networks from internal and external attacks, voice network security is a relatively new phenomenon. With the advent of Voice over IP technology, however, enterprises are increasingly exposed to voice-based IP attacks such as voice spam, vishing (voice phishing), spoofing, toll fraud, IP packet eavesdropping and Telephony Denial of Service (TDoS). As a global leader in VoIP technology, Sonus Networks offers enterprises a broad portfolio of voice security solutions that, together, provides a holistic approach to enterprise voice security that is hard to match.
Security at Three Critical Levels
Sonus enterprise voice security solutions provide protection at three critical levels: at the network border, around mission-critical applications like call centers,and the supporting VOIP infrastructure that enable these applications.
Our network border solution is the Sonus Network Border Switch, a unique Session Border Controller (SBC) available as a hybrid TDM/IP switch (NBS9000) and as a pure IP appliance (NBS5200). The Sonus NBS portfolio provides rich session management and robust enterprise security including media and signaling encryption (TLS, SRTP, IPsec), DoS and Distributed DoS (DDoS) protection, media transcoding, NAT traversal, topology hiding, white/black/greylisting and more-all in a highly scalable design that provides industry-leading performance even under extreme workloads.
Sonus also offers a unique application-aware security solution, VoiceSentry, that protects enterprise call centers from voice spam, TDoS and other malicious attacks that can compromise customer service and security. VoiceSentry is an advanced solution that utilizes Call Detail Record (CDR) analysis and profiling to detect and filter out suspicious voice traffic. VoiceSentry is also the first commercially available solution to leverage voice CAPTCHA technology: the same technology used to separate human- from machine-generated traffic on web sites and data networks, adapted specifically for voice networks to block out machine-generated phone calls.
The combination of a VoiceSentry system and a Sonus NBS in an enterprise network provides holistic real-time security protection, detection as well as real-time reporting on SIP or TDM attacks.
|
Feature |
Sonus Session Border Controllers (IP Protection) |
VoiceSentry™ (IP and TDM Protection) |
|
Packet Based DoS, DDoS Protection |
X |
|
|
Malformed Packet Detection |
X |
|
|
Toll Fraud |
X |
|
|
Topology Hiding |
X |
|
|
NAT Security |
X |
|
|
sRTP,TLS, and IPSec Encryption |
X |
|
|
Packet Based White/Black Lists |
X |
|
|
Call Admission Control |
X |
|
|
Attack Based Blacklists |
X |
X |
|
CDR Analysis |
|
X |
|
Network Behavior Learning |
|
X |
|
Real-Time Route Changes |
|
X |
|
Application Media Layer Analysis |
|
X |
Sonus Enterprise Voice Security protects your network against:
-
Denial of Service attacks
-
Distributed Denial of Service attacks
-
Telephony Denial of Service attacks
-
Botnet-based attacks
-
Toll fraud
-
Call Admission Control (CAC)
-
Caller ID/Automatic Number Identification (ANI) spoofing
-
Voice phishing (vishing)
-
Eavesdropping/VoIP packet interception
-
Voice spam
-
Internal/external escalation of authority
-
VoIP-transmitted viruses, worms and trojan horses
Products used in this solution: