Library items tagged: security

Cross campus virtual private network (VPN) tunnelling

Anonymous
Tuesday, January 31, 2012 - 08:06
wireless
advisory
case study
VPN
tunnelling
Bluesocket
authentication
security
visitor
Stephen Moore, The University of Liverpool
Read more

Security

Anonymous
Monday, January 23, 2012 - 20:12
Videoconferencing
H323
security
Read more

Appendix A - Deployment Security Checklist

Anonymous
Monday, January 23, 2012 - 19:22
Videoconferencing
security
H323
checklist
This checklist is intended as a guide for site administrators. It may not be an exhaustive list of issues (this will vary depending on the site security policy, for example), but should be of assistance as a starting point. Task Note Plan deployment topology for H.323 equipment.
Read more

References & further reading

Anonymous
Monday, January 23, 2012 - 19:21
Videoconferencing
H323
security
references
[CONVERY] Hacking Layer 2: Fun with Ethernet Switches, S. Convery, 2002,http://www.blackhat.com/presentations/bh-usa-02/bh-us-02-convery-switche...[DPA98] The Data Protection Act 1998, ISBN 0 10 542998 8,http://www.hmso.gov.uk/acts/acts1998/19980029.htm[ECSFW] The Use of Firewalls in an Academic Environment (under revision),
Read more

Conclusion

Anonymous
Monday, January 23, 2012 - 19:21
Videoconferencing
H323
security
This document has presented a discussion of the security issues involved with deploying a site H.323 videoconferencing service. While many sites may see their H.323 videoconferencing facilities function perfectly well without giving much, if any, consideration to security, security is invariably only as good as the weakest link.
Read more

Summary of site setup recommendations

Anonymous
Monday, January 23, 2012 - 19:20
Videoconferencing
H323
security
summary
site setup
recommendations
In this section we list security-related issues to consider when deploying an H.323 service, in particular when joining the JANET H.323 service, using a studio system on the local campus. Using Janet Videoconferencing In the context of Janet Videoconferencing, that service will be responsible for:
Read more

Firewalls and proxies

Anonymous
Monday, January 23, 2012 - 19:20
H323
Videoconferencing
firewalls
proxies
security
It has become increasingly popular over the last few years for Janet sites to deploy firewalls; many sites have realised that their users do not require full, open access to all workstations and servers on a campus. By controlling access, staff time can be saved in chasing up ‘hacking’ incidents, and the types of service used can be kept under control. Bandwidth usage is also rising dramatically, so firewalls now have to be able to operate at gigabit speeds.
Read more

Encryption, IP security (IPsec) and VPNs

Anonymous
Monday, January 23, 2012 - 19:19
Videoconferencing
H323
security
encryption
IPSec
VPN
H.320 (ISDN) videoconferencing users have been accustomed to assuming that videoconference sessions are private, thanks to the point-to-point circuit-switched nature of their ISDN calls. The ISDN network is not so readily accessible to the public, and thus not as liable to be snooped.
Read more

Call snooping, recording and unwanted guests

Anonymous
Monday, January 23, 2012 - 19:19
Videoconferencing
H323
security
call snooping
recording
unwanted guests
It is theoretically possible that in an H.323 conference an ‘outsider’ could snoop the session, recording or relaying an apparently private conference (by inspecting data in transit) or that a snooper is able to silently join a conference (by connecting to an MCU). For an attacker, gathering data ‘on the wire’ is safer as it reduces the chance of detection and being later traced.
Read more

H.323 device security

Anonymous
Monday, January 23, 2012 - 19:18
Videoconferencing
H323
security
device security
The security of H.323 devices falls into four broad categories:
Read more