• Advisory services
  • Consultations
  • Network and technology policies
  • Network and technology service docs
  • Using Jisc community
  • Network and technology service docs
  • Domain name registration
  • How to sign up
  • Janet Support Manual
  • Janet CSIRT
  • Back-up services
  • eduroam
  • Backup Web Hosting
  • Certificate Service
  • Connection timeline
  • Eligibility
  • Janet 3G Buyer's Guide
  • Janet 3G eduroam interoperablity authentication methods
  • Janet Mail Services
  • Janet Network Charges
  • Janet Reach
  • Janet Videoconferencing Feedback results
  • Primary connections
  • Supporting Business Continuity
  • Business and Community Engagement (BCE) using Janet
  • Cost
  • Interconnect connections
  • Connecting student accommodation
  • Customer-owned routing equipment
  • Obtaining a Janet IP Address Range
  • Terms for the Provision of the Janet Service
  • Upgrading your existing bandwidth and Janet router
  • Fault reporting
  • IP address assignment
  • Janet Aurora
  • Janet Netsight
  • Janet txt
  • Routers
  • Network set-up
  • Guest access
  • Network time service
  • Training
  • Contact
  • Primary Nameserver Service
  • Secondary Nameserver Service
  • Vscene
  • Vscene
  • Vscene updates and revisions
  • Login Options
  • Jisc and Ajenta partnership FAQ
  • Learn more about Vscene
  • Vscene Help and user guides
  • Videoconferencing service policies
  • ISDN
  • Content providers
  • Technical documentation
  • Technical details
  • Technical documentation
  • Archive
  • NAT, Firewalls and videoconferencing - H.323 Border Traversals
  • Security guide for H.323
  • Guide to reliable campus H.323 networks
  • Configuring a Gatekeeper to use with Janet VideoConferencing
  • Videoconferencing standards
  • Video Displays, Signals and Formats
  • Videoconferencing Quality
  • Janet Videoconferencing Service check
  • ISDN Dialup
  • IP Videoconferencing
  • Datasharing on Janet VideoConferencing Service
  • Global Dialing Scheme explained
  • Registering a Gatekeeper with the Global Dialing Service
  • Joining a Vscene session to a 3rd party MCU
  • Security guide for H.323
  • H.323 security in perspective
  • From ISDN to IP
  • Overview of H.323 security issues
  • H.323 site deployment
  • H.323 device security
  • Call snooping, recording and unwanted guests
  • Encryption, IP security (IPsec) and VPNs
  • Firewalls and proxies
  • Summary of site setup recommendations
  • Conclusion
  • References
  • Appendix A - Deployment Security Checklist

Security guide for H.323

Download as PDFDownload as PDF

Contents

Network and technology service docs

This guide discusses the potential security threats to an Internet Protocol (IP)-based videoconferencing system and the measures that can be taken to help combat those threats. The guide is aimed at sites deploying such H.323 videoconferencing systems in the UK Higher and Further Education communities, but may be equally applicable elsewhere.

This document assumes the reader has experience of ISDN (Integrated Service Digital Network) and/or IP-based videoconferencing systems. It addresses concerns about IP videoconferencing security, both in the implementation of an IP videoconferencing solution and in the use of IP videoconferencing. The Video Technology Advisory Service (VTAS) [VTAS] has already produced an introductory guide to H.323 videoconferencing [H323-INTRO], which readers not familiar with H.323 are strongly advised to read first.

Other useful reading includes the results of the UKERNA Video over IP Demonstrator project and the report of the subsequent H.323 Architecture Group [H323-ARCH], both of which covered many issues, including security. Documentation on the JANET Videoconferencing Service is also available online [JVCS-IP].

Videoconference
H323
  • Twitter logo
  • LinkedIn logo
  • Google+ logo
  • Reddit logo
  • StumbleUpon logo