Security in VoIP has not been a very popular subject so far, but with the increasing demand for VoIP, it is becoming an important concern. VoIP security threats are increasing in number. Three things can be done to make VoIP more secure:
Using firewalls
A firewall is a program that sets a barrier between your computer or network and the sources of security threats like hackers and virus mongers. This barrier filters data going in and out of the network. If a network is controlled by a central server, firewall software can be installed on that server, thus protecting all machines and devices on that network. Some of the most common firewalls used by Internet users are Kerio (
www.kerio.com) and Zone Alarm (
www.zonelabs.com).
Firewalls can also be embedded into hardware. For example, routers may have firewalls built-in to filter VoIP packets in and out of your VoIP network.
Read more on firewalls here.
Enforcing authentication
Authentication is simply asking for credentials (user name and password or any other secret information) form any user who requests access to a network or service. This way, real and legal users are distinguished from false ones.
Unfortunately, very few VoIP service providers actually have their service equipped with authentication technologies, even if it is one of the best methods of ensuring security.
Using encryption
When data packets (with confidential information) travel over networks, they are vulnerable to attacks and can quite easily be stolen. However, a valuable piece of stolen data has absolutely no value if it cannot be read and understood! Encryption secures the data passing over networks by changing it into an ineligible form, so that it cannot be read if it is stolen. Encrypted data can be converted back to its original form (decrypted) once it reaches its legitimate destination.
Who takes care of security?
As a user, you are not the only party that should take care of security. Your service provider has a big part to play in it; the biggest part. While, as a VoIP user in a personal or corporate environment, can have a firewall installed, it is commonly out of your reach to enforce authentication and encryption. This is the work of your VoIP service provider.
Read more on how they do this here.
