VoIP Security Eavesdropping Recording Conversations

VoIP Eavesdropping

Q: What is VoIP eavesdropping?
A: Eavesdropping on VoIP calls takes place when unauthorized third parties monitor call signal packets. By eavesdropping, third parties can learn user names, passwords, and phone numbers thereby gaining control over calling plans, voicemail, call forwarding, and billing information. More importantly, third parties may also gain access to confidential business and personal information by eavesdropping on actual VoIP based conversations.

Q: What precautions should be taken against VoIP security threats?
A: First, ensure that all VoIP traffic is encrypted. There are multiple options here including VPNs and SRTP (Secure RTP), but make sure that the selected encryption method is efficient and fast. Otherwise, performance and throughput may be negatively impacted...

The above Q & A is from VoIPNews.com Security FAQ

Encryption with Negligible Impact on Voice Quality

The Arlinx IP-PBX Platform, SIPhonix, uses a hardware encryption accelerator for very fast and efficient encryption and decryption. This means a negligible effect on voice quality due to excellent encryption performance resulting in minimal throughput latency and zero effect on overall system performance.

Simple VoIP Eavesdropping How To

To demonstrate how simple it is to eavesdrop by recording a VoIP conversation, read the following excerpt from the book VoIP Hacks. As the author warns eavesdropping is unethical if performed where you are not authorized to do so. It is illegal in many instances.

This excerpt refers to the free "network tool" Cain and Able. Cain and Able is free "network administrators tool" software but is often used as a hackers tool. One feature of Cain and Able is to record VoIP conversations using it's network packet sniffer. Other features include Password Cracker and Brute Force Attacks.

There are open source VoIP Eavesdropping sniffer software available such as VoiPong, Oreka, VOMIT, and Ethereal. These programs can be used for legitimate purposes as well as hack tools. If your VoIP system is properly secured. none of these programs will work.

If you want to use a program like Oreka for legitimate call recording on a minimally secure VoIP system you would have to modify the source by adding decryption and authentication.

VoIP Hacks

Tips and Tools for Internet Telephony

By Ted Wallingford
Edited by David Brickner
Published by and (C) O'Reilly Media

The secret to recording another person's VoIP calls is in making the switch think your MAC address is a valid destination for the VoIP traffic that's bound for that person's VoIP device. Specifically, when the sending device uses ARP to resolve the IP address of the intended recipient, your PC must respond by saying, “I am the holder of that IP address-send the data to me!” This hack, which rather goes against the prescribed way an Ethernet LAN is supposed to work, is called ARP poisoning. The result is that your PC intercepts the packets destined for the intended MAC address, so you can do with them whatever you like.

Once intercepted, the packets must be forwarded to the correct MAC address, or a denial of service will occur on the device you're snooping. In the case of VoIP, your PC can record (or play in realtime) the media stream before passing the packets to the actual intended receiver. A classic man-in-the-middle hack, this technique is simplified by the outstanding network tool, Cain and Abel. To get started, use Cain's host discovery tool. Click the Sniffer tab, then the Hosts tab at the bottom of the GUI. Then, click the + in the toolbar. This will pop open a dialog where you can tell Cain to discover all of the devices on your network. I used it to discover the IP and MAC addresses of my Cisco 7960 phone (10.1.1.104), and my Asterisk server (10.1.1.10).

[Two explanatory paragraphs skipped here]

Now, start the sniffer and the ARP poison router by clicking the “Start/Stop Sniffer” icon and the “Start/Stop” APR icon (which looks like a radiation symbol). Wait for a VoIP call to be placed on the targeted host-or place one yourself on that host-and watch the call list in the VoIP tab. In a moment, an entry will pop up, indicating that the call is in progress and being recorded into a WAV file by Cain.

Click the Book's Cover Image for Additional Information
Check out the Amazon review by Patrick Young Arlinx.com
Click "Buy From" to put it in Amazon's Shopping Cart

Another book from the same author.

Switching To VoIP

A Solutions Manual for Network Professionals

By Ted Wallingford
Edited by Mike Loukides
Published by and (C) O'Reilly Media

Foreword

Preface

1. Voice and Data: Two Separate Worlds?
The PSTN
Key Systems and PBXs
Limits of Traditional Telephony
VoIP in the Home
VoIP in Business
VoIP's Changing Reputation
Key Issues: Voice and Data: Two Separate Worlds

2. Voice over Data: Many Conversations, One Network
VoIP or IP Telephony
Distributed Versus Mainframe
Key Issues: Voice over Data: Many Conversations, One Network

3. Linux as a PBX
Free Telephony Software
Installing Legacy Interface Cards
Compiling and Installing Asterisk
Monitoring Asterisk
Key Issues: Linux as a PBX

4. Circuit-Switched Telephony
Regulation and Organization of the PSTN
Components of the PSTN
Customer Premises Equipment
Time Division Multiplexing
Point-to-Point Trunking
Legacy Endpoints
Dial-Plan and PBX Design
Key Issues: Circuit-Switched Telephony

5. Enterprise Telephony Applications
Application Terminology
Basic Call Handling
Administrative Applications
Messaging Applications
Advanced Call-Handling Applications
CTI Applications
Key Issues: Telephony Applications

6. Replacing the Voice Circuit with VoIP
The "Dumb" Transport
Voice Channels
Key Issues: Replacing the Voice Circuit with VoIP

7. Replacing Call Signaling with VoIP
VoIP Signaling Protocols
H.323
SIP
IAX
MGCP
Cisco SCCP
Heterogeneous Signaling
Key Issues: Replacing Call Signaling with VoIP

8. VoIP Readiness
Assessing VoIP Readiness
Business Environment
Network Environment
Implementation Plan
Key Issues: VoIP Readiness

9. Quality of Service
QoS Past and Present
Latency, Packet Loss, and Jitter
CoS
802.1q VLAN
Quality of Service
Residential QoS
Voice QoS on Windows
Best Practices for Quality of Service
Key Issues: Quality of Service

10. Security and Monitoring
Security in Traditional Telephony
Security for IP Telephony
Access Control
Software Maintenance and Hardening
Intrusion Prevention and Monitoring
Key Issues: Security and Monitoring

11. Troubleshooting Tools
VoIP Troubleshooting Tools
The Three Things You'll Troubleshoot
SIP Packet Inspection
Interoperability
When, Not if, You Have Problems-
Simulating Media Loads
Key Issues: Troubleshooting Tools

12. PSTN Trunks
Dial-Tone Trunks
Routing PSTN Calls at Connect Points
Timing Trunk Transitions
Key Issues: PSTN Trunks

13. Network Infrastructure for VoIP
Legacy Trunks
VoIP Trunks
WAN Design
Disaster Survivability
Metro-Area Links
Firewall Issues
Peer-by-Peer Codec Selection
Key Issues: Network Infrastructure for VoIP

14. Traditional Apps on the Converged Network
Fax and Modems
Fire and Burglary Systems
Surveillance Systems and Videoconferencing
Voice Mail and IVR
Emergency Dispatch/911
Key Issues: Traditional Apps on the Converged Network

15. What Can Go Wrong?
Common Problem Situations
Key Issues: What Can Go Wrong?

16. VoIP Vendors and Services
Softphones and Instant Messaging Software
Skype
Other Desktop Telephony Software
Developer Tools and SoftPBX Systems
VoIP Service Providers
Telephony Hardware Vendors

17. Asterisk Reference
How Asterisk Is Supported
Asterisk's Configuration Files
Asterisk Dial-Plan
Asterisk Channels
The Asterisk CLI
Integrating Asterisk with Other Software
Key Issues: Asterisk Reference

A. SIP Methods and Responses

B. AGI Commands

C. Asterisk Manager Socket API Syntax

Glossary

Index

Click the Book's Cover Image for Additional Infomation
Click "Buy From" to put it in Amazon's Shopping Cart

VoIP Eavesdropping

Encryption with Negligible Impact on Voice Quality

Simple VoIP Eavesdropping How To

Another book from the same author.

Table of Contents