Are IP phone systems secure?

Before the Pearl Harbor Naval Shipyard could connect its new voice-over-IP

(VOIP) phone system, which runs on the yard's internal data network, to

the public telephone system, it had to have the system's security approved

by the Navy's security specialists.

"We wanted to be sure that this gateway didn't create any security risks,"

said Stephen Sasaki, the assistant to the chief information officer at the

yard.

The first step was getting a white paper from Cisco Systems Inc., the

supplier of the voice-over-IP solution, that explained why the risks of

intrusion were minimal. "It's not a security risk because there is no way

for that interface to support anything but inbound voice calls," said Mike

Rau, Cisco's director of systems engineering for federal sales. "If you

had a modem and tried to dial into that VOIP gateway, there's no modem in

it to terminate that call. Both ends have to have modems."

The Navy has apparently agreed with this assessment and has given the

project the go-ahead.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.