Synopsis: 802.1X mini-tutorial, new VoIP security vulnerabilities, new security tools, the biggest threat to VoIP? … botnets hitting Estonia…  and chimichangas and sushi trains…

Welcome to Blue Box: The VoIP Security Podcast #59, a 55-minute podcast  from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.   

Download the show here (MP3, 24MB) or subscribe to the RSS feed to download the show automatically. 

You may also listen to this podcast right now:

Show Content:

• 00:20 – Intro to the show, contact information and how to provide comments.  Welcome to all the new listeners – and to all those listeners who have been here for so long!
• 01:36 – Dan and Jonathan discuss recent conferences, the US DOD’s JITC certification process and stray into Mexican food…
• 06:38 – Programming notes
  • Martyn Davies will be moderating a panel on VoIP security at VON Europe that will include Dan and others
  • Blue Box dinner at the June VON show on Monday, June 11th
  • We’ve recently set up a group on the Facebook social networking site for fans of the show.  If you are a Facebook user, feel free to join.
• 08:01 – Sipera Finds New VoIP Phone Security Threats
• 12:58 -Information Week: Security Tools Top 2007 IT Professionals Poll (VoIP drops to 3rd) – see also IT Business Edge
• 16:59 – ITP Technology: Cracking the code
• 18:25 – Network World: Security in PacketCable networks
• 20:59 – Speaking of Network World, by way of Mark Collier , we learned that Network World has a VoIP Security page
• 21:28 – VoIPPlanet: A series of ‘The VoIP Peering Puzzle’ background pieces on SBC’s
• 23:24 – Ken Camp: What’s the biggest Threat to Enterprise VoIP?
• 25:21 – CRN: VoIP Demystified
• 26:08 – TMCnet: Trends in IP Communications and the Evolution of the SBC
• 27:15 – ComputerWeekly.com: VoIP, UC adoption continue to rise
• 29:45 – Botnet attacks against Estonia:
  • Washington Post: Cyber Assaults on Estonia Typify a New Battle Tactic
  • CNN: Estonia suspects Kremlin in Web attacks
  • BBC: Estonia hit by ‘Moscow cyber war’
  • Global Guerrillas: Russia vs. Estonia: 21st Century State vs State conflict 
• 34:04 – News Releases:
  • General Dynamics Awarded $18 Million Contract to Deliver VoIP to the Pentagon
  • Freebird releases VoIP call recorders
• 35:27 – Feature – mini-tutorial on IP phones and 802.1X
• 40:00 – Upcoming shows:
  • Dustin Trammell will be speaking at Defcon 15 about VoIP and steganography
  • June 12-14, Stockholm, Sweden, VON Europe Spring – both Martyn and I will be there… we’ll have a Blue Box dinner
  • July 22-27, Chicago, USA IETF 69
  • Aug 20-23, San Francisco, CA, USA VoiceCon SF 2007
  • Sept 10-12, Los Angeles, CA, USA ITEXPO West 2007
  • Oct 29-Nov 1, Boston, USA, Fall 2007 VON
• 42:12 – comment (email) from Phil about analog tapping of VoIP phone
• 44:28 – comment (email) from Shlomo Dubrowin
• 49:13 – Review of the last week’s traffic on the VOIPSEC public mailing list
• 49:35 – Wrap-up of the show 
• 51:13 – End of show 

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to blueboxpodcast@gmail.com.  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at either +1-206-350-2583 or via SIP to ‘bluebox@voipuser.org‘ to leave a comment there. 

Thank you for listening and please do let us know what you think of the show.