« Show #7 coming probably tomorrow... | Main | Two logo suggestions - what do folks think? »

December 07, 2005


Dan, I listened to the discussion about recording IPT calls. I am not aware of any procedures and policies, but will say that we have been working with one of the major security companies to investigate an application which monitors calls for keywords. The idea is to detect when employees leak sensitive info, such as when an acquisition is about to take place. I don't know if we will ever build this, but it does raise some interesting questions, like are the rules for monitoring IPT going to be like traditional voice or more like data. Will enterprises start monitoring all calls, just like they can now with email and IM. We will see.

PS, encryption is generally useless as a countermeasure, when the call is translated by a media gateway to TDM. Just monitor on the TDM side.

The comments to this entry are closed.

The Obligatory Photo

Contact Information

Full Disclosure

  • Dan York, CISSP, is the Chair of the VOIP Security Alliance (VOIPSA) and Senior Content Strategist for the Internet Society.

    Jonathan Zar is affiliated with Pingalo and is the Secretary of VOIPSA and member of the Board of Directors.

    This is a personal project and neither the Internet Society, Pingalo nor VOIPSA have any formal connection to this podcast. In the interest of transparency we just thought you should know our affiliations.

Why "Blue Box"?

  • We chose the name "Blue Box" primarily as a nod to the era of phone phreaking in part to illustrate that threats to telephony are not new - they just continue to change and evolve. That and admittedly the name just sounded cool.

Promote Blue Box!

  • Add this graphic to your site!