Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
A security analyst wants to harden the company's VoIP PBX. The analyst is worried that credentials may be intercepted and compromised when IP phones authenticate with the BPX. Which of the following would best prevent this from occurring?
SIP (Session Initiation Protocol) creates the connection from peer to peer (e.g. phone to phone or phone to phone system). Let’s say it sets the switches for the audio stream. Once the connection is established, the RTP (Real time Transport Protocol) is used to transport the audio or video data.
To overcome the security flaws of SIP and RTP and safely make secure calls via the internet, encrypted versions of both protocols have been developed. SIPS, which stands for SIP Secure, is SIP, extended with TLS (Transport Layer Security). With this TLS, a secure connection between IP PBX and VoIP telephone can be established using a handshake approach. SRTP encodes the voice into encrypted IP packages and transport those via the internet from the transmitter (IP phone system) to the receiver (IP phone or softphone), once SIPS has initiated a secure connection. To allow the receiver to decrypt the packages, a key is sent via SIPS, while the connection is initiated in the previous step.
SIPS...notice "when phones authenicate" See this link below
https://askozia.com/voip/what-is-sips-and-srtp/#:~:text=SRTP%20encodes%20the%20voice%20into%20encrypted%20IP%20packages,the%20connection%20is%20initiated%20in%20the%20previous%20step.
True, SIPS is not in the objectives. It is not even in the acronyms list.
SRTP uses AES to encrypt the voice/video flow.
Authentication, integrity and replay protection.
Session Initiated Protocol (SIP): Allows people from all over the internet, and
those with VoIP, to communicate using their computers, tablets, and
smartphones. An example would be of a secretary who could receive a Skype call
for the boss: SIP allows them to put the caller on hold, speak to their boss, and, if
needs be, put the person through.
Real Time Protocol (RTP): Once SIP has established the session, RTP transfers
the videoconferencing traffic.
Secure Real Time Protocol (SRTP): Used to secure the videoconferencing
traffic—it normally uses TCP port 5061.
VLAN: Voice traffic being placed in a VLAN segments it from the rest of the
network.
Media gateway: Allows different methods of video and voice to communicate
with each other, for example, if you use an XMPP gateway, you can connect
Jabber clients to a Skype session.
"credentials may be intercepted and compromised when IP phones authenticate with the BPX"
They are not worried that the call is intercepted, but only the credentials(VoIP Phone registration and signaling) That is why D is the correct answer.
I was in doubt too, but answer is D.
SRTP is a security profile for RTP that adds confidentiality, message authentication, and replay protection to that protocol.
Does not authenticate!!!
Secure SIP (Session Initiation Protocol) Fusion Embedded™ secure SIP or SIPS, provides secure communications for the VoIP Industry's popular SIP protocol. As defined by RFC 3261, secure SIP allows the device to make a secure connection to a server so that all communications can be encrypted.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MagicianRecon
Highly Voted 3 years, 10 months agonicat
Highly Voted 4 years, 6 months agoEVE12
Most Recent 2 years, 12 months agowho__cares123456789___
3 years, 4 months agoexiledwl
3 years, 4 months agoJoker20
3 years, 3 months agocertpro
3 years, 4 months agoNot_My_Name
3 years, 7 months agoDookyBoots
3 years, 7 months agodieglhix
3 years, 7 months agoHanzero
3 years, 8 months agoOmario944
3 years, 8 months agoMTK777
3 years, 9 months agoMara03
3 years, 10 months agoMara03
3 years, 10 months agozu
3 years, 10 months agokyky
3 years, 11 months agokdce
3 years, 11 months agoOduro
3 years, 11 months ago