FYI, I was the guest on the recent Security Roundtable podcast #5 focused on VoIP security. I gave an overview of VoIP security issues, discussed some best practices and answered numerous questions from the group of hosts. It was a wide-ranging discussion that covered Skype, recent legislation, enterprise network issues and much more. It was a fun podcast to be part of and I do appreciate the SRT team inviting my participation. If you are new to VoIP security issues in general, do give it a listen.
Synopsis:VoIP fraudster now a fugitive, Namibians jailed for VoIP, business continuity, Skype security and more.
Welcome to Blue Box: The VoIP Security Podcast #39, a 36-minute podcast from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-2583 or via SIP to '[email protected]' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis:VoIP security news, comments and opinions - Skype security, fugitive CEOs, Phil Zimmermann, Paris Hilton, the IETF and more.
Welcome to Blue Box: The VoIP Security Podcast #39, a 42-minute podcast from Dan York and Jonathan Zar covering VoIP security news, comments and opinions. In this week's show, we cover recent news, what happened at the VON show, 802.11 wireless security and more...
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-2583 or via SIP to '[email protected]' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis:VoIP security news, comments and opinions - Skype security, fugitive CEOs, Phil Zimmermann, Paris Hilton, the IETF and more.
Welcome to Blue Box: The VoIP Security Podcast #38, a 49-minute podcast from Dan York and Jonathan Zar covering VoIP security news, comments and opinions. In this week's show, we cover fugitive CEOs, Phil Zimmermann, Paris Hilton, the IETF, Skype and more...
NOTE: This show was originally recorded on September 6th and was delayed due to some of the audio quality issues that you will note in the show itself.
Show Content:
00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners.
01:18 - Jonathan's conference in Asia and travel there
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-2583 or via SIP to '[email protected]' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis:Interview about IP Multimedia Subsystem (IMS) security with Morgan Stern.
Welcome to Blue Box: The VoIP Security Podcast special edition #11, a 17-minute podcast from Dan York and Jonathan Zar containing an interview with Morgan Stern, Principal Consultant at Lucent Worldwide Services about the security of IMS systems.
In this interview, I spoke with Morgan Stern, Principal Consultant, Global Convergence Center of Excellence, Lucent Worldwide Services, about the security of the IP Multimedia Subsystem (IMS) architecture. Morgan has just been part of a panel session at Fall VON 2006 in Boston entitled "Securing Communication for IMS" and we covered a range of security topics, including:
The differences between centralized and distributed architectures
The various standards bodies involved with IMS
The emergence of "A-IMS"
How do we do distributed security?
How do we verify the authenticity of end devices?
Is IMS hype or reality?
Are there really new and innovative services coming out for IMS?
What are the major security issues for IMS?
Lawful intercept and its issues
His role at Lucent and what his work there is about
If you are interested in IMS security, you may also want to listen to Blue Box podcast #35, where we interviewed author Miguel Garcia for his perspective on IMS security.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-2583 or via SIP to '[email protected]' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis:Interview with Gary Miliefsky, Founder and CTO of Netclarity around how his products provide VoIP security and his views on VoIP security in general.
Welcome to Blue Box: The VoIP Security Podcast special edition #10, a 22-minute podcast from Dan York and Jonathan Zar containing an interview with Gary Miliefsky, Founder and CTO of Netclarity.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at either +1-206-350-2583 or via SIP to '[email protected]' to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis: Phil Zimmermann interview, VoIP security news, listener comments and more
Welcome to Blue Box: The VoIP Security Podcast show #37, a 60-minute podcast from Dan York and Jonathan Zar with news and commentary about the world of VoIP security. This show also includes a 15-minute interview with Phil Zimmermann about the status of ZFone, ZRTP and more
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583(new comment phone number!) to leave a comment there.
Show Content:
00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners.
15:04 - The Age (Australia): WiFi Skype phones to set you free (not security, per se, but combining Skype with WiFi… two of our favorite topics) Also mentioned the DualPhone.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583 to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis: IMS security interview, VoIP security news, listener comments and more
Welcome to Blue Box: The VoIP Security Podcast show #35, a 71-minute podcast from Dan York and Jonathan Zar with news and commentary about the world of VoIP security. This show also includes a 25-minute interview with Miguel Garcia about IMS security.
NOTE - Due to production issues, this show is coming out after show 36 and about a month after it was originally recorded. We do sincerely apologize for the delay! Please note also that also that the audio comment line number is wrong in the recording. As noted on the show website, the new number is +1-206-350-2583.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583(new comment phone number!) to leave a comment there.
Show Content:
00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583 to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis: Black Hat 2006 super-sized edition - VoIP security news, interviews with David Endler, Mark Collier, Ofir Arkin and much, much more
Welcome to Blue Box: The VoIP Security Podcast show #36, a 83-minute podcast from Dan York and Jonathan Zar with news and commentary about the world of VoIP security. This is a special edition focusing on the 2006 Black Hat Briefing in Las Vegas and the voice security talks that were given at the conference.
NOTE: As explained in the show, this podcast #36 is being released before show #35, which will be released next week. You didn't miss #35... it just hasn't been released yet.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583(new comment phone number!) to leave a comment there.
NOTE: As I will explain in more detail on our next show (#37), there were a number of issues with the audio in this show both in the recording as well as in the post-production. One of the issues was some very annoying noise artifacts in the Endler/Collier interview that sound like cell phone interference. There are also a couple of gaps... and those with finally attuned ears will hear some clipping of the audio. Suffice it to say that I would not want our podcast to be judged by the audio quality of this episode! I'll explain more in our next episode about exactly why this episode didn't hit our usual quality level.
Show Content:
(NOTE - More detailed show notes with links will be made available next week. For right now, we just want to get the show posted.)
00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners.
08:10 - Interview with Dave Endler and Mark Collier about their Black Hat talk and the VoIP security tools they released this week. (News articles from ZDNet and the Register.)
35:41 - Discussion of Hendrik Sholz's new smap tool and his zero-day exploit against Cisco PIX firewalls
39:46 - Discussion of Jay Schulman's session on phishing with Asterisk
45:29 - Discussion of Doug Mohney's session on using voice analytics to defeat social engineering
46:13 - Discussion of Nicolas Fischbach's session on carrier VoIP security
48:38 - Interview with Ofir Arkin about his session on NAC, Insightix, his role in VOIPSA, security research, etc.
1:05:42 - Mention of Alan Schimmler and his Still Secure blog and NAC
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-350-2583 to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Synopsis: IPv6 security, VoIP security news and more...
Welcome to Blue Box: The VoIP Security Podcast show #34, a 49-minute podcast from Dan York and Jonathan Zar with news and commentary about the world of VoIP security. This show covers the usual VoIP security news and then includes a 27-minute interview with Yurie Rich and John Spence from Command Information about IPv6 security.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-338-6654 to leave a comment there.
Show Content:
00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners. Mention of our listener survey
01:32 - Mention of IETF meeting and the audio streaming and the actual IETF agenda (also, if you have no understanding of how the IETF works, you may want to read The Tao of IETF )
02:20 - Mention of Podcast Awards - NOTE: Nominations closed on July 15th.
02:51 - Dan will be at Fall VON in Boston and Internet Telephony in San Diego - we'll plan dinners there.
03:09 - Dan will be on a panel of VoIP bloggers at Fall VON in Boston (listeners may not know of his blog at blog.danyork.com )
04:01 - Still looking for anyone with Wordpress expertise for suggestions about fighting blog spam over at Voice of VOIPSA.
Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-338-6654 to leave a comment there.
Thank you for listening and please do let us know what you think of the show.
Jonathan Zar is affiliated with Pingalo and is the Secretary of VOIPSA and member of the Board of Directors.
This is a personal project and neither the Internet Society, Pingalo nor VOIPSA have any formal connection to this podcast. In the interest of transparency we just thought you should know our affiliations.
Why "Blue Box"?
We chose the name "Blue Box" primarily as a nod to the era of phone phreaking in part to illustrate that threats to telephony are not new - they just continue to change and evolve. That and admittedly the name just sounded cool.
Recent Comments