Blue Box: The VoIP Security Podcast

Synopsis: VoIP security news, comments, interview with Tom Cross about VoIP security panels at IT Telephony and also upcoming VoIP security conference in June 2006, review of VOIPSEC mailing list.

Welcome to Blue Box: The VoIP Security Podcast show #4, an 32-minute conversation between Dan York and Jonathan Zar around news and commentary in the world of VoIP security.

Download the show here (MP3, 30MB) or subscribe to the RSS feed to download the show automatically.

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to [email protected].  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at +1-206-338-6654 to leave a comment there.

Show Content:

• 00:18 - Intro to the show, contact information and how to provide comments.  Welcome to all the new listeners who arrived after the posting to the VOIPSEC mailing list.
• 01:57 - Comment from Craig Bowser asking if an English translation of the German report was yet available and asking also about the NIST report
• 04:17 - Comment from Alon Cohen (co-founder and former CTO of VocalTec) asking about whether the VOIPSA Threat Taxonomy should only cover the threats that don't overlap with data
• 08:18 - Comment from Simon Ewing that he enjoys the show but the show intro is making his blood boil
  - Request to listeners: if anyone has a better idea for an audio intro, we'd love to hear it.
• 11:37 - Start of interview with Tom Cross, founder and producer of Techtionary.com, the world's largest animated library on technology, and also a columnist for TMC Net, Telecommunications and more.
• 13:38 - Discussion of the two panels on VoIP security that Tom moderated out at Internet Telephony and the themes he did or did not see emerge (and discussion about elephants in the dark)
• 18:08 - Tom talks about the International Security Symposium on VoIP Security that he is organizing for June 1-2, 2006 in Boulder, CO.  Discussion on the call for papers and encouraging people to submit proposals.
• 24:38 - Tom discusses the services he and his company provide
• 26:45 - Wrap-up of the interview and note that if others are interested in being interviewed please contact us.
• 27:17 - Very quick summary of some of the news items this week:
  • Skype security analysis
  • European IT directors doubt VoIP security
  • Microsoft and Cisco release about ICE: Microsoft press release, Information Week article, PC World article, Tom Keating's TMC.net VoIP blog
• 28:34 - Review of the last week's traffic on the VOIPSEC public mailing list. Major topics this week included nat traversal, continued discussion of SIP B2BUA and Digest Authentication, like to Skype security analysis and a number of comments around the Microsoft and Cisco announcement.
• 29:30 - Another request for an iTunes logo
• 30:17 - Note about "VoIP Podroll" on show blog and request that if you know of another VoIP podcast that should be included to please send that in.
• 30:47 - Wrapup of the show and information about how to provide comments.

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to [email protected].  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at +1-206-338-6654 to leave a comment there.

Thank you for listening and please do let us know what you think of the show.