Blue Box: The VoIP Security Podcast: Blue Box #32: ENUM Tutorial, VoIP security news, listener comments and more

Synopsis: ENUM tutorial, VoIP security news, listener comments and much, much more...

Welcome to Blue Box: The VoIP Security Podcast show #32, a 49-minute podcast from Dan York and Jonathan Zar with news and commentary about the world of VoIP security. This show includes a 14-minute tutorial on ENUM - what it is and what implications it has for security - as well as the usual coverage of VoIP security news and comments from listeners

Download the show here (MP3, 45MB) or subscribe to the RSS feed to download the show automatically.

You may also listen to this podcast right now:

Comments, suggestions and feedback are welcome either as replies to this post or via e-mail to [email protected]. Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows. You may also call the listener comment line at +1-206-338-6654 to leave a comment there.

Show Content:

00:20 - Intro to the show, contact information and how to provide comments. Welcome to all the new listeners. Mention of our listener survey - PLEASE TAKE A MOMENT TO COMPLETE THE SURVEY! (Thank you!)
02:38 - Discussion of why the first release of show #31 sounded like a really bad rap mashup
06:23 - I will be a guest on the upcoming Telecom Junkies podcast where the recent Pena/Moore VoIP fraud case will be discussed.
07:50 - Dan will be at the IETF 66th Meeting in Montreal, June 9-14 - Please drop us a note if you are going to be there.
08:11 - Dan will be attending Fall VON 2006 in Boston in September and will also be speaking out at the Internet Telephony conference in San Diego in October… so we’ll definitely have to do something there.
08:29 - Anyone have any opinions about WordOfBlog.net – they have contacted us about putting a graphic in there and I’m still not sure what all it is.
09:18 - IPCommunications.com(TMC.Net): Verizon Blocks Threats Linked to IP-Based Phone Systems (see also news release: Verizon launches ‘VoIP Security Assessment Service’
10:53 - VOIPSA Blog: A Tour Through Zfone by Eric Chen of NTT
12:01 - Computer Weekly: Skype to tighten up VoIP security - also CNet: Skype to address user identification concerns and VOIPSA blog
13:42 - VOIPSA Blog: Skype security pointing to RECON presentations part one and part two
14:51 - eWeek: Unpatched iTunes, Skype, Firefox Inviting Malware Targets
15:42 - VOIPSA blog: Black Hats and Evil Twins by Martyn Davies on WiFi
16:23 - ITBusiness.ca: VoIP systems bring in new vulnerabilities
16:40 - Dave Endler and Mark Collier launch a website and a weblog about their upcoming book “Hacking VoIP Exposed”. They will also be out at Black Hat in August.
18:09 - CNet: FCC approves new Internet phone taxes
20:02 - Mitel: Two out of three UK business unprepared for disasters
21:33 - XConnect Announces Availability of Local Directory Server™; Telio and VozTelecom First Alliance Members to Deploy
22:00 - Feature discussion/tutorial about ENUM:
- Wikipedia entry on ENUM
- IETF ENUM WG charter
- RFC 3761: The E.164 to Uniform Resource Identifiers (URI) Dynamic Delegation Discovery System (DDDS) Application
- IETF ENUM Working Group Internet drafts
- ITU page on ENUM
- Richard Stastny’s VoIP and ENUM blog
- Voiponder: ENUM: Mapping the E.164 Number Space into the DNS
- Eurescom mess@ge: ENUM – The bridge between telephony and the Internet
- Internet Telephony: ENUM—It’s All In The Numbers
- Powerpoint presentations: Overview of ENUM and Richard Stastny’s overview of current status
- ENUM Forum
- Voice Peering Forum
- CC1 ENUM LLC
- Austrian ENUM Trial Site (all in German)
- e164.org
- e164.info (private peering network)
- Expired Internet draft on Privacy and Security Considerations in ENUM
- ENUM / E.164 Validation Architecture
- Electronic Privacy Information Center (EPIC) page on ENUM
- Roger Clarke: ENUM – A Case Study in Social Irresponsibility
- 2nd Annual ENUM Sumit 2006 on April 19-20, 2006, in Boston
- ENUM and VoIP Peering Forum on June 19-20 in London
- CircleID website
- Nominum: Paul Mockapetris on Harmonizing the World of IP Communications with ENUM Technologies (co-inventor of DNS)
36:00 - Upcoming Shows:
- July 9-14, Montreal, Canada, IETF 66th Meeting
- July 19-21, Tokyo, Japan, VON Japan
- August 2-3, Las Vegas, Black Hat 2006
- August 8-10, Santa Clara, CA, 3rd Annual VoIP Developer Conference
- Sept 11-14, Boston, MA, Fall VON 2006
- Oct 10-13, San Diego, CA, Internet Telephony Conference and Expo – West
37:09 - Email comment from Simon Wood
39:18 - Audio and email comment from Miguel Castillo Holgado
42:27 - Email comment from Reid Palmeira
43:18 - Audio comment from Andy Zmolek and mention of audio comment from Perry Engle
44:11 - Email comment from Miguel Castillo Holgado asking about Juniper’s white papers
46:15 - Review of the last week's traffic on the VOIPSEC public mailing list, mostly focused on softphone vulnerabilities and a continued heavy discussion of Skype security
47:22 - Wrap-up of the show
- Mention of our Frappr map
48:45 - End of show