Voice Convergence Saves Money, Increases Risk
With OCS 2007 R2 Microsoft introduced a variety of new features and capabilities. One of the most anxiously anticipated features is the ability to bypass the PBX and do direct SIP-trunking into OCS. There are only a couple of VoIP providers designated by Microsoft, however Evangelyze Communications has developed SmartSIP which enables you to bridge Microsoft OCS 2007 R2 to any SIP trunk provider- representing even more significant cost savings and the ability to leverage your existing investment in desktop phone hardware.
Microsoft OCS 2007 R2 is not going to completely eliminate the PBX (…yet), but it is a significant step in that direction. With VoIP in general, and with direct SIP-trunking specifically, there are tremendous cost savings but it is a double-edged sword that comes with more exposure to risk as well. Direct SIP-trunking enables organizations to bypass the telephone provider and eliminate toll charges between sites. The convergence of voice and data also enables improved efficiency and unique opportunities to design voice communications to meet business needs instead of the other way around. According to this article from LightReading the savings could be as much as 40% or even 80% over traditional voice costs.
It is important for organizations to understand the risks they expose themselves to when merging voice and data communications though. The threat is not just to the voice communications. The VoIP infrastructure may also provide a hole that attackers can exploit to gain access to the data network as well.
Most organizations have a pretty firm grasp of the security pitfalls on the data side and they have the necessary security policies and controls, firewalls, antimalware, and other security technologies in place to protect their networks and their data. With the move to VoIP and unified communications though, many organizations make the mistake of assuming that voice communications are inherently more secure or that their existing data network security will provide the appropriate protection.
Organizations should perform VoIP vulnerability assessments and penetration tests and put the necessary controls in place to protect both the voice and data networks. Engaging expert assistance to ensure the security of the VoIP and unified communications networks will help to ensure the systems are secure and that the organization can enjoy those 40% to 80% savings without compromising their data in exchange.
July 18th, 2009 at 9:44 am
[...] Essential Computer Security » Voice Convergence Saves Money … [...]
July 19th, 2009 at 12:56 am
[...] Essential Computer Security » Voice Convergence Saves Money …It is important for organizations to understand the risks they expose themselves to when merging voice and data communications though. The threat is not just to the voice communications. The VoIP infrastructure may also provide a hole … [...]