All telephony, management, data, services and interfaces offered by the IP Office solution have security features to help prevent security threats such as:
Unauthorized access or modification of data
Theft of data
Denial of Service (DoS) attacks
Viruses and Worms
Web-based attacks such as Cross-Site Scripting and Cross-Site Forgery
Detection of attempted attacks
The following table lists methods and techniques used to help counter security threats:
Mechanism |
Usage |
IP Office Examples |
Identification and Authentication |
Identification is the ability to uniquely identify a user, system or application of a system or an application that is running in the system. Authentication is the ability to prove that an entity is genuinely who they claim to be. |
|
Authorization |
Authorization protects resources by limiting access only to authorized users, systems or applications. |
Telephony and Service User accounts' access controls |
Auditing |
Auditing is the process of recording and checking events to detect whether any unexpected activity or attempt has taken place. |
|
Confidentiality |
Confidentiality keeps sensitive information private, protecting from unauthorized disclosure. |
|
Data integrity |
Data integrity detects whether there has been unauthorized modification of data. |
TLS/SRTP Message authentication |
