Detect security breaches in telephony infrastructures

Telephony security focuses on TCP/IP architectures, applications risks and “traditional” telephony risks.

With PBX Check-up, AXIANS provides an overview of the existing systems, the telephony architecture and the associated risks. You will be able to identify and avoid the following potential damages and vulnerabilities:

• Hijacking of services: telephone fraud.

• Breach of privacy: disclosure of conversations, system configuration data, voice messages.

• Attack on integrity: rogue configuration updates, offensive and unwanted messages in mailboxes, voice message removal or forwarding.

• Prohibited access: control system with authorized profiles, physical access to data centers and telecommunication closets, indirect access from unprotected equipment (using voice responders for reaching the PABX for example)

• Denial of service (DoS): damages to the service or downtime.

PBX Check-up in action

PBX Check-up is carried out as follows:

• Audit scope definition: duration, period, sites, interview of users.

• Data Collection: analyze configurations to investigate vulnerabilities or mischievous configuration.

• Report: analysis and report drafting.

• Recommendations: presentation of report and of recommendations.

Benefits of PBX Check-up Process

In addition to this audit, AXIANS brings its expertise on the following matters:

• Assistance for changing and updating security setups for applications.

• Devices and equipment to make telephony architecture more secure (AXIANS Secure PBX).

• Support services during implementation and for raising user awareness/training on this issue i.e. best practices for using IT and telephony equipment.