Juniper Buttons Down VoIP Security

by Michael Hall

Juniper's Dynamic Threat Mitigation addresses potential vulnerabilities in SIP.

Juniper Networks has announced a solution aimed at giving service providers enhanced security and assurance of network services for their clients, especially with voice communications.

The company's Dynamic Threat Mitigation solution encompasses its routers and intrusion detection and prevention (IDP) systems with service deployment system (SDX) software to prevent session initiated protocol (SIP) attacks, worms and denial-of-service attacks from affecting SIP-based voice communications and network services.

Specifically, DTM addresses potential denial of service attacks made possible through the SIP protocol, in which a flood of INVITEs to a SIP server overwhelm it, sometimes threatening the entire VoIP network. The attacks can take the form of a worm-infected client system, or a simple DoS attack on a SIP server.

DTM allows service providers to single out attacks on a per-user or per-application basis, then shut the attack down using policy enforcement, dynamic policy control and other techniques. The SDX policy server can signal Juniper's routing platform to rate limit or filter the client's traffic to preserve services for others or prevent additional infections. If the IDP identifies a worm infection, it can signal the policy server to quarantine and isolate the infected client, and redirect the user to a captive Web page with instructions on how to clear the computer for further use.

This article was originally published on Thursday Oct 27th 2005