IP telephony deployments are failing to deliver the savings and benefits expected prior to rollout, according to customers attending a VoIP panel discussion held this week in Sydney and attended by about 50 delegates.
Very few customers could raise their hand and say they expect any real cost savings from their deployments.
Sean Barkley, the regional manager for advanced voice solutions at Verizon Business said this is because staff are using IP phones just for voice, ignoring features like remote office or the Web interface which can set any line as the office phone.
Barkley said staff training is critical and was one reason why IP deployments failed to meet ROIs.
He said the other problem is a lack of network auditing.
"Extensive network audits must be conducted prior to implementing IP telephony to minimize security risks and to maintain quality of service," Barkley said.
"The audit is critical to see what your network is built on and what applications are running to factor in what may need to change; the audit for one site can go for 17 or 18 pages."
Telsyte analyst, Warren Chaisatien, said the network which hosts IP telephony must be free of resource-draining applications such as Skype which can dramatically affect the quality of service, and can open security holes.
"IT should include network policies in their audits which limit the use of Skype and IM, because users who have these applications at home tend to download them on the corporate network as well," Chaisatien said.
Removing peer-to-peer and instant messaging applications will help plug the security holes in IP telephony, according to Avaya Asia Pacific CTO Robbie Kruger, who said everything from bandwidth to corporate data can be stolen when VoIP is seen as "just a little bit more data to deal with".
"Consumer grade applications like Skype are great, but it can be a security threat to your organisation because you set up yourself as a mini hub; you will find you are compromising your business and your voice might not be there tomorrow," Kruger said.
"Other people use your bandwidth when you become a broadcast hub, and you can lose service for not just your voice, but for all your data applications which will affect the quality of voice across the WAN."
Potential IP telephony security flaws could allow hackers to access a network by locating the address of VoIP Web servers on Google or by scanning for commonalities in mail server protection lists.
Security firm Assurance.com.au director, Neil Wise, said hackers could access a network hole by locating a VoIP Web server indexed by Google, and could locate default usernames and passwords in installation documentation available on a vendor Web site.
However, he said this would require users to leave login authentication unchanged.
"Many second-tier Australian telcos ship VoIP phones preconfigured. Installation wizards are designed to have minimal user input to make the technology attractive and to reduce support costs but this makes users vulnerable to a very real attack," Wise said.
"Hackers could also use IP phones with packet-capture to record conversations, depending on the type of encryption used. For example SIP 1.0 [session initiated protocol] could be easily decoded, while SIP 2.0 is much harder."
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Borderless corporate networks to shift focus to secure content management in Australia in 2009 2008-12-04 16:06:00+11
IDC Says Asia/Pacific Excluding Japan IT Market Will Remain The Bright Spot... 2008-12-04 15:04:00+11
MySpot SOS "Panic Button" Smartphone Application could save lone worker lives 2008-12-04 13:34:00+11
Charles Sturt University Commences Unified Communications Deployment With Interactive Intelligence 2008-12-04 08:30:00+11
AOC Launches 18.5” Widescreen Green 16:9 LCD Monitor in Australia and New Zealand 2008-12-03 15:30:00+11
How to improve employee productivity in small and medium businesses
U.S. businesses lose 5.4 billion productive hours through employees searching for information annually. Avoid the same inefficiencies occurring in your business. Read on to discover the productivity issues facing SMBs and how the Oracle Application Express (APEX) can improve employee productivity and enhance development efficiencies.
Buying Guides
Latest Products
