VoIP Security body issues "Threat Taxonomy"

The Voice over IP Security Alliance (VOIPSA) has released what it is terming the first comprehensive description of security and threats in the field of Voice over IP (VoIP).  The VoIP security education group, has titled the description the VoIP Security Threat Taxonomy.

The Voice over IP Security Alliance (VOIPSA) has released what it is terming the first comprehensive description of security and threats in the field of Voice over IP (VoIP).  The VoIP security education group, has titled the description the VoIP Security Threat Taxonomy.

It is intended to provide the industry with a clear view of VoIP threats, the vulnerabilities and a context for balancing trade-offs.

Key elements of this Taxonomy, according to VOIPSA, include:

  • Core definitions that give specific meaning to privacy and security;
  • A framework that effectively connects public policy and technology issues;
  • Recognition of the human element in threats as distinct from their technical means;
  • Specific sets of issues for consideration by legislative bodies and by law enforcement;, and
  • A detailed structure for technical vulnerabilities across the value chain.

This Taxonomy sounds like a precursor to a list of VoIP security requirements the group says it will issue by the end of this year.