Why Is SIP Security Important? Cataleya Demystifies Its Velona Certification

Why is SIP security important, and what is the meaning of the new Velona certification for Cataleya?

Cataleya’s Orchid Link SBC recently underwent thorough SIP security testing and was granted a SIP Security Certification by Velona Systems Limited. 

I chatted with Cataleya CEO, Andreas Hipp, to understand the meaning of the new certification and discuss the importance of SIP security for SBCs. 

Why is SIP Security Important for SBCs?

SIP, standing for Session Initiation Protocol, is a signaling protocol used to initiate, maintain, and terminate real-time communication sessions like VoIP (Voice over IP) calls. 

In the early days of VoIP networks, when network elements and endpoints (i.e., phones) suddenly became accessible via the public internet, the initial task of an SBC was to protect IP communications sessions, acting as an intermediary between the internal network and external networks and fending off attacks and access from illegitimate sources. 

As fraudsters and hackers are getting more sophisticated, using the SIP protocol to harm business networks – by inserting malformed packets, for example, which can lead to security breaches, unauthorized access, or service disruptions – the SIP-related defense capabilities of SBCs need to be extremely sturdy. 

“Very often, if attackers hide the malformed packets and the fraud attacks in the SIP signaling – firewalls will not pick it up,” Hipp notes. 

“This means fraudulent traffic will transit through the company’s firewall and go through the SBC, finally ending up at the endpoints. That’s where enterprise customers’ PBXs are often hacked, and they then have to pay the telco bill for that fraudulent traffic.” 

What Does a SIP Security Certification Check?

Simply put, achieving a SIP Security Certification for an SBC involves assessing the level of security and protection it provides within a VoIP network. 

“The primary function of a core network SBC is to protect the core network servers from deliberate or accidental attacks that could lead to Denial of Service (DoS), fraud, or damage to the business’s privacy,” Hipp explains. 

“Specifically, when assessing our Orchid Link SBC to be able to grant it the certification, Velona tested its ability to provide the network and endpoints with comprehensive protection against malformed SIP messages,” he shares. 

The Orchid Link SBC: Certifiably Secure

So, what is the meaning of the new certification for Cataleya

“As opposed to a previous certification we received, this one is purely focused on SIP security on the signaling level, rather than on normal DDOS attacks on the network cards,” Hipp shares. 

“To us, being accredited by Velona Systems for the resiliency of our Orchid Link SBC is a warranty for our customers, bolstering our product’s credibility and ensuring them utmost protection when using it.” 

Ultimately, all service providers are subject to increasing strictness from governments when it comes to cyber security, safety, and data protection, and certifying SBCs is a means to keep up with these changes. 

“In light of multiplying fraud attempts and changing regulations – Germany just launched a new telecommunications law, for example – service providers need to ‘buy themselves an insurance,’ if you like, in the form of certifying their products,” Hipp concludes. 

“Nothing is 100% fail-proof, but we made sure to select a reliable company like Velona to certify Orchid Link so our customers can rest assured we deliver them with the highest security standards possible.”