Securing the Connection Between Cisco Unity Connection, Video Server, and IP Phones

Table Of Contents

Securing the Connection Between Cisco Unity Connection, Video Server, and IP Phones

Security Issues for Connections Between Cisco Unity Connection, Video Server, and IP Phones

Securing the Connection Between Cisco Unity Connection, Video Server, and IP Phones

---

In this chapter, you will find descriptions of potential security issues related to connections between Cisco Unity Connection, video server, and IP phones; information on any actions you need to take; recommendations that will help you make decisions; discussion of the ramifications of the decisions you make; and best practices.

---

Note For Video Servers, Unity Connection 10.0(1) only integrates with Cisco MediaSense video server.

---

See the following sections:

•Security Issues for Connections Between Cisco Unity Connection, Video Server, and IP Phones

Security Issues for Connections Between Cisco Unity Connection, Video Server, and IP Phones

A potential point of vulnerability for a Cisco Unity Connection system is the integration between Unity Connection, video server, and the IP phones.

Possible threats include:

•Man-in-the-middle attacks for the RTP streams towards video server.

•Man-in-the-middle attacks for the HTTP notifications that are received from video server.

•Modification of the media stream between Unity Connection and the endpoint (for example, an IP phone)