Security

Protection against Cyber attacks can be accomplished by better authenticating users, isolating traffic and deploying stronger / safer network elements.

Broadvox uses authentication as the first level of defense. Authentication ensures customer calls are verified when delivered to and from Broadvox. For a dynamic trunk, Broadvox provides a username and password to authenticate customers. At Broadvox, the password is never passed in clear text. Instead, Digest access authentication is used, which includes a challenge-handshake based on several MD5 hashes.

The Broadvox security architecture covers these three areas:

Network
Network segmentation isolates critical elements using mechanisms such as packet filters, firewalls, routing restrictions and traffic segregation.

Traffic
Traffic security and peer-entity authentication sustains the integrity of the network using measures such as encryption and secure protocols on management, call control signaling and media planes.

Element
Key telephony servers are protected through platform hardening; separation of management functions from service-critical functions; and tight access control and user authentication, authorization and accounting.