cisco logo

Kev ruaj ntseg kev sib txuas ntawm Cisco Unity
Kev sib txuas, Cisco Unified Communications
Tus Thawj Tswj, thiab IP Xov Tooj

CISCO Unity Connection Unified Communications Manager

• Kev ruaj ntseg kev sib txuas ntawm Cisco Unity Connection, Cisco Unified Communications Manager, thiab IP Xov tooj, nyob rau nplooj 1
Kev ruaj ntseg kev sib txuas ntawm Cisco Unity Connection, Cisco Unified Communications Manager, thiab IP Xov tooj

Cov ntsiab lus zais
1 Taw qhia
2 Self-encrypting tsav
3 Cov ntaub ntawv / Cov ntaub ntawv
3.1 Cov ntaub ntawv

Taw qhia

Hauv tshooj no, koj yuav pom cov lus piav qhia txog cov teeb meem kev nyab xeeb uas cuam tshuam txog kev sib txuas ntawm Cisco Unity Connection, Cisco Unified Communications Manager, thiab IP xov tooj; cov ntaub ntawv hais txog txhua yam uas koj yuav tsum tau ua; cov lus pom zoo uas pab koj txiav txim siab; kev sib tham txog qhov cuam tshuam ntawm kev txiav txim siab koj ua; thiab cov kev coj ua zoo tshaj plaws.

Cov teeb meem kev nyab xeeb rau kev sib txuas ntawm Kev Sib Koom Tes Sib Koom Tes, Cisco Unified Communications Manager, thiab IP xov tooj
Lub ntsiab lus tseem ceeb ntawm qhov tsis zoo rau Cisco Unity Connection system yog kev sib txuas ntawm Unity Connection lub suab xa cov chaw nres nkoj (rau kev sib koom ua ke SCCP) lossis pab pawg chaw nres nkoj (rau SIP kev koom ua ke), Cisco Unified Communications Manager, thiab IP xov tooj.

Tej yam kev hem thawj muaj xws li:

  • Man-in-the-middle attacks (thaum cov ntaub ntawv ntws ntawm Cisco Unified CM thiab Unity Connection raug soj ntsuam thiab hloov kho)
  • Network tsheb sniffing (thaum software siv los ntes kev sib tham hauv xov tooj thiab qhia cov ntaub ntawv uas ntws ntawm Cisco Unified CM, Unity Connection, thiab IP xov tooj uas tswj hwm los ntawm Cisco Unified CM)
  • Kev hloov kho ntawm kev hu xov tooj ntawm kev sib koom ua ke thiab Cisco Unified CM
  • Kev hloov kho ntawm cov kwj tawm ntawm kev sib koom ua ke thiab qhov kawg (example, IP xov tooj lossis lub rooj vag)
  • Kev nyiag tus kheej ntawm Kev Sib Txuas Sib Txuas (thaum lub tshuab tsis sib haum xeeb sib txuas nthuav tawm nws tus kheej rau Cisco Unified CM raws li kev sib koom ua ke server)
  • Kev nyiag tus kheej ntawm Cisco Unified CM neeg rau zaub mov (thaum ib tus neeg siv tsis yog Cisco Unified CM server nthuav tawm nws tus kheej rau Kev Sib Txuas Sib Koom raws li Cisco Unified CM server)

CiscoUnifiedCommunicationsManagerSecurityFeaturesforUnity Connection Voice Messaging Ports
Cisco Unified CM tuaj yeem ruaj ntseg kev sib txuas nrog Kev Sib Txuas Sib Tham tiv thaiv cov kev hem thawj uas tau teev tseg hauv Cov Teeb Meem Kev Ruaj Ntseg rau Kev Sib Txuas ntawm Kev Sib Koom Tes, Cisco Unified Communications Manager, thiab IP Xov Tooj.
Cisco Unified CM kev ruaj ntseg nta uas Unity Connection tuaj yeem coj advantage ntawm tau piav qhia hauv Table 1: Cisco Unified CM Security Nta Siv los ntawm Cisco Unity Connection.

Table 1: Cisco Unified CM Security Nta Siv los ntawm Cisco Unity Connection

Kev Ruaj Ntseg Kev piav qhia
Signaling authentication Cov txheej txheem uas siv Transport Layer Security (TLS) raws tu qauv kom siv tau tias tsis yog tampering tau tshwm sim rau lub teeb liab pob ntawv thaum lub sij hawm kis tau tus mob.
Kev lees paub qhov tseeb yog nyob ntawm kev tsim Cisco Daim Ntawv Pov Thawj Trust List (CTL) file.
Qhov no feature tiv thaiv:
• Tus txiv neej-hauv-tus-nruab nrab tawm tsam uas hloov cov ntaub ntawv ntws ntawm Cisco Unified CM thiab Unity Connection.
• Kev hloov kho ntawm lub teeb liab hu.
• Tus kheej tub sab ntawm Unity Connection server.
• Tus kheej tub sab ntawm Cisco Unified CM server.
Device authentication Cov txheej txheem uas validates tus kheej ntawm lub cuab yeej thiab xyuas kom meej tias lub koom haum yog dab tsi nws thov. Cov txheej txheem no tshwm sim ntawm Cisco Unified CM thiab Unity Connection lub suab xa cov chaw nres nkoj (rau SCCP kev koom ua ke) lossis Unity Connection chaw nres nkoj pawg (rau SIP kev koom ua ke) thaum txhua lub cuab yeej lees txais daim ntawv pov thawj ntawm lwm lub cuab yeej. Thaum tau txais daim ntawv pov thawj, kev sib txuas ruaj ntseg ntawm cov cuab yeej raug tsim. Cov cuab yeej authentication cia siab rau kev tsim Cisco Certificate Trust List (CTL) file.
Qhov no feature tiv thaiv:
• Tus txiv neej-hauv-tus-nruab nrab tawm tsam uas hloov cov ntaub ntawv ntws ntawm Cisco Unified CM thiab Unity Connection.
• Kev hloov kho ntawm cov kwj tawm.
• Tus kheej tub sab ntawm Unity Connection server.
• Tus kheej tub sab ntawm Cisco Unified CM server.
Teeb liab encryption Cov txheej txheem uas siv cov txheej txheem cryptographic los tiv thaiv (los ntawm kev encryption) kev tsis pub lwm tus paub ntawm txhua SCCP lossis SIP cov lus ceeb toom uas tau xa los ntawm Kev Sib Txuas Sib Koom thiab Cisco Unified CM. Kev kos npe encryption xyuas kom meej tias cov ntaub ntawv hais txog cov tog neeg, DTMF cov lej uas tau nkag los ntawm ob tog, hu xov tooj, xov xwm encryption yuam sij, thiab lwm yam yog tiv thaiv kev nkag tsis tau los yog tsis tau tso cai.
Qhov no feature tiv thaiv:
• Man-in-the-middle attacks uas saib xyuas cov ntaub ntawv ntws ntawm Cisco Unified CM thiab Unity Connection.
• Network tsheb sniffing uas soj ntsuam cov teeb liab cov ntaub ntawv ntws ntawm Cisco Unified CM thiab Unity Connection.
Media encryption Cov txheej txheem uas qhov kev tsis pub lwm tus paub ntawm cov xov xwm tshwm sim los ntawm kev siv cov txheej txheem cryptographic.
Cov txheej txheem no siv Secure Real Time Protocol (SRTP) raws li tau hais tseg hauv IETF RFC 3711, thiab ua kom ntseeg tau tias tsuas yog tus neeg tau txais kev pab tuaj yeem txhais cov xov xwm tawm ntawm Kev Sib Txuas Sib Txuas thiab qhov kawg (rau example, phone or gateway). Kev txhawb nqa suav nrog cov kwj suab nkaus xwb. Media encryption suav nrog kev tsim Media Player tus khub tseem ceeb rau cov khoom siv, xa cov yuam sij rau Kev Sib Txuas Sib Txuas thiab qhov kawg, thiab ruaj ntseg xa cov yuam sij thaum cov yuam sij thauj khoom. Kev sib koom ua ke thiab qhov kawg siv cov yuam sij los encrypt thiab decrypt cov kwj tawm.
Qhov no feature tiv thaiv:
• Tus txiv neej-hauv-tus-nruab nrab tawm tsam uas mloog cov kwj tawm ntawm Cisco Unified CM thiab Unity Connection.
• Network tsheb sniffing uas eavesdrops ntawm kev sib tham hauv xov tooj uas ntws ntawm Cisco Unified CM, Unity Connection, thiab IP xov tooj uas tswj los ntawm Cisco Unified CM.

Authentication thiab signaling encryption pab raws li qhov tsawg kawg nkaus yuav tsum tau rau kev tshaj tawm encryption; uas yog, yog hais tias cov khoom siv tsis txhawb kev taw qhia encryption thiab authentication, media encryption tsis tuaj yeem tshwm sim.
Cisco Unified CM kev ruaj ntseg (authentication thiab encryption) tsuas yog tiv thaiv kev hu mus rau Unity Connection. Cov lus kaw rau ntawm lub khw muag khoom tsis muaj kev tiv thaiv los ntawm Cisco Unified CM authentication thiab encryption nta tab sis tuaj yeem tiv thaiv los ntawm Unity Connection ntiag tug kev xa xov zoo. Yog xav paub meej txog kev sib txuas lus sib txuas lus muaj kev nyab xeeb, saib Cov Lus Qhia Ua Tus Kheej thiab Ruaj Ntseg.

Self-encrypting tsav

Cisco Unity Connection tseem txhawb nqa tus kheej-encrypting drives (SED). Qhov no tseem hu ua Full Disk Encryption (FDE). FDE yog ib txoj kev cryptographic uas yog siv los encrypt tag nrho cov ntaub ntawv uas muaj nyob rau ntawm lub hard drive.
Cov ntaub ntawv suav nrog files, operating system thiab software programs. Cov cuab yeej muaj nyob rau ntawm disk encrypts tag nrho cov ntaub ntawv tuaj thiab decrypts tag nrho cov ntaub ntawv tawm. Thaum tus tsav raug kaw, tus yuam sij encryption yog tsim thiab khaws cia hauv. Tag nrho cov ntaub ntawv uas muab khaws cia rau hauv lub tsav no yog encrypted siv tus yuam sij ntawd thiab muab cia rau hauv daim ntawv encrypted. FDE suav nrog tus lej ID thiab tus yuam sij kev nyab xeeb.
Yog xav paub ntxiv, saib https://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/c/sw/gui/config/guide/2-0/b_Cisco_UCS_C-series_GUI_Configuration_Guide_201/b_Cisco_UCS_C-series_GUI_Configuration_Guide_201_chapter_010011.html#concept_E8C37FA4A71F4C8F8E1B9B94305AD844.

Kev ruaj ntseg hom chaw rau Cisco Unified Communications Manager thiab Unity Kev sib txuas
Cisco Unified Communications Manager thiab Cisco Unity Connection muaj cov kev xaiv hom kev ruaj ntseg pom nyob rau hauv Table 2: Kev Ruaj Ntseg Hom Kev Xaiv rau lub suab xa xov ports (rau SCCP kev koom ua ke) lossis pab pawg chaw nres nkoj (rau SIP kev koom ua ke).

Ceeb toom icon Ceev faj
Lub Cluster Security Hom teeb tsa rau Unity Connection lub suab xa cov chaw nres nkoj (rau SCCP kev koom ua ke) lossis pab pawg chaw nres nkoj (rau SIP kev sib koom ua ke) yuav tsum phim qhov chaw ruaj ntseg rau Cisco Unified CM ports.
Txwv tsis pub, Cisco Unified CM authentication thiab encryption ua tsis tau.

Table 2: Kev Xaiv Kev Ruaj Ntseg

Kev teeb tsa nyhuv
Tsis ruaj ntseg Kev ncaj ncees thiab kev ceev ntiag tug ntawm kev hu xov tooj tsis tau lees paub vim tias kev hu xov tooj xa xov tooj yog xa tawm kom meej (unencrypted) cov ntawv txuas nrog Cisco Unified CM los ntawm qhov chaw nres nkoj tsis muaj pov thawj es tsis yog qhov chaw nres nkoj TLS. Tsis tas li ntawd, cov kwj tawm tsis tuaj yeem raug encrypted.
Cov qhabnias Kev ncaj ncees ntawm kev hu xov tooj-xws li xov tooj tau lees paub vim tias lawv txuas nrog Cisco Unified CM los ntawm qhov chaw nres nkoj TLS uas tau lees paub. Txawm li cas los xij, lub
Kev ceev ntiag tug ntawm kev hu xov tooj tsis muaj kev ntseeg siab vim tias lawv raug xa raws li cov ntawv ntshiab (unencrypted). Tsis tas li ntawd, cov xov xwm kwj yog tsis encrypted.
Encrypted Kev ncaj ncees thiab kev ceev ntiag tug ntawm kev hu xov tooj-xws li xov tooj tau lees paub vim tias lawv txuas nrog Cisco Unified CM los ntawm qhov chaw nres nkoj TLS uas tau lees paub, thiab cov lus hu xov tooj tau muab zais. Tsis tas li ntawd, cov kwj tawm tuaj yeem raug encrypted. Ob lub ntsiab lus kawg yuav tsum tau sau npe hauv hom encrypted
rau kev tshaj tawm xov xwm yuav tsum tau encrypted. Txawm li cas los xij, thaum ib qho kawg taw tes tau teeb tsa rau hom tsis muaj kev nyab xeeb lossis kev lees paub tseeb thiab lwm qhov kawg taw tes tau teeb tsa rau hom encrypted, cov kwj tawm tsis yog encrypted. Tsis tas li ntawd, yog tias lub cuab yeej cuam tshuam (xws li lub tshuab hloov pauv lossis lub rooj vag) tsis tau qhib rau kev encryption, cov kwj tawm tsis tau encrypted.

Kev coj ua zoo tshaj plaws rau kev ruaj ntseg kev sib txuas ntawm kev sib koom ua ke, Cisco Unified Communications Manager, thiab IP xov tooj
Yog tias koj xav kom muaj kev lees paub thiab kev nkag mus rau lub suab xa xov chaw nres nkoj ntawm Cisco Unity Connection thiab Cisco Unified Communications Manager, saib Cisco Unified Communications Manager SCCP Integration Guide for Unity Connection Release 12.x, muaj nyob ntawm
https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/connection/12x/integration/guide/cucm_sccp/b_12xcucintcucmskinny.html

Kev ruaj ntseg kev sib txuas ntawm Cisco Unity Connection, Cisco Unified Communications Manager, thiab IP Xov tooj

Cov ntaub ntawv / Cov ntaub ntawv

CISCO Unity Connection Unified Communications Manager [ua pdf] Cov neeg siv phau ntawv qhia
Unity Connection Unified Communications Manager, Connection Unified Communications Manager, Unified Communications Manager, Tus Thawj Saib Xyuas Kev Sib Txuas Lus, Tus Thawj Coj

Cov ntaub ntawv

Cia ib saib

Koj email chaw nyob yuav tsis raug luam tawm. Cov teb uas yuav tsum tau muaj yog cim *