Lotus Sametime Unified Telephony uses a FTP interface to the billing system.
Lotus Sametime Unified Telephony supports the following modes on the FTP interface to the billing system:
Pull mode: CDRs (Call Detail Records) are retrieved from the Lotus Sametime Unified Telephony by the billing system.
Push mode: CDRs are delivered to the billing system by the Lotus Sametime Unified Telephony.
CDRs are buffered in the duplicated main memory of Lotus Sametime Unified Telephony, and their content transferred to a CDR file on the duplicated persistent storage. Therefore, the maximum amount of data that could be lost in the event of a total system outage is limited to the content of the CDR buffer of the main memory. The CDR data output to a disk file ensures that the probability of CDR data loss is minimized.
The type of file transfer protocol depends on the entity that initiates the CDR transfer:
If Lotus Sametime Unified Telephony initiates CDR transfer (also known as file transfer by push), FTP is used.
If the billing server initiates the transfer (also known as file transfer by pull), either FTP or, if the billing server supports it, SFTP (Secure FTP) can be used.
FTP connections can be protected with IPsec as long as the billing server supports it.
System Specific Information
The first layer of security for this interface is provided by the network design that separates this traffic from other traffic on the network.
The second layer of protection is provided by the Lotus Sametime Unified Telephony itself. The integrated packet filter can be provisioned to limit the IP addresses that can access the Lotus Sametime Unified Telephony billing interface.
As a third layer of defense, the Lotus Sametime Unified Telephony provides the following additional options for protection:
SFTP protection of CDR delivery to the billing server by a pull from the billing server
IPsec protection for FTP pull- or push-mode interface between the Lotus Sametime Unified Telephony and the billing server
The ability to provide integrated end-to-end protection of the billing stream via encryption depends on the capabilities of the billing system. The enterprise can also use network-based secure VPNs as an alternative, depending on the enterprise's security policy.
CDR passwords entered by the customer are stored in encrypted form. These are the passwords used for the FTP or SFTP interface to the billing system and are stored internally to the system.
The system default primary and secondary passwords for initial installations are not encrypted. The encryption takes place when the customer replaces the default passwords with customer-created passwords.
Parent topic: Call Detail Record (CDR)