The security event logging feature permits Lotus Sametime Unified Telephony to record security administration actions and OAM&P (Operation, Administration, Maintenance and Provisioning) activity originated over CLI (Command Line Interface), SNMP (Simple Network Management Protocol), SOAP/CLI or SOAP/XML interfaces to Lotus Sametime Unified Telephony. It also records OS-level CLI activity.
Provisioning and Security Logging
The provisioning and security logging feature provides the ability to log all activities and commands in a log file to assist in detecting hacker and access violations.
SIP Privacy Mechanism
Lotus Sametime Unified Telephony provides SIP privacy capabilities according to IETF RFC 3323, A Privacy Mechanism for SIP
Defending DOS (Denial of Service) Attacks
This feature provides the capability to provide protection from SIP-based DOS (Denial of Service) attacks. This protection is in addition to the network-level protection against general DOS attacks.
Lotus Sametime Unified Telephony' software delivery process protects the integrity of software running on the Telephony Control server to defend against known viruses, worms, or trojans. This protection includes incorporation of standard security procedures to be applied during the production, delivery, and installation of Lotus Sametime Unified Telephony software.
The VLAN provisioning feature gives administrators the flexibility to provision the IP addresses and interfaces according to enterprise-specific requirements.
Data File Security
The security for data files feature protects access to data files by extensive password procedures.
File Transfer Security
The File Transfer Security feature provides security mechanisms for the transfer of CDR (Call Detail Record) files or traffic measurement data files.
For subscribers who want added network security, the Telephony Control Server provides SRTP (Secure Real-Time Transport Protocol) as a means to secure its media traffic.
IPSec (Internet Protocol Security)
IPSec (Internet Protocol Security) is a security protocol in the network layer that provides cryptographic security services that flexibly support combinations of authentication, integrity, access control, and confidentiality.
TLS (Transport Layer Security) Support
TLS is an application-independent security protocol defined by the IETF (Internet Engineering Task Force) that provides encryption and data integrity between two communicating applications. TLS (Transport Layer Security) is able to protect SIP signaling messages against loss of integrity, loss of confidentiality, and against replay. It is defined in IETF RFC 2246, The TLS Protocol, Version 1.0.
Certificate Strategy Overview
The Lotus Sametime system uses different security protocols to save the communication between different Lotus Sametime computer systems and the communication via a number of web-based interfaces.