Click to zoom

Achieving VoIP Security for PCI DSS Compliance

The  Payment Card Industry Security Standards Council (PCISSC) has released guidance on payment card security in telephone transactions, including recommendations and guidance related to credit card transactions that utilize Voice-over-IP applications.

Sipera Systems is the worldwide market leader in the safe and secure deployment and control of VoIP and IP-based video conferencing, collaboration and instant messaging tools.

If your business handles credit card information and transactions and PCI DSS compliance is important to you, then Sipera’s award-winning UC-Sec security appliance can help.

• Encryption and privacy made easy:  Full TLS and SRTP encryption of signaling and media, ensuring privacy to any supporting VoIP phone or other end point.  No special VPN appliances or configurations to deploy or manage at either end.
• Forking of media and signaling into monitoring, archiving and recording appliances or databases.  Selective forking means individual VoIP or UC applications can be pulled from the communications stream.  Call recording and monitoring can be centralized and controlled, enhancing and simplifying the security posture for your PCI DSS compliance. 
• Patent-pending authentication permits you to deploy user-based authentication such as two-factor for all phones with no special clients or configuration.  Integrate your phone user authentication with your existing data application authentication process.
• Easy NAT traversal for VoIP and UC, ideal for remote office VoIP and secure contact center communications.
• Secure communications to any supporting device over any network, including smartphones, tablets, soft clients on laptops.  Now proficiency-based call routing even for employees out of the office is simple, secure and compliant.
• Complements your existing security architecture and compliance processes, including firewalls, IDS/IPS and other functions.

The VIPER Lab:  Ready to help confirm security

• Research and track emerging security threats and configuration vulnerabilities that affect VoIP and UC deployments.
• Conduct authorized penetration testing to ensure VoIP and UC security architectures are sound and effective
• Can assist a PCI DSS Qualified Security Assessor with security issues related to VoIP and UC in an audit.
• Provide training to QSAs and other security professionals, enabling them to use the latest VoIP and UC security assessment tools for more effective and comprehensive audits and assessments.

Resellers and Q&As

Resellers of VoIP products, security solutions, and Qualified Security Assessors can earn special discounts, rebates, incentives and marketing benefits from Sipera Systems.  Click here to learn more>>

“Our clients can rest assured that their mission-critical call center communications handled by Scicom are secure. We chose to work with Sipera because its innovative VoIP and Unified Communications security solutions enable our clients to rely on us to safeguard their communications.” – Contact Center Services Provider, Sipera Customer

To learn more download our PCI Compliance Kit >>

• PCI Security Standards Council Information Supplement: Protecting Telephone-based Payment Card Data
• PCI DSS Compliance for VoIP and Unified Communications Brochure
• Privacy Compliance Brochure
• Cisco Advanced UC and Compliance CUCIMOC
• ZOOM and Sipera Flexible and Secure Call Recording Solutions – Case Study
• Unified Communications Security for Finance Brochure

Document	Date	Size
PCI Security Standards Council Information Supplement: Protecting Telephone-based Payment Card Data	22/03/11 2:16 pm	887.96 KB
Privacy Compliance Brochure	18/10/10 9:00 am	1.01 MB
Cisco Advanced UC and Compliance CUCIMOC	24/12/10 7:07 am	412.99 KB
ZOOM and Sipera Flexible and Secure Call Recording Solutions – Case Study	07/12/10 1:22 pm	1.28 MB
UC Security for Finance	15/10/10 10:43 am	1.41 MB
Payment Card Privacy	25/03/11 4:16 pm	550.89 KB