As more general purpose computers become communication endpoints the risk factors change for service providers. WebRTC, Skype and Lync create a new environment for hackers to utilize for a variety of purposes. In addition to protecting their own network functionality service providers are faced with securing IPBXs and endpoints that are not on their own premises and not under their control. The increased number of attack surfaces means that service providers have to adapt their security strategies to maintain network uptime and to protect users from theft of information or services. Simply defending against DDOS attacks is not enough in today's distributed and feature rich communication environment.
This paper analyzes all the attack surfaces along the modern communication path and provides a view of how best to protect the service and devices from attackers. Each layer of the communication path is analyzed from the user and the carrier's perspective for a risk assessment and effective countermeasures.