Tm hiu dch v VoIP

I. VoIP l g?
VoIP vit tt bi Voice over Internet Protocol, hay cn c gi di cc tn khc nh: Internet telephony, IP Telephony, Broadband telephony, Broadband Phone v Voice over Broadband. VoIP l 1 cng ngh cho php truyn m thanh thi gian thc qua bng thng Internet v cc kt ni IP. Trong tn hiu m thanh (voice signal) s c chuyn i thnh cc gi tp ( data packets) thng qua mi trng mng Internet trong mi trng VoIP , sau li c chuyn thnh tn hiu m n thit b ngi nhn. VoIP s dng k thut s v yu cu kt ni bng thng tc cao nh DSL hoc cp. C rt nhiu nh cung cp khc nhau cung cp VoIP v nhiu dch v khc. ng dng chung nht ca VoIP cho s dng c nhn hoc gia nh l cc dch v in thoi da trn Internet c chuyn mch in thoi. Vi ng dng ny, bn vn cn c mt s in thoi, vn phi quay s thc hin cuc gi nh s dng thng thng

Hnh 1.1: Dch v Voip

Hnh 1.2: Cc loi dch v ca VoIP

II. Cc kiu kt ni s dng VoIP

Computer to Computer: Vi 1 knh truyn Internet c sn, L 1 dch v min ph c s dng rng ri khp ni trn th gii. Ch cn ngi gi (caller) v ngi nhn ( receiver) s dng chung 1 VoIP service (Skype,MSN,Yahoo Messenger,), 2 headphone + microphone, sound card . Cuc hi thoi l khng gii hn. Computer to phone:

L 1 dch v c ph. Bn phi tr tin c 1 account + software (VDC,Evoiz,Netnam,). Vi dch v ny 1 my PC c kt ni ti 1 my in thoi thng thng bt c u ( tu thuc phm vi cho php trong danh sch cc quc gia m nh cung cp cho php). Ngi gi s b tnh ph trn lu lng cuc gi v khu tr vo ti khon hin c. u im : i vi cc cuc hi thoi quc t, ngi s dng s tn t ph hn 1 cuc hi thoi thng qua 2 my in thoi thng thng. Chi ph r, d lp t Nhc im: cht lng cuc gi ph thuc vo kt ni internet + service nh cung cp Phone to Phone: L 1 dch v c ph. Bn khng cn 1 kt ni Internet m ch cn 1 VoIP adapter kt ni vi my in thoi. Lc ny my in thoi tr thnh 1 IP phone.

Hnh 2.1: M hnh kt ni ca VoIP

III. Cc thnh phn trong mng VoIP:

Cc thnh phn ct li ca 1 mng VoIP bao gm: Gateway, VoIP Server, IP network, End User Equipments Gateway: l thnh phn gip chuyn i tn hiu analog sang tn hiu s (v ngc li) - VoIP gateway : l cc gateway c chc nng lm cu ni gia mng in thoi thng ( PSTN ) v mng VoIP. - VoIP GSM Gateway: l cc gateway c chc nng lm cu ni cho cc mng IP, GSM v c mng analog. VoIP server: l cc my ch trung tm c chc nng nh tuyn v bo mt cho cc cuc gi VoIP . Trong mng H.323 chng c gi l gatekeeper. Trong mng SIP cc server c gi l SIP server. Thit b u cui (End user equipments ) : Softphone v my tnh c nhn (PC) : bao gm 1 headphone, 1 phn mm v 1 kt ni Internet. Cc phn mm min ph ph bin nh Skype, Ekiga, GnomeMeeting, Microsoft Netmeeting, SIPSet, ..

in thoi truyn thng vi IP adapter: s dng dch v VoIP th my in thoi thng dng phi gn vi 1 IP adapter c th kt ni vi VoIP server. Adapter l 1 thit b c t nht 1 cng RJ11 ( gn vi in thoi) , RJ45 ( gn vi ng truyn Internet hay PSTN) v 1 cng cm ngun. IP phone : l cc in thoi dng ring cho mng VoIP. Cc IP phone khng cn VoIP Adapter bi chng c tch hp sn bn trong c th kt ni trc tipvi cc VoIP server

Hnh 3.1: Cc thnh phn ca mng VoIP

IV. Phng thc hot ng:

VoIP chuyn i tn hiu ging ni thng qua mi trng mng (IP based network). Do vy, trc ht ging ni (voice) s phi c chuyn i thnh cc dy bit k thut s ( digital bits) v c ng gi thnh cc packet sau c truyn ti qua mng IP network v cui cng s c chuyn li thnh tn hiu m thanh n ngi nghe. Tin trnh hot ng ca VoIP thng qua 2 bc: Call Setup: trong qu trnh ny , ngi gi s phi xc nh v tr ( thng qua a ch ca ngi nhn) v yu cu 1 kt ni lin lc vi ngi nhn.Khi a ch ngi nhn c xc nh l tn ti trn cc proxy server th cc proxy server gia 2 ngi s thit lp 1 cuc kt ni cho qu trnh trao i d liu voice Voice data processing: Tn hiu ging ni (analog) s c chuyn i sang tn hiu s ( digital) ri c nn li nhm tit kim ng truyn (bandwidth) sau s c m ha (tnh nng b sung nhm trnh cc b phn tch mng _sniffer ). Cc voice samples sau s c chn vo cc gi d liu c vn chuyn trn mng. Giao thc dng cho cc gi voice ny l RTP (Real-Time Transport Protocol).1 gi tin RTP c cc field u cha d liu cn thit cho vic bin dch li cc gi tin sang tn hiu voice thit b ngi nghe. Cc gi tin voice c truyn i bi giao thc UDP. thit b cui, tin trnh c thc hin ngc li

V. Cc giao thc ca VoIP (VoIP protocols) :

VoIP cn 2 loi giao thc : Signaling protocol v Media Protocol. Signaling Protocol iu khin vic ci t cuc gi. Cc loi signaling protocols bao gm: H.323, SIP, MGCP, Megaco/H.248 v cc loi giao thc dng ring nh UNISTIM, SCCP, Skype, CorNet-IP, Media Protocols: iu khin vic truyn ti voice data qua mi trng mng IP. Cc loi Media Protocols nh: RTP ( Real-Time Protocol) ,RTCP (RTP control Protocol) , SRTP (Secure Real-Time Transport Protocol), v SRTCP (Secure RTCP) Signaling Protocol nm tng TCP v cn tin cy cao, trong khi Media Protocol nm trong tng UDP. Cc nh cung cp c th s dng cc giao thc ring hay cc giao thc m rng da trn nn ca 1 trong 2 giao thc tiu chun quc t l H.323 v SIP. V d Nortel s dng giao thc UNISTIM (Unified

Network Stimulus) Cisco s dng giao thc SCCP (Signaling Connection Control Part) Nhng giao thc ring ny gy kh khn trong vic kt ni gia cc sn phm ca cc hng khc nhau.

VI. B giao thc H.323 :

H.323: l giao thc c pht trin bi ITU-T (International Telecommunication Union Telecommunication Standardization Sector). H.323 phin bn 1 ra i vo khong nm 1996 v 1998 phin bn th h 2 ra i. H.323 ban u c s dng cho mc ch truyn cc cuc hi thoi a phng tin trn cc mng LAN, nhng sau H.323 tin ti tr thnh 1 giao thc truyn ti VoIP trn th gii. Giao thc ny chuyn i cc cuc hi thoi voice, video, hay cc tp tin v cc ng dng a phng tin cn tng tc vi PSTN. L giao thc chun, bao trm cc giao thc trc nh H.225,H.245, H.235, Cc thnh phn hot ng trong giao thc H.323: c 4 thnh phn : Terminal: l 1 PC hay 1 IP phone ang s dng giao thc H.323 Gateway: L cu ni gia mng H.323 vi cc mng khc nh SIP, PSTN,Gateway ng vai tr chuyn i cc giao thc trong vic thit lp v chm dt cc cuc gi, chuyn i cc media format gia cc mng khc nhau. GateKeeper: ng vai tr l nhng im trung tm ( focal points) trong m hnh mng H.323. Cc dch v nn s quyt nh vic cung cp a ch (addressing), phn pht bng thng (bandwidth),cung cp ti khon, thm nh quyn ( authentication) cho cc terminal v gateway Mutipoint control unit (MCU): h tr vic hi thoi a im (conference)cho cc my terminal ( 3 my tr ln )trong mng H.323 Phng thc hot ng ca H.323 network: Khi 1 phin kt ni c thc hin, vic dch a ch (address translation) s c 1 gateway m nhn. Khi a ch IP ca my ch c xc nhn, 1 kt ni TCP s c thit lp t a ch ngun ti ngi nhn thng qua giao thc Q.931 ( l 1 phn ca b giao thc H.323). bc ny, c 2 ni u tin hnh vic trau i cc tham s bao gm cc tham s m ho ( encoding parameters) v cc thnh phn tham s lin quan khc. Cc cng kt ni v phn pht a ch cng c cu hnh. 4 knh RTCP v RTP c kt ni, mi knh c 1 hng duy nht. RTP l knh truyn d liu m thanh (voice data) t 1 thc th sang 1 thc th khc. Khi cc knh c kt ni th d liu m thanh s c pht thng qua cc knh truyn ny thng qua cc RTCP instructions.

VII. B giao thc SIP :

SIP: (Session Initiation Protocol) c pht trin bi IETF ( Internet Engineering Task Force) MMUSIC ( Multiparty Multimedia Session Control) Working Group (theo RFC 3261). y l 1 giao thc kiu din k t ( text-based protocol_ khi client gi yu cu n Server th Server s gi thng tin ngc v cho Client), n gin hn giao thc H.323. N ging vi HTTP, hay SMTP. Gi tin (messages) bao gm cc header v phn thn ( message body). SIP l 1 giao thc ng dng ( application protocol) v chy trn cc giao thc UDP, TCP v STCP. Cc thnh phn trong SIP network : Cu trc mng ca SIP cng khc so vi giao thc H.232. 1 mng SIP bao gm cc End Points, Proxy, Redirect Server, Location Server v Registrar. Ngi s dng phi ng k vi Registrar v a ch ca h. Nhng thng tin ny s c lu tr vo 1 External Location Server. Cc gi tin SIP s c gi thng qua cc Proxy Server hay cc Redirect Server. Proxy Server da vo tiu to trn gi tin lin lc vi server cn lin lc ri gi cc pacckets cho my ngi nhn. Cc redirect server ng thi gi thng tin li cho ngi gi ban u. Phng thc hot ng ca SIP network : SIP l m hnh mng s dng kiu kt ni 3 hng ( 3 way handshake method) trn nn TCP. V d trn, ta thy 1 m hnh SIP gm 1 Proxy v 2 end points. SDP ( Session Description Protocol) c s dng mang gi tin v thng tin c nhn ( v d nh tn ngi gi) . Khi Bob gi 1 INVITE cho proxy server vi 1 thng tin SDP. Proxy Server s a yu cu ny n my ca Alice. Nu Alice ng , tn hiu OK s c gi thng qua nh dng SDP n Bob. Bob phn ng li bng 1 ACK _ tin bo

nhn. Sau khi ACK c nhn, cuc gi s bt u vi giao thc RTP/RTCP. Khi cuc in m kt thc, Bob s gi tn hiu Bye v Alice s phn hi bng tn hiu OK. Khc vi H.232, SIP khng c c ch bo mt ring. SIP s dng c ch thm nh quyn ca HTTP ( HTTP digest authentication), TLS, IPSec v S/MIME ( Secure/Multipurpose Internet Mail Extension) cho vic bo mt d liu. MGCP v Megaco/H.248 MGCP ( Media Gateway Control Protocol) c s dng lin lc gia cc thnh phn ring l ca 1 VoIP gateway tch ri. y l 1 protocol c b sung cho 2 giao thc SIP v H.323. Vi MGCP, MGC server c kh nng qun l cc cuc gi v cc cuc m thoi di s h tr ca cc dch v ( services). MGCP l 1 giao thc master/slave vic cc rng buc cht ch gia MG ( end point) v MGC ( server ). MEGACO/H.248 : (cn c gi l Gate way Control Protocol) C ngun gc t MGCP v c s dng rng ri trong ngnh cng nghip. S pht trin MEGACO/H.248 bao gm vic h tr a phng tin v cc dch v hi thoi nng cao a im ( multipoint conferencing enhanced services ) , cc c phplp trnh c nng cao nhm tng hiu qu cho cc tin trnh m thoi, h tr c vic m ho text v binary v thm vo vic m rng cc nh ngha cho cc packets. Megaco a ra nhng c cu bo mt ( security mechanisms) trong cc c cu truyn ti c bn nh IPSec. H.248 i hi s thc thi y ca giao thc H.248 kt hp s b sung ca IPSec khi h iu hnh (OS) v mng truyn vn ( transport network) c h tr IPSec.

VIII. Tnh bo mt ca VoIP:

VoIP c a vo s dng rng ri khi cng ngh tch hp ging ni v d liu pht trin. Do s dng chung cc thnh phn thit b chung vi mi trng truyn d liu mng ( data network), VoIP cng chu chung vi cc vn v bo mt vn c ca mng data. Nhng b giao thc mi dnh ring ca VoIP ra i cng mang theo nhiu vn khc v tnh bo mt Nghe ln cuc gi ( EavesDropping of phone conversation): Nghe ln qua cng ngh VoIP cng c nguy c cao do c nhiu node trung gian trn ng truyn gia 2 ngi nghe v ngi nhn. K tn cng c th nghe ln c cuc gi bng cch tm ly cc gi tin IP ang lu thng qua cc node trung gian. C kh nhiu cng c min ph v c ph kt hp vi cc card mng h tr ch pha tp ( promiscuous mode) gip thc hin c iu ny nh Cain&Abel, Ethreal, VoMIT Truy cp tri php ( Unauthorized access attack) : K tn cng c th xm phm cc ti nguyn trn mng do nguyn nhn ch quan ca cc admin. Nu cc mt khu mc nh ca cc gateway v switch khng c i th k tn cng c th li dng xm nhp. Cc switch c vn cn dng Telnet truy cp t xa, v clear-text protocol c th b khai thc 1 khi k tn cng c th sniff c cc gi tin. Vi cc Gateway hay switch s dng giao din web server (web server interface) cho vic iu khin t xa ( remote control) th k tn cng c th tm cc gi tin HTTP trong mng ni b ly cc thng tin nhy cm ny th k tn cng cn c th s dng k thut ARP cache poisoning tm ly cc gi tin ang lu chuyn trong 1 mng ni b Caller ID spoofing :Caller ID l 1 dch v cho php user c th bit c s ca ngi gi n. Caller ID spoofing l k thut mo danh cho php thay i s ID ca ngi gi bng nhng con s do user t ra. So vi mng in thoi truyn thng, th vic gi mo s n thoi VoIP d hn nhiu, bi c kh nhiu cng c v website cho php thc hin iu ny, v d nh www.spooftel.com,www.telespoof.com, www.callnotes.net,www.spoofcard.com.

IX. Hng khc phc v bin php gii quyt :

Vic m ho cc gi tin theo cng ngh IPSec s gip trnh c cc cuc nghe ln. Cng ngh SRTP ang dn thay th cho RTP bo v cc tn hiu m thanh v hnh nh lu thng trn mng i vi Gateway v switch, cng ngh SSH nn c thay th cho clear-text protocol, v HTTPs nn c dng thay cho HTTP, v tt nht l cc mt khu mc nh nn c thay i mt khi h thng c trin khai. Vic nng cp h thng nh k cng nn c xem xt mt cch chnh ng. M hnh mng trong cng ty c s dng VoIP cn phi c xem xt. Vn tt nht c th lm l phn chia cc my s dng VoIP v data ra lm 2 mng khc nhau. i vi cc voice gateway ( ni c s ni ghp gia PSTN v IP ) cn phi chn cc gi SIP, H.323 hoc bt c gi d liu no c gi

n t mng data. Vic m ho cc gi tin ti Router v Gateway s dng IPSec l 1 la chn tt cho vic bo mt. Khng nn s dng Softphone khi m vn v virus v worm ang mt ngy mt ng quan tm. Lin tc nng cp phn mm Nu hng phn mm cung cp cc bn v cho h iu hnh th bn nn ci t chng ngay lp tc. Vic s ngn chn c cc tn cng ang li dng yu im trong l hng phn mm . S dng v cp nht phn mm chng virus Phn mm chng virus c th nhn ra v bo v my tnh chng li cc virus c nh ngha. Mc d vy k tn cng lun tm mi cch vit ra cc virus mi, chnh v vy bn phi thng xuyn cp nht phn mm virus . Tn dng trit cc ty chn bo mt Nhiu nh cung cp c th cung cp dch v cho php m ha. Nu cng vic ca bn lin quan n nhiu vn ring t v bo mt th cng nn cn nhc n cc ty chn c sn ny. Ci t v kch hot tng la Tng la c th ngn chn nhiu kiu xm nhp bng vic kha lu lng nguy him trc khi chng xm nhp vo my tnh ca bn. nh gi cc thit lp bo mt C my tnh ca bn v cc thit b/phn mm VoIP cung cp nhiu tnh nng khc nhau c th trang b cho yu cu ca bn. Mc d vy, vic cho php cc tnh nng c th c th li cho bn nhiu l hng d b tn cng. V vy v hiu ha mt s tnh nng nu bn cm thy khng cn thit. Kim tra cc thit lp ca bn, thit lp bo mt ring v chn cc ty chn m bn cn trnh mang li nhng ri ro khng ng c.

X. Tng kt :
- VoIP vit tt bi Voice over Internet Protocol - VoIP l 1 cng ngh cho php truyn m thanh thi gian thc qua bng thng Internet v cc kt ni IP VoIP c 3 dng s dng : Computer to computer, computer to phone v phone to phone. - Cc thnh phn ct li ca 1 mng VoIP bao gm: + Gateway: l thnh phn gip chuyn i tn hiu analog sang tn hiu s + Voice Server : l cc my ch trung tm c chc nng nh tuyn v bo mt cho cc cuc gi VoIP + End User Equipments: bao gm PC, in thoi bn c IP adapter, IP phone,.. - Phng thc hot ng ca VoIP : tn hiu voice s c chuyn thnh tn hiu s, c nn li, ri m ho. Sau cc gi data ny n ngi nhn qua mi trng IP, c gii nn, ri chuyn thnh tn hiu m thanh n tai ngi nghe. - VoIP cn 2 loi giao thc : + Signaling Protocol iu khin vic ci t cuc gi. Cc loi signaling protocols bao gm: H.323, SIP, MGCP, Megaco/H.248 v cc loi giao thc dng ring nh UNISTIM, SCCP, Skype, CorNet-IP, + Media Protocols: iu khin vic truyn ti voice data qua mi trng mng IP. RTP ,RTCP , SRTP v SRTCP Signaling Protocol nm tng TCP v cn tin cy cao, trong khi Media Protocols nm trong tng UDP. - C 2 b giao thc VoIP c dng rng ri trn th gii l : H.323 v SIP - Vn bo mt ca VoIP gn lin vi vn bo mt mng Internet thng thng kt hp vi cc nguyn tc cn trng ca ngi s dng. Cc nh cung cp ngy cng ra sc xy dng cc mng VoIP an ton v cht lng cao hn.