I just flipped through the very well presented State of Security Report on the subject of Voice and Unified Communications that SecureLogix has released You can sign up to download the report here.
Overall I like what I read but I did wonder why only ONE reference to WebRTC included? And, what was there was nothing more than a mention in a passage that read more like they simply put it in. It seemed to be stating the obvious.
The continued move to UC and collaboration will increase the threat of voice security breaches. Integration of video, instant messaging, social networking/media, BYOD, Internet UC, and WebRTC will introduce new vulnerabilities
Given the news level and what we heard coming out of Enterprise Connect this past week, WebRTC is being adopted by call centers, contact centers and deployed by conferencing services regularly. But the subject seemed to be almost totally ignored in the SecureLogix recap. That transgression though doesn’t take away from the quality of the report, nor should it be taken to be the need for anyone to discount the value the report brings to those in the inside the business of voice or to those who don’t live in the voice or UC security world everyday.
On the contrary. The lightness of attention to WebRTC tells me that the technology was still in its infancy in 2013 and likely will need far more usage to become something that matters to the security world simply because there’s either not enough to track or what’s already in place can work. Rest assured, the day will come, when it matters, and when it does someone will include the threat cases for it too.