Topic 'Security; Would you give out your SSN when using VOIP?' in forum 'VOIP Tech Chat'

Topic 'Security; Would you give out your SSN when using VOIP?' in forum 'VOIP Tech Chat' - dslreports.com http://www.dslreports.com/forum/Security-Would-you-give-out-your-SSN-when-using-VOIP-22113552 en Thu, 09 Feb 2012 12:07:08 EDT Thu, 09 Feb 2012 12:07:08 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132463 said by voipdabbler:

I don't say this often, but on this issue we need to look to the EU. They believe consumer information should not be monetized; that personal information must be protected by companies handling it.
I completely agree. They have it right, personal info. is not treated as a commercial commodity, nor should it be. That's a bigger issue than phone system security.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132463 Thu, 26 Mar 2009 12:54:35 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132451
I've been a victim of ID theft and can tell you, it's a nightmare to deal with. I've always been cautious about personal information (comes from receiving threats while working as a prosecutor in my early career) but, like everyone, I can't control what commercial databases do with credit information they can easily buy in this country. It's about time for Americans to seriously protest about the monetization (and exploitation) of our personal information. I don't say this often, but on this issue we need to look to the EU. They believe consumer information should not be monetized; that personal information must be protected by companies handling it.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132451 Thu, 26 Mar 2009 12:52:14 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132387 said by fifty nine:

said by trekologer:

You do realize that for POTS, all that someone would need to listen into your calls is physical access to the telephone line and, for around 90% of homes that's right on the outside of your house?

If someone gets that far and tampers with the phone box and you don't know about it then you have bigger problems.
Mine's on the outside of my house in a pretty sheltered location. Really, even during the middle of the day someone would be completely unobserved messing with it unless someone in my house happened to look out ONE bedroom's window. No neighbor can see the NID from their house (shielded by a wall of shrubbery).

Of course, tapping into my NID would be pretty useless, given as I only use VOIP, but the box is pretty easy to hack.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132387 Thu, 26 Mar 2009 12:42:12 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132141 said by trekologer:

You do realize that for POTS, all that someone would need to listen into your calls is physical access to the telephone line and, for around 90% of homes that's right on the outside of your house?
If someone gets that far and tampers with the phone box and you don't know about it then you have bigger problems.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22132141 Thu, 26 Mar 2009 11:57:51 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117143 said by PX Eliezer:

CallWithUs and perhaps some other providers does offer VPN capability. I don't know if that would improve things somewhat or not. Do you think it's a benefit?Yeah, VPN is easier because that doesn't require end-to-end encryption... However, that lack of a requirement is also a problem because most likely the VPN provider has to route the call out to someone else to get to a termination point and if those connections are not secure then you're not getting much.

So what you might end up with is encrypted from you to whoever is giving you VPN access but then completely unencrypted traffic from them to the termination point. Technically they could secure those connections too but now we're headed down the same path as SIPS where everyone has to be encrypted everywhere. Really that is the way VoIP should have been designed in the first place (actually the whole Internet).]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117143 Mon, 23 Mar 2009 20:40:09 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117093 said by JimXq:

Really I'm looking for someone to say "this is what I do to mitigate the security problem. ...". I couldn't tell who understands all the issues involved though.

So, to tap a VOIP connection I have to either be employed by a backbone provider, or be able to sneak in and install code or hardware to, and have the access/time/inclination to put a packet sniffer into a data stream, sort out the RTP traffic, put it all together by IP and assemble the conversations.

Or, if talking POTS, I'd have to either be employed by an ILEC or RBOC, or be able to sneak in and install code or hardware to, and have the access/time/inclination to put a voice stream recorder into the audio pipes, for many channels.

Sounds pretty improbable either way, but there will ALWAYS be persons with access. Neither sounds more dangerous than the other.

I'd be more concerned about the snoopy teenagers, nosy ex-spouse or nutjob that could easily tap a POTS line with a pair of alligator clips and a cassette recorder. That's just dumb easy.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117093 Mon, 23 Mar 2009 20:32:21 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117051
»www.callwithus.com/faq#vpn
»www.callwithus.com/vpn.html

This is an old thread but still interesting:

»How safe is VOIP?]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22117051 Mon, 23 Mar 2009 20:25:50 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116944 said by PX Eliezer:

With respect, I do want to say, I don't think that anyone here has been arguing. We've been having an interesting and enjoyable discussion. I think it's been quite informative. I don't see that anyone at all has been having any kind of intense feelings, certainly not arguing. And surely not "for you or against you".

This is not Washington DC (or Ottawa) where everything has to be an argument.
:) Yeah, I don't mean to sound like I'm arguing that way either. Really I'm looking for someone to say "this is what I do to mitigate the security problem. ...". I couldn't tell who understands all the issues involved though.

I think it would be nice if there was a SIP provider that could provide Secure SIP (SIPS) termination even if that meant higher rates. Then for most calls you could use the normal paths but when you need security you pay the premium rate for a secure connection. Well, at least secure until it hits the POTS/PSTN.

sips is kind of funky though and looks like it makes it hard to implement when you're routing traffic all over the place. My understanding is that due to the point-to-point encryption, all termination points would need to support sips and that requires a much higher level of involvement than just your direct SIP service provider.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116944 Mon, 23 Mar 2009 20:08:49 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116744 said by PX Eliezer:

But some Groucho Marx quotes:
I wouldn't join any (country) club that would accept me as a member.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116744 Mon, 23 Mar 2009 19:37:44 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116688 said by JimXq:

Are you arguing with me or against me?
JimXq, thanks for the great info. :)

With respect, I do want to say, I don't think that anyone here has been arguing. We've been having an interesting and enjoyable discussion. I think it's been quite informative. I don't see that anyone at all has been having any kind of intense feelings, certainly not arguing. And surely not "for you or against you".

This is not Washington DC (or Ottawa) where everything has to be an argument.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116688 Mon, 23 Mar 2009 19:28:13 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116620 said by Mango:

Case in point: at my last job I had all kinds of customers who would email me credit card numbers and whatnot in plain, unencrypted text. I had a standard letter that I copied/pasted back to them explaining that they shouldn't do that, but that was more to cover myself legally than anything else.Exactly, that is just like what happens when you are putting sensitive information on a VOIP call. That data is just plaintext (unless using Secure/TLS SIP). Are you arguing with me or against me? Your point is exactly the problem I'm talking about.

Can you tell us about any specific cases where someone with access to, for example, AT&T/Level3/GlobalCrossing has sniffed user traffic and obtained sensitive information? I would think this is highly highly improbable though I'm open to correction.

I never claimed it is being done. I'm just saying it would be very easy for someone to do if they were in a position to do it. You read about huge security problems being exposed all the time. The problems were often there all along, it just took someone taking advantage of it. My point was that it's easier than a POTS line, not necessarily "easy" as in any 10-year-old with an iPod and some bailing wire can listen to your VOIP streams.

Consider if sniffing were all that improbable then web sites would not be using SSL for everything they do.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116620 Mon, 23 Mar 2009 19:13:49 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116523 said by JimXq:

I don't need to install anything. Like I said, all I need to access to an existing one. Keep in mind your Internet traffic is usually passing through a lot more hardware than just your ISP.If this really is as easy as you claim, then it's already being done, and not only with voice traffic. Case in point: at my last job I had all kinds of customers who would email me credit card numbers and whatnot in plain, unencrypted text. I had a standard letter that I copied/pasted back to them explaining that they shouldn't do that, but that was more to cover myself legally than anything else.

Can you tell us about any specific cases where someone with access to, for example, AT&T/Level3/GlobalCrossing has sniffed user traffic and obtained sensitive information? I would think this is highly highly improbable though I'm open to correction.

m.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116523 Mon, 23 Mar 2009 18:56:18 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116284 said by RockyBB:

Hey get your tootsie-fruitsee! What, you don't you have a code book?
For our younger folks, he's referring to a scene from "A Day At The Races", a pretty good 1937 film from the Marx Brothers.

The line itself is hard to properly savor without seeing the film itself.

-------------------------------------------

But some Groucho Marx quotes:

A child of five would understand this. Send someone to fetch a child of five.

I've had a perfectly wonderful evening. But this wasn't it.

Those are my principles, and if you don't like them... well, I have others.

Either this man is dead or my watch has stopped.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116284 Mon, 23 Mar 2009 18:11:34 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116239 said by garys_2k:

Sure, but just HOW are you going to stealthily install your "router, switch, whatever" into a given ISP's 'net connection? I don't need to install anything. Like I said, all I need to access to an existing one. Keep in mind your Internet traffic is usually passing through a lot more hardware than just your ISP.

Edit:

I maintain that security starts with physical access, and if you're a PI hired by an ex-spouse, you're going to find Joe Blow's POTS connection zillions of times easier to tap than his cable-Internet's VOIP line.

That's something different and not what I'm worried about in this case. I'm more worried the operations that collect thousands of identities and sell them for $2 like in the articles above. These aren't targeting individuals, they're just getting what is available.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116239 Mon, 23 Mar 2009 18:03:39 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116207 said by PX Eliezer:

"Full identities -- including a functioning credit card number, Social Security number or equivalent and a person's name, address and date of birth -- are going for as little as $100 for 50 people, or $2 apiece.
»abcnews.go.com/print?id=4606745

.
Hey get your tootsie-fruitsee! What, you don't you have a code book?]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116207 Mon, 23 Mar 2009 17:55:36 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116203 said by JimXq:

said by garys_2k:

I don't think that's true at all for cable Internet subscribers. Once your DOCSIS modem sends out the packets they're encrypted. No easy access anywhere.

:) Nope. That encryption only exists between your cable modem and the cable companies hub. That might prevent your neighbor from sniffing on the physically shared cable line and it might protect your VOIP traffic if your cable company is your VOIP provider (ie. there is nothing outside your cable company between you and the POTS termination) but it doesn't do anything to protect the network traffic once it's routed out across the Internet.
Sure, but just HOW are you going to stealthily install your "router, switch, whatever" into a given ISP's 'net connection? THAT would require "a lot of physical effort. It requires exposing yourself to a good deal of physical risk, either by sneaking around [the ISP's office] or lines on the street, breaking into the [ISP's] private network, or similar. All very conspicuous and illegal."

I maintain that security starts with physical access, and if you're a PI hired by an ex-spouse, you're going to find Joe Blow's POTS connection zillions of times easier to tap than his cable-Internet's VOIP line.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116203 Mon, 23 Mar 2009 17:55:12 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116191 said by PX Eliezer:

You might want to see this recent FTC report:
»www.ftc.gov/os/2008/12/P075414ssnreport.pdf

From 2004-2007, California was selling SS# of its residents for just 6 dollars online:
»www.californiaprogressreport.com···o_1.html

ABC News 2008:
"Full identities -- including a functioning credit card number, Social Security number or equivalent and a person's name, address and date of birth -- are going for as little as $100 for 50 people, or $2 apiece.
»abcnews.go.com/print?id=4606745I'm not sure if you are arguing against me or with me. All of those are good examples of why it's a good idea to protect your SSN and that other people think so too. Sniffing VOIP traffic for SSN's is exactly how they could in up in the hands of the people selling them for $2.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116191 Mon, 23 Mar 2009 17:54:07 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116148 said by JimXq:

As for your SSN being all over the place. Well, that might have been the case 10 years ago but nowadays that really isn't true.
You might want to see this recent FTC report:
»www.ftc.gov/os/2008/12/P075414ssnreport.pdf

From 2004-2007, California was selling SS# of its residents for just 6 dollars online:
»www.californiaprogressreport.com···o_1.html

ABC News 2008:
"Full identities -- including a functioning credit card number, Social Security number or equivalent and a person's name, address and date of birth -- are going for as little as $100 for 50 people, or $2 apiece.
»abcnews.go.com/print?id=4606745

.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116148 Mon, 23 Mar 2009 17:43:06 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116073 said by garys_2k:

I don't think that's true at all for cable Internet subscribers. Once your DOCSIS modem sends out the packets they're encrypted. No easy access anywhere.
:) Nope. That encryption only exists between your cable modem and the cable companies hub. That might prevent your neighbor from sniffing on the physically shared cable line and it might protect your VOIP traffic if your cable company is your VOIP provider (ie. there is nothing outside your cable company between you and the POTS termination) but it doesn't do anything to protect the network traffic once it's routed out across the Internet.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116073 Mon, 23 Mar 2009 17:31:55 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116028
I believe there are ATA's and a protocol that uses a public encryption standard for VOIP. I know of no VOIP provider who uses it. Maybe someone on this forum would know of a provider which can support encrypted VOIP.

The only VOIP provider who claims to encrypt everything is Ooma. I'm not even certain about that. It is a claim that has been made by Ooma reps, but never verified by a third party.
--
"People demand freedom of speech as a compensation for the freedom of thought which they seldom use."]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22116028 Mon, 23 Mar 2009 17:26:20 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22115953 said by JimXq:

Tapping VOIP is so much easier. Anyone with the skill can do it from their desk. All they need is access to a machine, router, switch, whatever that is somewhere between you and the POTS termination point.
I don't think that's true at all for cable Internet subscribers. Once your DOCSIS modem sends out the packets they're encrypted. No easy access anywhere.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22115953 Mon, 23 Mar 2009 17:11:58 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22115902
Although it's very easy to tap POTS lines, it also requires a lot of physical effort. It requires exposing yourself to a good deal of physical risk, either by sneaking around someones house, medaling in phone boxes or lines on the street, breaking into the telephone companies private network, or similar. All very conspicuous and illegal. Then there is the time issue because most likely the information you're looking for isn't going to come right away which means you're physically exposed for a long period of time (either with your physical presence or illegal hardware you have to install). On top of that, even if you manage to physically get on a line you still only have access to one line at a time (or however many limited to the physical hardware you have).

Tapping VOIP is so much easier. Anyone with the skill can do it from their desk. All they need is access to a machine, router, switch, whatever that is somewhere between you and the POTS termination point. That's a lot of places that are exposed and makes it very easy to tap lots of phones simultaneously for long periods of time with very little effort. Plus it's not necessarily illegal to listen in on VOIP calls. If you didn't have to break any laws to get into one of the network hops (say, an owner of the hardware) then you might be able to capture anything you want. Trust me, it's trivial to pull out a VOIP stream.

As for your SSN being all over the place. Well, that might have been the case 10 years ago but nowadays that really isn't true. My drivers license no longer has it, my insurance cards no longer use it, etc. Big companies have spent a lot of money preventing it from getting out so they mush think it's worthwhile to protect it.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22115902 Mon, 23 Mar 2009 17:02:55 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114850 said by jonnyz:

My rule is no sensitive data over ANY phone, period. Anything can be listened in on.
I think that on ebay you can buy this product called "The Cone of Silence". It's regularly $ 99 but on sale it can be had for $ 86.

Max and The Chief

]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114850 Mon, 23 Mar 2009 13:46:05 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114629 --
Join the RC5 team.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114629 Mon, 23 Mar 2009 13:07:22 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114419 YOUR SSN over VoIP! :p]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114419 Mon, 23 Mar 2009 12:32:58 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114088
Keeping the line for E911 purposes is a much more rational justification, especially if you're in a high risk situation (neighborhood, kids, valuables, medical condition, etc.). Don't assume that the E911 would work on a disconnected line that you're not paying for.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114088 Mon, 23 Mar 2009 11:31:07 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114066 http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114066 Mon, 23 Mar 2009 11:26:36 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114038 somewhere. Finding them would require a ladder, but that's about it.

On the other hand, getting into my home network would be somewhat challenging. I wouldn't even know where to start if I wanted to tap a Cable or ADSL connection. I don't use wireless, and my router has a hardware firewall. So, your options for tapping a VoIP call would be:

1) Being actually inside my home and having physical access to my network.
2) Hacking one of my ISP's routers and analyzing the packets, figuring out which belong to me, figuring out which ones are SIP, and decoding them, all without interrupting my conversation.
3) Hacking my VoIP Provider and setting up call recording software that you can access.

I would imagine 1) would be quite difficult to do unnoticed, 2) would be near-impossible, and 3) I sincerely hope improbable.

So I feel quite secure using VoIP.

m.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114038 Mon, 23 Mar 2009 11:22:24 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114024 said by trekologer:

You do realize that for POTS, all that someone would need to listen into your calls is physical access to the telephone line and, for around 90% of homes that's right on the outside of your house?

Or the pedestal down the street. POTS tapping is literally available to anybody. It would be more difficult to tap VoIP.

]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22114024 Mon, 23 Mar 2009 11:17:54 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113956
The idea that POTS is secure is just plain wrong.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113956 Mon, 23 Mar 2009 11:06:59 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113761
It may be a little better to use a US/Canadian Voip provider, but regardless of that, there are far bigger security concerns these days. Your SS # is already all over the place.

I'd be more concerned about having good antivirus, antispyware, firewalls, HIPS, antirootkit, port-closing measures, and other hardening measures, on my computers. ]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113761 Mon, 23 Mar 2009 10:24:51 EDT Re: Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113668 The idea that your SS number is secure is a joke. I wouldn't let the worry about the relative insecurity of VoIP deter you from freeing yourself of overpriced POTS. There are so many other avenues to steal your identity that the odds of someone tapping into your phone conversation at just the time you are relating your ssn is highly unlikely.]]> http://www.dslreports.com/forum/Re-Security-Would-you-give-out-your-SSN-when-using-VOIP-22113668 Mon, 23 Mar 2009 10:05:02 EDT Security; Would you give out your SSN when using VOIP? http://www.dslreports.com/forum/Security-Would-you-give-out-your-SSN-when-using-VOIP-22113552
Lately I have gone to multiple broadband connections so the "backup purposes" doesn't make as much sense any more (plus I have cell phone). The one remaining issue is a big deal though. I don't care so much about things like credit card numbers but with social security numbers I do worry about people putting in the effort to get them. I know hardlines can be tapped too but there are so many laws in place making that illegal and difficult that it doesn't seem to happen very often. VOIP doesn't have those safeguards and it's already in a form that makes it easy to sniff and process.

Plus E911 service on the hardline but I think that is always available, even without service (ie. it's free).

It's so incredibly rare that I need to do anything that requires this sensitive information. It seems like a waste to maintain a POTS line that I never use. Even though I'm on the absolute cheapest plan, it's still pretty expensive because of the taxes (the taxes are twice as much as the line; sad). What do you do in the VOIP world when you need to do secure stuff?]]> http://www.dslreports.com/forum/Security-Would-you-give-out-your-SSN-when-using-VOIP-22113552 Mon, 23 Mar 2009 09:37:36 EDT