Posts tagged FreePBX

Can you trust your integrator with Fraud Analysis?

Nov 29th

Posted by admin in Asterisk

No comments

As some of you know, over the past 9 months, I’ve been heavily involved in the establishment of Humbug. For those who may not know, Humbug is a Call Analytics and Fraud Analysis SAAS. Now, differing from many of the current telephony SAAS projects, we are not based on Amazon EC2 or some other public cloud infrastructure, we build our own cloud environment. Why do we build our own cloud? simple, we need to keep your data secured and confidential. At Humbug, we see ourselves as a cross between Google Analytics – in our ability to analyze and handle data and Verisign – in our security and confidentiality requirements and methodologies.

Question be asked, why do people trust Verisign to provide SSL certificates around the world. What makes Verisign’s CA better than a privately owned CA – the answer is simple, it’s a third party 2 entities can entrust at the same time. Humbug aims to provide the same lever of trust, simply because we regard your data as sacred and valuable.

Since about 2 months ago, we’ve been contacting various Asterisk integrators around the world, inviting them to evaluate Humbug services. Now, while some integrators and vendors were somewhat reluctant, others were more than happy to join. We now have over 250 monitored systems around the world, with system being monitored and analyzed in Israel, USA, UK, Brazil and more.

The thing that amazed me in regards to some of the integrators who decided not to participate was that they claimed: “we provide our customers our own brew of fraud analysis service, we don’t require your SAAS”. Now, while I can accept the fact that an integrator would offer such a SAAS as an in-house service, I can’t see why a customer would rely on these services. In my view, relying on your integrator to provide fraud analysis services is like relying on the integrator of your alarm system to provide hired guard services – it just doesn’t make any sense to me. Why doesn’t it make sense? in Hebrew we say: “Go prove that you have a sister”. Imagine that your PBX integrator offer you such a service, then, in some obscure manner, your PBX gets hijacked and you get slammed with 50K$ worth of phone calls to Somalia. Now, your integrator would say: “Hmmmmm… that’s odd, we didn’t even get those CDR events to our system… you really got hacked bad…” – sure, if you only rely on CDR records to do your analysis (which is what 99.9% of integrators do). There is much much much much more to fraud analysis than just CDR analysis – if it all began and finished with CDR analysis, then by far Cvidya, Verint, NICE and many others would have been made redundant.

Allowing your integrator to provide you with fraud analysis SAAS is like putting the fox to guard the hen house, when things louse up (and they may), he’s the first one to bail out saying: “It’s not my fault”.

Humbug takes a totally different approach to fraud analysis, specifically, in the way we regards the various PBX systems and integrators. We are vendor agnostic and integrator agnostic – we will provide you with the clear and concise information you require in order to make an educated decision as to how you were de-frauded (if de-frauded) and provide you a faster alerting and response time. Our recent adventures had lowered our fraud alert response time from 60 minutes, down to 14 minutes in some cases. Most fraud analysis system carry a 24-36 hour turn around time, by that time, you can be out of 50K$ – our aim is to lower that number to no more than a 100$ in the worst case. Ambitious? yes, down right crazy? probably so, but we always say: “Aim for the moon, you’ll land on a star!” – so we know we’ll get there.

, , , , , , , , , , , , ,

Call Analytics – Closed Alpha testing group

Mar 14th

Posted by admin in AGI

No comments

Well, it’s been almost a month since I’ve started writing about the humbug project. Now, it’s time to actually get you people involved, at least in the initial levels. We are looking to add 10 additional members into the humbug call analytics suite. Currently available analytics during the alpha testing is inbound call analytics.

Our aim is to gather as much information as we can and as much user requests as we can, humbug is a community oriented project, thus it relies on community oriented input and feature requests. Participating members will  be granted access to the humbug analytics portal, allowing them to gather statistical information regarding their inbound call hits and their top ten DID numbers – we are working on additional statistics. As new stats will become available, we’ll role those out into the service as soon as possible.

In order to participate in the closed alpha testing, please send an email to alphatest at humbuglabs.org, and we’ll send you a short piece of dialplan code to insert into your Asterisk server. Technically speaking, we’ll send you a short AGI command that looks like this:

exten => _X.,n,AGI(agi://somehost/DataReceiver,some_unique_ident)

The above line needs to be inserted into any place you would like to generate call analytics from. We’ll also enclose configuration steps for FreePBX (and other FreePBX compatible distributions). We are hard at work for creating a FreePBX integrated module, so you can do a one-click install.

Reblog this post [with Zemanta]
, , , , , , , , , , , , ,

Beyond the dialtone – PBX user experience revisited

Feb 12th

Posted by admin in Asterisk

No comments

When most of us think about PBX systems, we usually associate these with cumbersome usage, confusing dialing codes and in most cases – a PBX system is automatically associated with the annoying task of transferring a call from one handset to another. Lately, I’ve been thinking deeply about how people use PBX systems, is this really the only way to use a PBX system? is there something else to the mix? can we really enrich one of the oldest operational paradigms in the world? – and for that matter, can the public be re-educated to assimilate a new breed of PBX systems or services?

Hardware-based IP phone
Image via Wikipedia

As to answering the question of re-educating the public, I guess I’ll have to leave that question to the head shrinks. As to answering the latter, enriching the PBX experience is both achievable and advisable. When I say enriching, I mainly talk about your ability to bring to the IP phone functionality usually not associated with it. Imagine to have the ability to receive a stock exchange RSS feed to your phones idle screen, notice that you stock is either rising or falling, and by the flick of a button – either sell or buy. We’ve all come accustomed to IP phones that look like the one of the right. A whole bunch of buttons, that in most cases have no direct use when our phone is utilized using a single account. However, these buttons can be externally re-assigned and re-programmed to achieve greater functionality – surpassing the normal behavior of just making phone calls.

The technology involved exists on almost every high-end IP phone on the market (well, at least those made by SNOM, Aastra, Cisco and Polycom – most of the Chinese makers don’t have this) – it’s called a Mini Browsers. Mini Browsers are exactly what they are called, these are simplified versions of your typical Internet browser. Some vendors had produced their own XML based Mini browser markup language (SNOM, Cisco, Aastra) while others had decided to provide a sub-set of XHTML (Polycom). The variations between the vendors are at the neck deep of the problems of using Mini Browsers, and that is that the formats are considerably different. Sure, SNOM had more or less adopted Cisco’s general structure, however, it still varies.

Through the utilization of this technology, it is possible to create phone based browser applications, that seem native to the phone user, as the general interface resembles the native phone interface. It is now the developers job to make the web interface displayed to the user as seamless and as native as possible, keeping in mind that the developer must remain agnostic to the information retrieval layer. Most companies leave their phone systems and these tasks to their system administrators and infrastructure team, however, this task is far beyond their capabilities and skill set. Creating an agnostic IP phone minibrowser dislplay layer, capable of utilizing multiple vendors and models, is a question of content management and content rendering, very must similar to the content transcoding problem that is common to the mobile content world – in other words, a sys-admin will create an ad-hoc solution, a programmer will create a proper, well structured, well designed solution that carry the enterprise beyond its initial needs and requirements.

A short example of how these interfaces work can be found here – on my company blog.

Reblog this post [with Zemanta]
, , , , , , , , , , , , , , , , ,

Being a successful Asterisk Consultant

Mar 9th

Posted by admin in Asterisk

2 comments

A while back, John Todd from Digium, had posted an entry on the Digium blog web site, regarding how to be a successfull Asterisk consultant. While I completely agree with John’s views on the matter, from obtaining a dCAP certificate to the involvement with the community – there are a few points missing from that post, at least in my view. I will try to add some additional information here, in the hopes that it may help you build your business.

Point 1 – Stay Focused

Most of us Asterisk consultants come from diversified areas of expertise. Most of us are plain old IP sysadmins or network managers who got thrown into the Asterisk world due to a requirement – got hooked on it and simply continued onwards. Some of us are developers, some web oriented, some core oriented, but developers yet. The diversity of most Asterisk consultants skill set can easily side track them.

When I say side track, I don’t meant that they don’t know what they are doing, I mean – it’s easy to try and swallow more than they can chew at one time. For example, example a sysadmin turning into an Asterisk consultant, after installing over 200 Asterisk systems. Now, a customer comes to him and says: “Well, I’m gonna give you the work, but I want you to also take over the various IT management aspects of the system.” – If at this point you will say: “YES” you are more of less dooming your business. You are an Asterisk consultant, no matter how a talented IT sysadmin you are, going about and taking both roles on your self would render you in a situation where you, at some point, will be in a situation where you are handling an extreme IT condition at that customer, rendering completely incapable of rendering services to your other customers. Remember, stay focused on what you do, you won’t run into a situation where you will be forced to hurt a customer.

Point 2 – Earning more is sometimes loosing money

This point relates directly to the previous one. Let us imagine that I’m an Asterisk developer with a background of Web development. When confronted with a project that may include both Asterisk and Web Development – the most logical answer would be “YES” – however, web developers tend to forget that they are working autonomously. Most web developers are backed up by teams of graphic artists, database developers, database managers and IT managers. Thus, a web application is much more than the web logic involved with it. Are you an all encompassing developer, capable of cater to all aspects of a web development project and an Asterisk project? if you have your own in house DBA and other resources, you should be fine, however, if you don’t – at some point in the project – you will be forced to outsource the work to a 3rd party – thus, lowering your net income on the project. So, by taking such a project you believe you will be earning more money, while in fact, at the end of the project you may end up in debt to 3rd party sub-contractors you hired.

Point 3 – Be true with yourself

Always be true and honest with yourself and always ask yourself: “is this really a deal that will advance me? or may it actually set me back?” – failing to answer these two questions for every project you are about to take on will end up with some disappointment. Remember, you can fool all people some of the time, you can fool a few people all the time – can you can’t fool yourself! You are your own worse judge, jury and executioner. If you end up doing a project that doesn’t feel right for you, or something with the various aspects of the project troubles your no a moral ground, at some point in time, it will creep up on you and bite you back in the ass.

Point 4 – Use it, don’t abuse it

We all deal with various aspects of the Asterisk project, an Open Source project at its core. It’s very easy to become side tracked by large sums of money, in order to either violate a GPL code or doing something which is completely negated to the Open Source spirit or the Asterisk community. Sure, you will abuse Asterisk and/or other Open Source Asterisk related projects, however, at some point, it will be discovered and your name will be smudged. For example, if you integrate ViciDial to a customer, tell them it’s ViciDial and don’t change its logo to something else. Same applies to FreePBX, A2Billing or other Asterisk related packages – at some point your customer will find out you integrated Open Source – and you will be branded a cheat.

For example, 2 weeks ago I was at a call center, where one of Israel’s leading Asterisk integrator had built a dialer platform for the call center. The call center manager told me that they paid a sum of about 120,000 Israeli Shekels (approx 30,000$) for that dialer. I was really interested to see the product, while the only thing I saw was a “logo” modified “ViciDial” with a couple of hooks into FreePBX (that also had its logo changed to the company logo). The customer was sure he was getting a personalised job, while actually, the entire amount of work done can be amounted to about 12-16 hours of work. Ok, so the hardware costs about 8000USD – still, 22,000$ for installing and modifying two pages on ViciDial – you can’t say that is right – is it?

Conclusion

Always be true to yourself, to your customers and to the community – you’ll never loose.

, , , , ,

Copyright Enforcement in Israel – you gott’a be kidding me…

Feb 19th

Posted by admin in Asterisk

No comments

A few weeks ago I had posted one of my usuall “Open Source License” rants, where I explained and ranted about the state of Open Source license enforcement in Israel. A recent study by the IIPA (International Intelectual Property Alliance) had positioned Israel as the number 1 copyright piracy country in the world!

When you think abuot it, it’s a little strange, as Israel is fairly small. However,  in relation to the number of Internet connected users in Israel, the number of downloads of pirated software or other copyrighted material in Israel is of the highest percentage in the world. Sure, we all download a movie or episode here and there, but, some people in Israel go about and completely utilize pirated material only. Sure, I like watching my weekly episode of Fringe, but what can I do that no network in Israel is broadcasting it. So, I download the episodes via Bittorrent and watch them as they are published. However, on the other hand, I do purchase Microsoft licenses for my PC’s (yes, I have a Windows XP and a Windows Vista box - running Windows and Office), I did purchase a Mandriva PowerPack package for my Linux destktop and notebook and yes, I did purchase my books about DOJO, PHP and AJAX – so, I can honestly say that my utilization of pirated material is that for things I can’t obtain in Israel at all.

One would argue that it is still piracy, well, there is a certain point in that – however, if there is no one to pirate from where you are located, how can you pirate something? according to the dictionary, the noun priate means:

  1. One who robs at sea or plunders the land from the sea without commission from a sovereign nation.
  2. A ship used for this purpose.
  3. One who preys on others; a plunderer.
  4. One who makes use of or reproduces the work of another without authorization.
  5. One that operates an unlicensed, illegal television or radio station.
Ok, let’s take a look at the above and examine:
  1. Considering the fact that I’m not at sea nor am I attacking from the sea, I don’t qualify for item 1.
  2. I won’t even consider number 2.
  3. I don’t prey on others to take something, the airing of a TV show in the US is well published. Hell, the TV stations even publish their content online – only available in the US however – according to item 3.
  4. Ok, I do make use personal use of another persons work without authorization, however, as there is no local representation for the show that I’m watching – that point is somewhat muted in my view – according to item 4.
  5. I don’t operate an illegal or other wise unlicensed TV or Radio station – according to item 5.
So, taking all of the above, I can be considering a small time pirate – I only pirate the shows that I like watching. What’s available here I watch on TV.
Nonetheless, I’m not arguing that copyrighted material piracy is OK – the simple reason is that people in Israel even pirate the things that don’t need to be pirated. For example, Open Source software is being exploited and resold in Israel as proprietary software. Actually, people in Israel have no idea what Open Source really means, thus, people can push whatever lame story to people.
For example, this week I went to a meeting at a small Contact Center. I went there to discuss the installation of a Recording System for the installed PBX system (I have developed one of the most robust CRM/ERP aware recording systems for Asterisk). In any case, I go to the meeting and sit down with the CEO and owner of the Contact Center. I start explaining that I’m using Asterisk, he suddenly stops me and says that he met with the CEO of a certain company, who claims that they developed Asterisk. Actually, he said that the CEO claimed that the initial idea for Asterisk was his. I was pissed off! I started explaining to the man that Asterisk is developed by Digium and it’s an Open Source product and basically, apart from Asterisk Business Edition, no-one, not even I, can sell Asterisk as is. We can create a product based on Asterisk, but we can’t sell Asterisk, nor claim it is ours. After showing the man some websites and various videos of Mark Spencer discussing Asterisk he asked me: “How can that man claim that he developed Asterisk, when it is clear that he didn’t?” – and I responded: “Because people in Israel don’t give a damn and remain ambivalent to the truth”.
I guess that is the same reason why Internet Piracy is so big in Israel. Much of the stuff we want isn’t available here in shops, so go ahead and pirate it. Once you’re used to pirating something, pirating anything simply becomes a second nature to you. I suggest that the IIPA do a better statistic and check the actual pirated content being downloaded, out of which, check how much content isn’t available in Israel in normal distribution channels – and then remove that information from the statistics. I’m confident that while the number will still be high, Israel will no longer be number 1 in the list.
, , , , , , , , , , , , ,
123»