Signaling control system
Easy to manage, cost-efficient and future-proof core signaling networks
Protecting core network
Operators need to protect their most important asset, their core network, which is the engine behind their entire network operations. There are numerous harms and risks to overcome: network overload, denial of service, service or network operations disruptions, or attacks against operator or subscribers’ assets. Besides securing the core network, operators also need to protect their subscribers from SMS fraud and spam.
Attackers are persistent and can bypass even in-built security functionality in the recent core network generations. The GSMA and 3GPP has identified the most common attacks and basic firewall rules to prevent those. Yet today surprisingly many operators don’t have any firewalls to protect their core network.
Our advanced firewall solution covers SS7, Diameter and SMS traffic. It includes the rules identified by GSMA FS.11 , GSMA FS.19, GSMA IR.70, GSMA IR.71 and 3GPP TS 23.840 for 2G, 3G and 4G networks. The solution is configurable and helps to stay aligned with the GSMA recommendations now and in the future.
Jörgen Tränk
Lead Product Manager
Firewall key benefits
Core network security
Our SS7, Diameter and SMS firewall solutions protects 2G/3G and 4G core networks from all known types of security attacks.
Futureproof and adaptable
Operators can add additional advanced routing rules to the pre-defined rules according to GSMA recommendations. A versatile platform enables several other network functions.
Virtualization
Ready-built firewall protection for containerized (CNF) and virtualized (VNF) platforms.
Key features
The firewall solution protects the core network from security attacks. It implements the rules recommended by the GSMA in FS.11 and FS.19 for 2G, 3G and 4G core networks.
The SMS firewall solution protects the operators' subscribers from SMS fraud, spoofing, flooding and spam.
The range of in-built protocol variants and firewall functionality ensures that the firewall solution fits with 2G, 3G and 4G core networks using SS7, SIGTRAN and Diameter.
Our firewalls come with a user-friendly Web Graphical User Interface (GUI) for operation. Flexible configuration rules for both protocol stacks as well as firewall behaviour, viewing alarms, statistics, SW repository including upgrade/downgrade functions, documentation, log, and trace-functionality, all conveniently packaged in one GUI.
The set of firewall rules can be expanded and adapted when an operator sees new types of attacks occurring in the network. Configuration of all firewall functions and features are done through the easy-to-use advanced web-GUI.
Our firewall solution can also be operated via a Northbound REST API. All alarms, statistics and operations of the solution platform are available through this REST API.
Telecom grade platform
Powerful telecom grade platform as the firewall backbone
The firewall solution is powered with the virtual telecom grade platform, TietoEVRY’s Evolved Signaling Controller (ESC), which is suitable for both virtualized and bare-metal solutions. Multiple core network applications, such as STP, DRA, MNP and SoR, can simultaneously co-execute in the same platform. Benefit from the shared capacity – and forget struggling with capacity safety margins for each application separately.
Read more about ESC
