- Page 1
- Page 2
- Page 3
- Page 4
- Page 5
- Page 6
- Page 7
- Page 8
- Page 9
- Page 10
- Page 11
- Page 12
- Page 13
- Page 14
- Page 15
- Page 16
- Page 17
- Page 18
- Page 19
- Page 20
- Page 21
- Page 22
- Page 23
- Page 24
- Page 25
- Page 26

- Flash version

© UniFlip.com
background image
As more fixed-mobile convergence (FMC) services are
being delivered via the public Internet, mobile and fixed
operators providing FMC-based offers must consider
new security issues. Consumers are accessing core
operator applications like telephony, SMS or MMS, which
require sophisticated measures to prevent malicious or
unauthorized access to private network elements.
In a recent study, ABI Research estimates that more than
100 million dual-mode phones and nearly 150 femtocell
access points will be connecting to mobile networks over
the public internet. There is tremendous demand for
tools to support the development of the security-enabled
end-points.
FMC applications, such as dual-mode phones, femtocells,
terminal adaptors and even softmobile clients, rely on
secure IPSec tunnels to encrypt signaling and user traffic
over the Internet. For developers of these devices, it can be
difficult to access production network controllers with real
security gateway elements. The sheer size and complexity
of the mobile core network behind the access gateway
controller makes a live network with production Security
Gateway resources unattainable for device development.
Of course, as FMC continues to evolve, the vendor
market grows. A new product has recently been announced
by Xpressant to help operators manage the development of
security solutions for FMC devices.
Xpressant's IPSecTr is a self-contained, simulated
security gateway application for early development and
prototyping of IPSec clients, as well as for validating device
access procedures.
It operates in two modes: as a stand-alone Security
Gateway (SeGW) network element, used to simulate IPSec
access controls; and as a testing engine to exercise the
IPSec client in new devices and access points.
For device manufacturers, security requirements continue
to evolve to meet a growing number of FMC specifications.
Today's 3GPP UMA/GAN specification supports dual-
mode phones and terminal adaptors. The emerging 3GPP
Home NodeB/femtocell standard, while similar in concept
to UMA/GAN, will likely include additional requirements.
As standards evolve, new SeGW products will meet the
capabilities defined in the emerging specifications, and
devices need to remain current.
FMC Security Solutions
Battle IP Security Concerns
Security
Gateway
Traffic
Terminator
10.15.0.1
10.15.0.2
10.9.1.1
XpressVPN
MultiClient
Client Outer
Addresses
10.2.0.1
10.2.0.2
.....
10.2.254.255
NAT
10.9.0.1
10.1.0.2
10.1.0.1
Traffic Generator
Client Inner
Addresses
10.10.0.1
10.10.0.2
.....
10.10.254.255
22
UMA TODAY
FALL 2008