SS7 Firewall

SS7 was never designed with security in mind and therefore has always been open to both internal and external threats. Given the severity of the security issues, an intelligent, rules-based system that can monitor, develop rules, and implement policies to stop or limit the impact of these attacks is the only way to secure your network and subscribers. The SS7 Firewall has the ability to rate limit, modify, drop, tag, or log messages based on individual rules and a variety of criteria.

Unified or Independent

SS7 Firewall supports all applications within the SS7 protocol, including MAP, CAMEL, and ISUP. It can be complemented with additional protocols as additional modules of the Unified Signalling Firewall as needed in the future.

  • All modules intercept both national and international messages
  • Uses REST API integration
  • All Cellusys products support virtual deployment or can be installed on our customised servers

All Categories

The GSMA’s FS.11 has categorized GSM MAP messages according to where an operator can expect to observe them. SS7 Firewall screens all three categories of SS7 messages.

  • Category 1 messages should not be expected at the interconnect level unless there is a prior agreement between operators. 
  • Category 2 messages should only be expected for an inbound roamer from their home network. 
  • Category 3 should only be expected on interconnects between mobile operators for outbound roamers.

Accessible Reporting

Equipped with powerful (yet agile) reporting and alerting features, not only will your network be secure, you can be sure to have the most accurate information about your network traffic and security at your fingertips.

Customise real-time alerts to be notified the moment a threat occurs. Everyone on your team can be provided proper access levels and customise reports to suit their individual needs (no matter their level of technical expertise) thanks to the intuitive GUI.

Easily set alerts or publish reports as broad as traffic overview or drill down to monitor a suspicious caller ID. Troubleshoot VIP complaints and monitor message volumes with the touch of a button.

Signalling Providers and Signalling Hubs

Signalling is your business — at least make it secure.

We have provided many Tier1 signalling hubs with the capability to control and secure their signalling.

Compliance

Fully compliant with GSMA FS.11

GSMA FS.11 SS7 Interconnect Security Monitoring and Firewall Guidelines was the first set of guidelines approved by the GSMA in November of 2015 and has been updated regularly since then. Version 6.0 was published in May of 2019. It outlines how operators may monitor SS7 MAP and CAMEL traffic, detect unwanted and malicious messages, and set firewall policies. GSMA guidelines are often the basis for public policy and regulation regarding signalling security.

Network Security Test

How secure is your network?

Learn more about our Managed Service for Security

WE INSTALL, WE MANAGE, YOU WIN