Sonus Networks has announced a new architecture developed with Palo Alto Networks that is designed to mitigate the impacts of rogue LTE endpoint devices and erroneous IP traffic targeting Rich Communication Services (RCS) on LTE networks.
Sonus says its security architecture provides full visibility and enforcement associated with signaling and multimedia traffic, with a focus on preventing malware, to help cellcos prevent advanced cyber-attacks targeting their Evolved Packet Core (EPC) networks and IMS.
The security architecture includes existing Sonus session border controller (SBC) elements, providing Interconnection Border Control Function and Proxy-Call Session Control Function (IBCF and P-CSCF), as well as the Palo Alto Networks Next-Generation Platform, to move security to the network edge, lowering mobile networks costs and customer churn.
The joint architecture allows cellcos to implement new policies that block unauthorized traffic on EPC networks, increase security, reduce network congestion and associated costs and enhance the user experience of mobile subscribers by providing protection from mobile malware, Sonus says.
Mobile operators can leverage their P-CSCF and IBCF deployments to detect and mitigate anomalous IP communications traffic from rogue endpoints, as well as obtain complete visibility and threat prevention capabilities provided by the Palo Alto Networks platform.
Sonus says the security architecture can also help cellcos reduce capex by limiting network over-provisioning while implementing a more effective overall security posture in conjunction with growing IP services such as VoLTE and VoWiFi.
“The Sonus and Palo Alto Networks architecture brings together the unique capabilities offered by each company to deliver a best-in-class security solution for mobile operators that unifies LTE data and VoLTE security policy and enforcement,” said Kevin Riley, Sonus CTO and senior vice president of engineering. “Establishing a secure mobile network for the Internet of Things will be a key differentiator for mobile operators and their customers in the coming years.”
“Mobile network operators must have full visibility into all types of mobile network traffic in order to prevent cyberattacks,” said Scott Stevens, Palo Alto Networks senior vice president of global service provider sales. “This joint architecture provides active coordination between our platforms to provide a new level of security into the VoLTE/VoWiFi network.”