Symsoft SS7 Firewall protects your network in real-time against SS7-based attacks. A high level of flexibility, advanced analytics and Symsoft’s on-going engagement allows you to stay protected even as new vulnerabilities emerge.
Why choose Symsoft SS7 Firewall
Protects against GSMA category 1, 2, and 3 threats, including subscriber tracking, traffic intercept, denial of service, fraud, and spam.
Real-time traffic analysis
Illicit requests are blocked immediately, including illegal requests and malformed packets.
Sessions are tracked to immediately block illicit requests that can only be identified by correlating several messages in an exchange.
Flexible rule framework
The filtering can be configured using all available parameters, creating rules that either block matching sessions or monitor them.
A Business Analysis Module provides an intuitive interface to explore traffic and identify deviations from the expected traffic.
In-house developed SS7 stack
Symsoft SS7 Firewall relies on a protocol stack developed in-house, meaning that it is easy to extend its capabilities if necessary to protect against emerging threats.
Flexible deployment models
Ready for integration in either loop mode or gateway mode to fit with existing infrastructure and operator policies and preferences.
Symsoft has years of experience of providing signalling security to operators, and takes an active part in industry forums discussing evolving threats, including the RIFS GSMA group.
Based on the Symsoft Telecommunications Platform that is designed to offer carrier-grade availability.
Symsoft SS7 Firewall is built to provide an effective protection against signalling attacks that will keep your network secure, today and tomorrow. We have used our experience of working with SS7 and signalling security to create the tool you need to protect your subscribers and business. When creating this tool, we have been guided by three main features that ensures the best possible protection.
Powerful real-time filtering
To offer real protection, Symsoft SS7 Firewall can identify and block a wide range of attacks before any damage is done, rather than having to do manual configuration to block further attacks from a specific source once an attack is carried out. This includes all the types of threats categorised by GSMA (Category 1, 2 and 3), thanks to real-time stateful filters that analyse whole sessions rather than just individual messages.
Flexible configuration of filters
As signalling networks get better protected, threats will inevitably evolve and attackers will use all opportunities to target operators. Therefore, Symsoft SS7 Firewall filters are highly configurable so that they can be updated quickly in response to entirely new vulnerabilities as soon as they are identified. Individual filters can either block or monitor matching traffic, allowing quick testing of rules before deployment. Full control over the SS7 stack also means that should updates be necessary, these can be rolled out with a minimal delay.
Secure signalling is an essential part of providing reliable mobile services, and operators must be able to depend on the solutions they use for protection. This is why Symsoft SS7 Firewall is based on the Symsoft Telecommunications Platform, which has been used for mobile service delivery for over 15 years. Symsoft solutions are used by operators all over the world for business critical applications such as rating, charging and service delivery, and Symsoft SS7 Firewall offers the same carrier-grade availability to ensure continuous protection.