contact@p1sec.com

PTA IMS Independent Access Vulnerability Assessment security project concerns an active IMS signaling scanning of an Operator’s IMS Independent Access (No VoWifi, No VoLTE): Internet (JOYN) + Residential + Corporate.

This vulnerability assessment uses the proprietary P1 Security telecom scanner (PTA) to automate the auditing & penetration testing processes. This allows for the effective combination of a proprietary software (PTA) and the associated expertise for analysing results and drafting and delivering the final report. Moreover, the use of PTA makes it possible to minimise the number of days devoted to the project while going deeper into the analysis of the concerned perimeters.

IMS Independent Access segment from Internet/Residential/Corporate (A-SBC) perspective will be assessed.

P1 Security recommends doing the IMS Independent Access Vulnerability Assessment most preferably on a testbed network, because many fuzzing and DoS test scenarios have to be tested.

Through use of PTA, P1 Security Proprietary Telecom-specific scanner, this Vulnerability Assessment will cover the following protocols from Internet/Residential/Corporate (A-SBC) perspective:

SIP/SDP/MSRP/RTP/ICMP/UDP 

These tests provide information about potential:

Network discovery, Subscriber DoS, Network Element DoS, Fraud, Legal Interception (LI) bypass, Network Element misconfiguration… 

By performing attacks from Internet access segment, vulnerabilities can potentially and indirectly be discovered on the following network elements:

CSCF equipment (P-CSCF, S-CSCF, I-CSCF), MGW