contact@p1sec.com

P1 Security introduces CrossCheck(TM) for P1 Telecom Auditor (PTA)

Credits: pnash - http://www.flickr.com/photos/pnash/5227436224/When auditing Telecom Signaling networks, be it SS7, SIGTRAN, IMS or Diameter, the quality of scan and audit results is everything.

P1 Security introduces CrossCheck(TM), a new feature in PTA (P1 Telecom Audito), its Telecom Security Vulnerability Auditor that enables to guarantee and rate the quality of the result audit itself.

Many things can affect and alter the quality of a scan: the screening in place at the STP (Signal Transfer Point), SBC (Session Border Controller) or DRA (Diameter Routing Agent); signaling routing; upstream IGP and SCCP provider; specific interworking service used for certain class of traffic; diverging and non-homogenous configuration of interconnections in routing equipments… All these conditions can affect the network response to audit, and thus prevent the auditor from having a clear, comprehensive, complete vision of the audited networks and network elements.

CrossCheck(TM) gives a confidence indicator that shows if any specific condition might affect its vision. The technology used involves the checking of PTA setup and of the network itself and the dynamic determination of a baseline network response against which the tested equipment response can be compared. The net results is that PTA knows if it is being filtered or routed or screened in specific way and is able to calculate the deviation from normal, full interconnection setup. The final report is not only a vulnerability scan, but one that can be put in perspective with other scan and other infrastructure to rate its completeness.

P1 Security is the only company developing the audit and monitoring of security in critical systems. P1 Security integrates advanced research in its product on a regular basis. It has integrated more than 60 vulnerabilities in one single month in its Vulnerability Knowledge Base (VKB), the test database of PTA and is actively engaging in collaborative relationships with demanding operators, governments, auditors and enterprises to respond to each specific conditions.

About the Author