contact@p1sec.com

SS7 Security Perimeters and INAT0 NAT0 NAT1 definitions

While P1 Security professional services team are busy deploying Core Network security monitoring with PTM Signaling IDS on SS7, Diameter, GTP, SIP IMS VoLTE, and Radius, one question keeps coming back: the concept of Network Perimeter in SS7. This recurring misunderstood aspect...
Read More…

SS7 Security Perimeters and INAT0 NAT0 NAT1 definitions

While P1 Security professional services team are busy deploying Core Network security monitoring with PTM Signaling IDS on SS7, Diameter, GTP, SIP IMS VoLTE, and Radius, one question keeps coming back: the concept of Network Perimeter in SS7. This recurring misunderstood aspect...
Read More…

LTE Diameter security, filtering and message categories

Abstract: In order to properly manage LTE Diameter security, and it close variants in the IMS and VoLTE domain, we proposed in this presentation a way to categorize the Diameter message types, usage and Command Codes and ways to monitor and filter them. Presentation will be...
Read More…

LTE Diameter security, filtering and message categories

Abstract: In order to properly manage LTE Diameter security, and it close variants in the IMS and VoLTE domain, we proposed in this presentation a way to categorize the Diameter message types, usage and Command Codes and ways to monitor and filter them. Presentation will be...
Read More…

SS7map risk rating calculation

Details about SS7map risk rating calculation are coming soon after our presentation at 31C3 ! You can subscribe here to be notified: http://eepurl.com/baeFU5...
Read More…

SS7map risk rating calculation

Details about SS7map risk rating calculation are coming soon after our presentation at 31C3 ! You can subscribe here to be notified: http://eepurl.com/baeFU5...
Read More…

Diameter vs SS7 from a security perspective

On a dedicated forum to Diameter, one person asked about the main difference between SS7 and Diameter. While some expert answered on the telecom and protocol aspect, we answered on the security side: From a security standpoint SS7 (and SIGTRAN, its transport over IP) is a legacy...
Read More…

Diameter vs SS7 from a security perspective

On a dedicated forum to Diameter, one person asked about the main difference between SS7 and Diameter. While some expert answered on the telecom and protocol aspect, we answered on the security side: From a security standpoint SS7 (and SIGTRAN, its transport over IP) is a legacy...
Read More…

Rising risk and importance of the vendor backdoors

Backdoors are not only a problem regarding the original insertion made by the vendor, but also about the subsequent usage of these backdoors once discovered. In the recent network storage equipment backdoors (HP Keeps Installing Secret Backdoors in Enterprise Storage), the...
Read More…

Rising risk and importance of the vendor backdoors

Backdoors are not only a problem regarding the original insertion made by the vendor, but also about the subsequent usage of these backdoors once discovered. In the recent network storage equipment backdoors (HP Keeps Installing Secret Backdoors in Enterprise Storage), the...
Read More…

Rising risk and importance of the vendor backdoors

Backdoors are not only a problem regarding the original insertion made by the vendor, but also about the subsequent usage of these backdoors once discovered. In the recent network storage equipment backdoors (HP Keeps Installing Secret Backdoors in Enterprise Storage), the...
Read More…

Huawei reverse engineering: legacy and new network elements surprises

Sometime, reverse engineering for bug hunting reveals some fun stuff. So of course, when you’re dealing with Core Network elements such as Huawei MSC, MSC Proxy and SoftSwitch MSoftX 3000, you don’t expect to find these Chinese ASCII arts of an octopus being killed by...
Read More…

Link reference in the telco world for security auditors

These are important links to know when you’re going to enter the telecom world for security assessment.   Ericsson data http://en.wikipedia.org/wiki/PLEX_(programming_language) http://en.wikipedia.org/wiki/AXE_telephone_exchange   Billing...
Read More…