Acme Packet has enhanced its Net-Net Security Gateway (SG) to enable service providers to scale their fixed mobile convergence (FMC) services delivered using IP-based consumer and enterprise-based femtocell, picocell and Wi-Fi access points. Acme Packet’s Net-Net SG is a multiservice security gateway (MSG) that enables FMC by securing the delivery of voice and data services over untrusted Internet and Wi-Fi networks to femtocells, picocells and dual-mode endpoints.
Infonetics Research projects that the multiservice security gateway market represents an aggregate $1.6 billion opportunity from 2010–2014.
Based on experience from deployments and trials, Acme Packet says its enhancements address critical security, service reach and management challenges that have arisen as service providers move to broader commercial deployments of FMC. The new features and functions for the Net-Net SG that address these challenges include:
- Security
- Online Certificate Status Protocol (OCSP) support – validates endpoint certificates at time of IPsec tunnel establishment providing a more efficient and timely mechanism compared to CRL (certificate revocation lists)
- Mobile Country Code and Mobile Network Code whitelisting – authenticates IPsec tunnels from dual-mode handsets corresponding only to the specified range of IMSI (International Mobile Subscriber Identity) preventing rogue handsets from hijacking dual mode handset service
- EAP-MD5 authentication – expands authentication methods for CDMA femtocells for IPsec IKEv2 tunnel setup
2. Interoperability
- IPv6 support for IPsec – supports IPv6 packets inside IPv4 and IPv6 tunnels maximizing broadband access networks and devices that service providers can use in FMC and femtocell deployments
- Cipher suite expansion – supports the full range of ciphers specified in 3GPP TS 33.234 extending IPsec interoperability to a greater number of endpoints
