QuickSec™/IPsec for IMS
Robust IPsec Security for the IP Multimedia Subsystem (IMS)
The IP Multimedia Subsystem (IMS) is an architectural framework that enables carriers to offer premium services, such as video and voice over IP (VoIP) to desktops and next-generation mobile devices.
With carrier adoption of an IP-based infrastructure comes increased vulnerability to a new set of security threats..
In order to protect sensitive call setup and billing data from interception and manipulation, the 3GPP and 3GPP2 recommend the use of IPsec to provide robust integrity, confidentiality, and authentication. AuthenTec provides a complete IMS security solution for telecom equipment manufacturers looking to build robust IPsec-based security into network gateways and user equipment.
IMS Security Solution
QuickSec/IPsec for IMS delivers the advanced levels of protection, reliability, and performance mandated by OEM vendors and industry standards. QuickSec/IPsec for IMS provides a complete solution to protect signaling traffic - from the gateway to the end user equipment - for access, IWLAN, and inter-network communications.
IWLAN Network Protection
Internetworking WLAN (IWLAN) is a 3GPP standard specifically addressing security or seamless roaming of voice, data and video applications. This presents carriers with an opportunity to secure and authenticate these communications and applications over a single service session. QuickSec/IPsec for IMS provides a complete security solution for IWLAN scenarios in which user equipment (PCs and mobiles) connect to IMS services from “any IP address” (home broadband, hotspots, etc).
Inter-Networking Security
To protect traffic between networks and implement network domain security (NDS), carriers deploy Security Gateways (SEG) at the edge of the security domains. QuickSec/IPsec for IMS provides a massively scalable security solution to handle the most demanding throughput and reliability requirements.
Robust Security Performance through Hardware Acceleration
To accelerate performance-critical security algorithms and protocols, QuickSec/IPsec supports many popular security processors in the market, including AuthenTec’s SafeXcel 51x0, 1141, 174x, and 184x series, and provides a well documented API for adding support to new or proprietary crypto hardware. QuickSec/IPsec can take full advantage of a very wide range of hardware accelerators, including plain crypto cores, packet engines, inline hardware accelerators, bare-metal fastpaths as well as public key accelerators.
Security SoC Platform Support
The QuickSec Toolkits are also an ideal IPSec solution for security-enabled SoCs from silicon vendors that have integrated AuthenTec’s hardware security engines into their products to provide robust, high-speed security functions. QuickSec has been optimized to seamlessly interoperate with the AuthenTec security engines embedded in devices from vendors such as AMCC, AMD, and PMCSierra, resulting in excellent security system performance and unparalleled ease of integration.
Advanced Features
The server toolkit also includes remote access features and high availability APIs for import and export of IPsec security associations for device redundancy and failover. The small runtime footprint with linear deterministic memory allocation ensures seamless scalability to meet the highest performance demands.
Technical Specifications
Complete IPsec Cryptography
- AES, DES, 3DES, RSA, SHA-2, MD5, Diffi e-Hellman, and PKI
Policy Manager
- IMS API for setup and management of IPsec security associations
Other Features
- High availability APIs for import and export of IPsec security associations
- ALGs for various protocols
- Application traffic inspection at the firewall
- Multi-layer stateful TCP/IP firewall with attack prevention
- IPv4 / IPv6 support
Platform Support
- Linux
- Android
- Microsoft Windows XP, Vista, Windows 7, Server
- Windows Mobile
- WindRiver VxWorks
- Other OS's through portability layer
Hardware Acceleration
- Various types of crypto HW support (including plain crypto cores, packet engines, inline hardware accelerators, bare-metal fastpaths as well as public key accelerators)
Features & Benefits