- campo obrigatório

Productos

AudioCodes

AudioCodes - Session Border Controllers (SBC) & Security Gateways

nCite™ Security Gateway (SG)

nCite™ Security Gateway (SG)
Descripción
nCiteTM Security Gateway (SG)

The nCiteTM Security Gateway (SG) provides a key security function that enables high quality interactive communications between dual mode cellular phones, WIFI access points and UNA network service providers. Unlicensed Mobile Access (UMA) technology, service providers can enable subscribers to roam and handover between cellular networks and unlicensed wireless networks.

NETWORK PROTECTION WITH IPSEC ENCRYPTION
The nCiteTM SG provides a highly secure connection using IPSec encryption technology and protects the service provider network, application and subscriber from threats and attacks originated on the public IP Network. The nCite SG is a key network element for Fixed Mobile Convergence (FMC) and supports next generation architectures including 3GPP, ETSI TISPAN, and IMS providing the highest levels off performance, capacity, scalability, availability and manageability.

When a security session must traverse Firewall/Network Address Translation (FW/NAT) devices, the nCite SG supports UDP encapsulation of IPSec packets. Acces Control Lists (ACLs) can be configured to allow access based on destination IP address, destination port, or protocol ID.

SECURE AUTHENTICATION
The nCite SG supports the internet Key Exchabnge (IKEv2) protocol. With IKEv2, certificates can be used on the nCite SG to prevent man-inthermiddle attacks and to eliminate the possibility of a third-party impersonating the other party in a secure communications session establishment. The cCite SG uses the Extensible Authentication Protocol (EAP) for IKEv2 UMTS, CDMA, and WiFi authentication.

nCite SG FEATURES
• Confidentiality and Integrity Mechanisms
• Internet Key Exchange
• Firewall / NAT Traversal
• EAP-SIM/AKA
• EAP MD5

ENHANCED SECURITY FEATURES
• Hardware based DoS Protection
• IKEv2 Cookies
• Source IP address spoofing
• Support for whitelists and blacklists for MS identifiers (IP address domain)
• Exportable audit logging protection against core signaling components
• Resource theft protection and fair use policies
• Traffic Management
• Protection against peer timeouts and intelligent reaction to IMSI dictionary attacks
• Tunnel management through external API

APPLICATIONS
• GERAN / UMAN access
• I-WAN access

Downloads