SS7 was never designed with security in mind, so it has always been open to internal and external threats.
S7 Firewall is a smart, rules-based system that can monitor, create rules, and enforce policies to prevent or mitigate the effects of these attacks. It is essential for safeguarding your network and subscribers. The GSMA’s FS.11 has categorized GSM MAP messages according to where an operator can expect to observe them.
SS7 Firewall screens all three categories of SS7 messages; a sample is in the figure.
- Category 1 messages should not be expected at the interconnect level unless operators have previously agreed to them.
- Category 2 messages should only be anticipated for an inbound roamer from their home network.
- Category 3 should only be anticipated for interconnects between mobile operators for outbound roamers.
Note: The implementation of the SS7 firewall needs flexibility in adding additional codes based on learning and/or suggested updates.