Signalling Firewall

SigFW is opensource project providing the signalling SS7 and Diameter firewall filtering capabilities. 

Source code can be located at github repository here or forked version here.

The project additionally prototypes the SS7 and Diameter signalling message protection, which is providing the message authenticity, integrity and confidentiality protection. This could be used by mobile operators to further secure their inter-PLMN interconnects against various active or passive signalling attacks.

The Diameter protection model was closely followed and further developed within GSMA DESS group. And the similar security mechanism was requested there from 3GPP for 5G networks (Liaison Statements S3-173407, S3-173433) - after the SEPP and the protected N32 interface became part of 5G networks.

UPDATES:

• 6.8.2021 SigFW is prototyping the SS7 confidentiality and integrity protection using DTLS sessions

• 9.1.2020

  • SigFW is supporting the Diameter security by implementing the GSMA DESS Phase1 (Diameter integrity protection) according to the latest changes in GSMA FS.19 document.

  • Additionally it is prototyping the DESS Phase2 (Diameter confidentiality and integrity protection) using DTLS sessions. Recently updated were the signatures for the DESS Phase2.

• 28.8.2019 IANA registered the GSMA DESS extension for Diameter interconnect security. The SigFW code has been updated according to it.

• 22.3.2019 SigFW master including now DTLS support for Diameter protocol prototyping the GSMA DESS (Diameter End-to-end Security Subgroup) protection method

• 10.3.2019 SigFW v1.3-beta released. Multi-threaded, increased performance and included performance tests.

• 9.11.2018 SigFW v1.2-beta released

• 25.1.2018 SigFW v1.1-beta released

• 27.7.2017 Signalling Firewall published with P1 Security and released on the BlackHat USA 2017