1 / 34

STAR-GATE for PACKET DATA

STAR-GATE for PACKET DATA. Arkady Linshitz Product Manager. Introduction. Functional Description. GPRS and 3G Solutions. Product Demonstration. ISP Solutions. PRODUCT OVERVIEW. STAR-GATE ARCHITECTURE COMPREHENSIVE SOLUTION.

faraji
Download Presentation

STAR-GATE for PACKET DATA

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. STAR-GATE for PACKET DATA Arkady Linshitz Product Manager

  2. Introduction Functional Description GPRS and 3G Solutions Product Demonstration ISP Solutions PRODUCT OVERVIEW

  3. STAR-GATE ARCHITECTURE COMPREHENSIVE SOLUTION • Covers both administrative and delivery function; • Supports multiple networks and switches;

  4. STAR-GATE MEDIATION DEVICE • Performs the delivery function of communication surveillance • Wide Range of Protocols • GTP* • FTP • TIIT • ROSE • … • Multicasting • Support 300 MC • Up to 5 simultaneous delivery • Flexible Architecture

  5. GPRS Application Design xGSN X1P X2P X3P MD MD Target Session Manager HI1 HI2 HI3 MD Inside

  6. STAR-GATE SAS (Surveillance Administration Subsystem) • Assigns targets and oversees system administration, maintenance and security

  7. STAR-GATE SAS SINGLE POINT OF ADMINISTRATION

  8. STAR-GATE SOLUTION for GPRS

  9. STAR-GATE SOLUTION for GPRS • Interception Criteria • IMSI, MS ISDN, IMEI • Delivery Format • HI2 • FTP • ROSE • HI3 • FTP • GTP*

  10. STAR-GATE SOLUTION for 3G

  11. STAR-GATE SOLUTION for 3G • Interception Criteria • IMSI, MS ISDN, IMEI, (SIP URL) • Location Dependent Interception • 1 or more areas in the same 3GMS • Charging Aspects • Producing intercept-charging data • Target List Synchronization

  12. 3G Pan European networks - The STARGATE solution

  13. STAR-GATE SOLUTION for VoIP • New Challenges • Communication Content • IP to PCM conversion • Signaling Protocols • SIP • H.323

  14. 3G MD Application Design 3GMS X1 X2 X3 VoIP Gateway MD Core Logic HI1 HI2 HI3

  15. WELCOME TO STAR-GATE DEMO

  16. STAR-GATE SOLUTION for ISP

  17. STAR-GATE for ISP - Challenges • Operational challenges: • Target Provisioning • Identification of target traffic • Control and maintenance • High Security • Technological challenges: • Various network topologies • Fast changing architecture • No interference with ISP Service level

  18. STAR-GATE for ISP - Solution • Interception Criteria: • E-mail address • Username/CLI in RADIUS • IP address • MAC address • Access Solution based on: • LAN Splitter for mirroring • Switching hubs for aggregation and filtering • PD MD Software

  19. STAR-GATE for ISP - Solution • Delivery Method: • FTP • Stream based • Delivery Format: • TIIT • STAR-GATE Tunneling Protocol

  20. ISP Mediation Device S/W Design Network Access (Interceptor) Access Device Core Logic MD HI1 HI2 HI3 MD Inside

  21. Interceptors • RIPE (RADIUS IP Extractor) • Keeps in RAM the target list (Username/CLI) • Monitors RADIUS messages • Generates HI2 messages to LEMF • Activates 3-4 layer switch and IPI based on extracted IP address • Stops 3-4 layer switch and IPI upon logout event

  22. Interceptors • IPI (IP Interceptor) • Gets IP address from RIPE • Analyze each packet in real-time • Collects packets • Forwards to LEMF

  23. Interceptors • SMTPI (SMTP Interceptor) • Keeps in RAM the target list (E-mail address) • Monitors SMTP (Port # 25) • Checks E-mail address in “RCPT TO” or “MAIL FROM” • Buffers all E-mail (from DATA command to closing ‘.’) • Forwards LEMF

  24. Interceptors • DHCPE (DHCP Extractor) • Keeps in RAM the target list (MAC address) • Monitors DHCP • Identifies events of IP address assignment • Generates HI2 messages to LEMF • Updates the system with the new IP address

  25. Mr. Adams Mr. Adams Mr. Adams

  26. Mr. Adams Mr. Adams

  27. Mr. Adams Mr. Adams

  28. John@ John@ John@ John@ John@

  29. The Access Device

  30. Solution Considerations • Coverage • Intercepting all targets • Intercepting all data • Minimize number of intercepted links • Target Identification • RADIUS • DHCP • Security • None intrusive • Encryption

  31. The Solution

  32. System Security • Access rights: Access to target activation and database is controlled by user rights. • Audit Trail: For user login/logout and target activation/deactivation activities. • Centralized Target List Architecture: GSA is the only LI entity where target list is saved on disk • Passive interception: No indication for on going interception • Encrypted delivery to LEAs: Delivery to LEAs can be encrypted using IP-Sec or TLS.

  33. WHY STAR-GATE • Comprehensive Solution • Any Network • Any Switch • Any Protocol • Unified Administration Center • Open Design and Flexible Architecture

  34. Thank you

More Related