Preventing Distributed Denial-of-Service Attacks on the IMS Emergency Services Support through Adaptive Firewall Pinholing

Emergency services are vital services that Next Generation Networks (NGNs) have to provide. As the IP Multimedia Subsystem (IMS) is in the heart of NGNs, 3GPP has carried the burden of specifying a standardized IMS-based emergency services framework. Unfortunately, like any other IP-based standards, the IMS-based emergency service framework is prone to Distributed Denial of Service (DDoS) attacks. We propose in this work, a simple but efficient solution that can prevent certain types of such attacks by creating firewall pinholes that regular clients will surely be able to pass in contrast to the attackers clients. Our solution was implemented, tested in an appropriate testbed, and its efficiency was proven.Comment: 17 Pages, IJNGN Journa

MIRAI Architecture for Heterogeneous Network

One of the keywords that describe next-generation wireless communications is "seamless." As part of the e-Japan Plan promoted by the Japanese Government, the Multimedia Integrated Network by Radio Access Innovation project has as its goal the development of new technologies to enable seamless integration of various wireless access systems for practical use by 2005. This article describes a heterogeneous network architecture including a common tool, a common platform, and a common access. In particular, software-defined radio technologies are used to develop a multiservice user terminal to access different wireless networks. The common platform for various wireless networks is based on a wireless-supporting IPv6 network. A basic access network, separated from other wireless access networks, is used as a means for wireless system discovery, signaling, and paging. A proof-of-concept experimental demonstration system is available

Multicast broadcast services support in OFDMA-based WiMAX systems [Advances in mobile multimedia]

Multimedia stream service provided by broadband wireless networks has emerged as an important technology and has attracted much attention. An all-IP network architecture with reliable high-throughput air interface makes orthogonal frequency division multiplexing access (OFDMA)-based mobile worldwide interoperability for microwave access (mobile WiMAX) a viable technology for wireless multimedia services, such as voice over IP (VoIP), mobile TV, and so on. One of the main features in a WiMAX MAC layer is that it can provide'differentiated services among different traffic categories with individual QoS requirements. In this article, we first give an overview of the key aspects of WiMAX and describe multimedia broadcast multicast service (MBMS) architecture of the 3GPP. Then, we propose a multicast and broadcast service (MBS) architecture for WiMAX that is based on MBMS. Moreover, we enhance the MBS architecture for mobile WiMAX to overcome the shortcoming of limited video broadcast performance over the baseline MBS model. We also give examples to demonstrate that the proposed architecture can support better mobility and offer higher power efficiency

The system architecture of the Pocket Companion

In the Moby Dick project we design the architecture of a so-called Pocket Companion. It is a small personal portable computer with wireless communication facilities for every day use. The typical use of the Pocket Companion induces a number of requirements concerning security, performance, energy consumption, communication and size. We have shown that these requirements are interrelated and can only be met optimal with one single architecture. The Pocket Companion architecture consists of a central switch with a security module surrounded by several modules. The Pocket Companion is a personal machine. Communication, and particularly wireless communication, is essential for the system to support electronic transactions. Such a system requires a good security infrastructure not only for safeguarding personal data, but also to allow safe (financial) transactions. The integration of a security module in the Pocket Companion architecture provides the basis for a secure environment.\ud Because battery life is limited and battery weight is an important factor for the size and the weight of the Pocket Companion, energy consumption plays a crucial role in the architecture. An important theme of the architecture is: enough performance for minimal energy consumption

Ubiquitous Sensor Networks in IMS: an Ambient Intelligence Telco Platform

Ubiquitous Sensor Network (USN) concept describes the integration of heterogeneous and geographically dispersed Wireless Sensor and Actuator Networks (WS&AN) into rich information infrastructures for accurate representation and access to different dynamic user’s physical contexts. This relatively new concept envisions future Sensor-Based Services leading to market disruptive innovations in a broad range of application domains, mainly personal (lifestyle assistants), community (professional users) and industrial domains. The support for this broad range of innovative Ambient Intelligence services urgently demands a standardized access to different WS&AN, and Telco Operators have an opportunity to lead this technological challenge as they evolve towards future Next-Generation Networks. Telefónica Research and Development is a leading innovation company that provides communication services for businesses and consumers. Networks and Service Platforms is a major Telefónica I+D innovation area where new Service Architectures and Platforms concepts are essential for the development of services with a high differentiation value. This contribution describes Telefónica I+D activities directed to the design of an Ambient Intelligence Platform integrating USN concepts over NGN architectures. In our view IP Multimedia Subsystem (IMS) concepts can enable and promote a first generation of Sensor-Based Services where multimedia interactive sessions are enriched with contextual information from WS&ANs. To this end three major design criteria are addressed at three different levels. At the application layer, OMA Service Environment and OGC Sensor Web Enablement are combined to define a specific USN Service Enabler. At the communication, management and control level WS&AN Gateways are defined for integrating WS&ANs infrastructures into all-IP IMS environments. While at the lower level, data and meta-data exchanges with different WS&ANs entities are homogeneously represented using OGC® SensorML standard. Finally this paper concludes by discussing some preliminary business opportunities we foresee for the proposed Platform

A User-Focused Reference Model for Wireless Systems Beyond 3G

This whitepaper describes a proposal from Working Group 1, the Human Perspective of the Wireless World, for a user-focused reference model for systems beyond 3G. The general structure of the proposed model involves two "planes": the Value Plane and the Capability Plane. The characteristics of these planes are discussed in detail and an example application of the model to a specific scenario for the wireless world is provided

Algorithms for advance bandwidth reservation in media production networks

Media production generally requires many geographically distributed actors (e.g., production houses, broadcasters, advertisers) to exchange huge amounts of raw video and audio data. Traditional distribution techniques, such as dedicated point-to-point optical links, are highly inefficient in terms of installation time and cost. To improve efficiency, shared media production networks that connect all involved actors over a large geographical area, are currently being deployed. The traffic in such networks is often predictable, as the timing and bandwidth requirements of data transfers are generally known hours or even days in advance. As such, the use of advance bandwidth reservation (AR) can greatly increase resource utilization and cost efficiency. In this paper, we propose an Integer Linear Programming formulation of the bandwidth scheduling problem, which takes into account the specific characteristics of media production networks, is presented. Two novel optimization algorithms based on this model are thoroughly evaluated and compared by means of in-depth simulation results

Conveying and Handling Location Information in the IP Multimedia Subsystem

The IP Multimedia Subsystem (IMS), specified by the 3rd Generation Partnership Project (3GPP), is a key element in the next-generation network (NGN) converged architecture. Extending the IMS towards provisioning support for location based services (LBS) will enable enhanced services and offer new revenues to the operator. Conveying location information in the IMS and connecting the IMS with a positioning system are still open issues. This paper presents the design and implementation of an IMS Location Server (ILS) integrating IMS with a positioning system. From the IMS perspective, the ILS serves as a service enabler for LBS. In order to demonstrate proof-of-concept in enhancing IMS-based services, two prototype service scenarios have been implemented: Location-aware Messaging (LaM), and Location-aware Push-to-Talk over cellular (LaPoC). Some work has been done by the IETF in the area of location information transport based on the Session Initiation Protocol (SIP). This paper proposes improvements in this area, primarily related to reducing the necessary amount of signaling with the specification of a new type of location filter. We have conducted measurements in a laboratory environment in order to illustrate our proposed solution and verify the benefits compared to existing solutions in terms of traffic load and session establishment time. Furthermore, we present a case study integrating the ILS with the Ericsson Mobile Positioning System (MPS)

Options for Securing RTP Sessions

The Real-time Transport Protocol (RTP) is used in a large number of different application domains and environments. This heterogeneity implies that different security mechanisms are needed to provide services such as confidentiality, integrity, and source authentication of RTP and RTP Control Protocol (RTCP) packets suitable for the various environments. The range of solutions makes it difficult for RTP-based application developers to pick the most suitable mechanism. This document provides an overview of a number of security solutions for RTP and gives guidance for developers on how to choose the appropriate security mechanism