Method of and apparatus for authenticating control messages in a signaling network

Assignee

• Verizon Services Corp. · US

Inventors

• Arthur Doskow · New York, US
• Harry A. Hetz · Silver Spring, US
• Kathleen F. Jarosinski · Baltimore, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04Q2213/13339
• WIPO fieldTelecommunications
• WIPO sectorElectrical engineering

Abstract

A communication network includes an SS7 Security Gatekeeper that authenticates and validates network control messages within, transiting, entering and leaving an overlying control fabric such as an SS7 network. The SS7 Security Gatekeeper incorporates several levels of checks to ensure that messages are properly authenticated, valid, and consistent with call progress and system status. In addition to message format, message content is checked to ensure that the originating node has the proper authority to send the message and to invoke the related functions. Predefined sets of templates may be used to check the messages, each set of templates being associated with respective originating point codes and/or calling party addresses. The templates may also be associated with various system states such that messages corresponding to a particular template cause a state transition along a particular edge to a next state node at which another set of templates are defined. Thus, system and call state is maintained. The monitor also includes signaling point authentication using digital signatures and timestamps. Timestamps are also used to initiate appropriate timeouts and so that old or imp…