News
SecurityGen transforms telecom security with industry’s first automated Breach and Attack Simulation (BAS) platform for operators
April 2022 by Marc Jacob
SecurityGen has raised the bar for the security of mobile networks with the launch of its new ACE (Artificial Cybersecurity Expert) breach and attack simulation platform.
The ACE platform is a telecoms industry first: the first completely automated breach and attack simulation platform that is purpose-built for securing mobile networks.
ACE provides an automated approach to assess and improve the security posture of mobile operators by continuously testing the strength of their network defences against simulated attacks and techniques.
ACE works by identifying and reporting potential gaps and vulnerabilities within the operator’s network. It then carries out simulations of real-world attacks on these vulnerabilities to assess their seriousness and the potential damage that an actual attack could cause.
Finally, ACE generates a detailed security posture report that includes remediation guidance to help the operator address the vulnerabilities and prevent future security breaches before they happen.
The ACE platform is the centrepiece of SecurityGen’s range of products and services. It draws on the vast knowledge and experience of SecurityGen’s core team who have between them conducted a combined total of more than 300 telecom network security assessments during their careers.
Importantly, its in-built AI module enables it to constantly learn and enhance its performance by incorporating actual, real-life scenarios and attack vectors that have been identified in the field.
The ACE platform is cloud based, which means operators don’t need to install it directly, or even reconfigure their network. ACE provides critical assessment of signalling network security and GSMA compliance tests. It covers everything from 5G networks to legacy platforms like HTTP/2, Diameter and SS7 signalling, and the GTP protocol.
ACE’s flexibility along with its ease of use enables different teams within the same operator to use the platform to test the network according to their particular requirements - including how frequently they need to carry out inspections. The core network team’s security needs will be different to those of the RAN team, which will in turn be different to the customer experience team and the fraud team.
