Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

6/23/2009
08:34 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Airvana, VeriSign Team for Femtocell Network Authentication

Companies are working to deploy device certificates for Airvana's HubBub UMTS Femtocell, allowing operators to authenticate these devices before allowing access to core networks and services

LONDON, June 23 /PRNewswire-FirstCall/ -- Femtocells World Summit -- Airvana, Inc. (Nasdaq: AIRV), the company transforming the mobile experience, and VeriSign, Inc. (Nasdaq: VRSN), the trusted provider of Internet infrastructure services for the networked world, today announced that the two companies are working to deploy device certificates for Airvana's HubBub(TM) UMTS Femtocell. The certificates will be embedded into the HubBub UMTS femtocell, allowing operators to authenticate these devices before allowing access to core networks and services.

Device certificates are unique digital identifiers that are embedded into a device -- for instance, a femtocell -- to enable strong authentication and encryption. By seamlessly and securely authenticating devices on the operator's network, device certificates eliminate the need for passwords or any action from the end user. As a result, network operators can ensure that only trusted devices will be authorized to make connections while rogue devices will be easily identified and blocked from gaining access.

The work between VeriSign and Airvana builds on efforts currently taking place within the Femto Forum and the 3GPP SA3 security standards group to establish an implementation standard for network authentication for femtocells using a certificate-based model. The use of certificates has already proven successful for similar technologies such as cable modems -- with VeriSign providing trusted solutions for that community. The collaboration between the two companies will provide an authentication solution for operators deploying Airvana HubBub femtocells. The joint effort will also help drive authentication requirements for femtocells, which in turn will accelerate industry efforts toward a common approach that will facilitate large-scale, multi-vendor femtocell implementations. This activity represents a meaningful step forward in the implementation of 3GPP's overall femtocell-to-core network interface specifications including Iuh communications protocol and device management.

"Collaborating with Airvana, a leader in the femtocell market, will once again allow VeriSign to implement security into a device-driven network at the earliest stages of development of a technology ecosystem," said Adam Geller, vice president of PKI solutions at VeriSign. "As with other network access technologies, security is of critical importance to the long-term prospects for widespread adoption. Operators need to know that their deployment of femtocells will not compromise their core networks, and subscribers want assurance that their home networks are secure. Using certificates to manage the relationship between the femtocell and the core network is one of the most efficient and cost-effective methods to provide this level of trust to all parties involved."

"Both operators and subscribers must be confident that femtocell technology is highly secure in order to embrace it fully," explained Glenn Laxdal, vice president of femtocell product management, Airvana. "Airvana has been at the forefront of solving tough femtocell implementation challenges including RF interference and femto service management. Through our work with VeriSign we are tackling one of the last implementation hurdles and will deliver to operators and subscribers femtocell technology that is backed by a recognized leader in security and authentication technology and services."

About Airvana

Airvana (Nasdaq: AIRV) helps operators transform the mobile experience for users worldwide. The company's high-performance technology and products, from comprehensive UMTS and CDMA 3G femtocell solutions based on the HubBub(TM) femtocell, to core mobile network infrastructure, enable operators to deliver compelling and consistent broadband services to mobile subscribers, wherever they are. Airvana's products are deployed in 70 commercial networks on all six continents. The company is headquartered in Chelmsford, Mass., USA, with offices worldwide. For more information, please visit www.airvana.com.

About VeriSign

VeriSign, Inc. (Nasdaq: VRSN) is the trusted provider of Internet infrastructure services for the networked world. Billions of times each day, VeriSign helps companies and consumers all over the world engage in communications and commerce with confidence. Additional news and information about the company is available at www.verisign.com.

Media Contacts Robert Morton Davies Murphy Group (781) 418-2400 [email protected]

Christina Rohall VeriSign, Inc. (650) 336-4663 [email protected]

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Edge-DRsplash-10-edge-articles
7 Old IT Things Every New InfoSec Pro Should Know
Joan Goodchild, Staff Editor,  4/20/2021
News
Cloud-Native Businesses Struggle With Security
Robert Lemos, Contributing Writer,  5/6/2021
Commentary
Defending Against Web Scraping Attacks
Rob Simon, Principal Security Consultant at TrustedSec,  5/7/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-27734
PUBLISHED: 2021-05-17
Hirschmann HiOS 07.1.01, 07.1.02, and 08.1.00 through 08.5.xx and HiSecOS 03.3.00 through 03.5.01 allow remote attackers to change the credentials of existing users.
CVE-2021-27342
PUBLISHED: 2021-05-17
An authentication brute-force protection mechanism bypass in telnetd in D-Link Router model DIR-842 firmware version 3.0.2 allows a remote attacker to circumvent the anti-brute-force cool-down delay period via a timing-based side-channel attack
CVE-2021-31727
PUBLISHED: 2021-05-17
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL's 0x80002014, 0x80002018 expose unrestricted disk read/write capabilities respectively. A non-privileged process can open a handle to \.\ZemanaAntiMalware, register with the driver using IOCTL 0x8000201...
CVE-2021-31728
PUBLISHED: 2021-05-17
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 allows a non-privileged process to open a handle to \.\ZemanaAntiMalware, register itself with the driver by sending IOCTL 0x80002010, allocate executable memory using a flaw in IOCTL 0x80002040, install a hook wit...
CVE-2021-32402
PUBLISHED: 2021-05-17
Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and insecure configurations in inputs and modules.