Wallis Dudhnath thank you sir for your excellent expert advice
Wallis Dudhnath - 9th February 2017 (06:58 GMT)
Both Gx and Gy are based on Diameter protocol.
Gx updates sends the new QoS parameters to the PCEF so that the new Policy rule can be enforced.
Gy provides periodic reports to OCS and it can update the Prepaid balance. As Gy uses the IP protocol it maybe possible for a miscreant to setup
IP spoofing using Diameter peers. If a miscreant can do this then an injection
"attack" can take place and credit can be added.
Recommend that your passwords are changed on a regular basis - standard
IT Security Policy. Logs from PCEF, PCRF/OCS (Sy) should be reviewed to see
who has logged on and what activities have been performed. CSP Fraud / Finance Teams can help to detect any unusual activites with PrePaid / PostPaid / Hybrid Accounts.
The miscreant will need to have a very good working knowledge of the Diameter
protocol (Gy, Gx, Sy, RFC 4006 RFC 6733 (RFC 3588 is now "obsolete") and has been involved with indepth verification of online charging using Tcpdump.
VBR/ Wallis Dudhnath
paraho - 8th February 2017 (12:42 GMT)
What security you advice for Gy protocol to stop credit theft and protect prepaid balance?
Wallis Dudhnath - 12th February 2016 (17:12 GMT)
As Networks move to being data orientated with LTE/4G and the emergence of Industrialised IOT there is a clear need to have a flexible Policy Control and Charging - PCC - as a central component for any Telecommunication Network.
Look forward to answering questions based on Gy, Gx, Sy (3GPP Policy), SDF, etc..