VoLTE RCS is getting more support - be ready with Radiator

In Mobile World Congress last week, Google and several global operators announced the launch of a mobile industry initiative to accelerate the availability of Rich Communications Services (RCS) in Android. Operators have agreed to transition toward a common, universal profile based on the GSMA's RCS specifications and an Android RCS client provided by Google in collaboration with operators and OEMs.

For telcos and their customers, the improved user equipment support means that they can get more out of their VoLTE networks. For example, the following Android RCS features will become part of operator messaging experience:

• Group chat
• Sharing high-resolution photos
• Reading receipts

Also, GSMA RCS advanced calling features will be supported in the future by Google.

Be ready with Radiator

The support for VoLTE RCS requires seamless authentication in operator networks. This can be implemented with Radiator GBA/BSF Support Module. Radiator GBA/BSF Support Module works as an authentication proxy between the end-user UE and HSS. It authenticates the user requests, and separates the authentication procedure and the Application Specific server (AS) functions to different logical entities – for example, call forwarding and other Rich Communication Services.

Authentication architecture, when your end user device supports VoLTE RCS

We have already deployed Radiator GBA/BSF Support module to real operator networks in order to provide support for seamless VoLTE RCS authentication. In case you are interested in our solution, please contact our team at support info@open.com.au.

Radiator 3GPP AAA Server white paper published

We are happy to announce that Radiator 3GPP AAA Server white paper (pdf) has now been published. 3GPP AAA Server white paper, as well as our previous white papers about Radiator SIM support and Radiator Policy and Charging support, can be found from OSC website.

If you are in a need for 3GPP AAA Server solution, you can always contact us at sales(a.t.)radiatorsoftware.com

Implementing VoLTE supplementary services with Radiator GBA/BSF

Generic Bootstrapping Architecture (GBA) is a technology that enables the authentication of a user. This authentication is possible if the user owns a valid identity on an HSS (Home Subscriber Server). GBA is standardised at the 3GPP. The user authentication is instantiated by a shared secret, for example, a SIM card inside the mobile phone and the other is on the HSS.

With GBA, it is possible to provide VoLTE Supplementary Services, for example, Call Forwarding in VoLTE. Call Forwarding is an example of use case that cannot be pre-configured for all the subscribers because users want to configure their own forwarding number. With Radiator GBA/BSF module, this is possible to done in your VoLTE network – without the need to drop the user from VoLTE to other network.

How this is done with Radiator?

One of our customers had a need for VoLTE Supplementary Services in their network, and as a part of product development, a new Radiator GBA/BSF module was introduced to meet their needs.

One example architecture when using Radiator GBA/BSF module for VoLTE Supplementary Services

As it is shown in picture above, Radiator GBA/BSF module will work as a authentication proxy between the end-user UE and HSS. It will authenticate user requests, and also separate the authentication procedure and the Application Specific server (AS) specific application logic to different logical entities – such as VoLTE Supplementary Services.

After the authentication procedure has been completed, Radiator GBA/BSF module assumes the role of a reverse proxy, i.e. the AP forwards HTTP requests originating from the UE to the correct AS, and returns corresponding HTTP responses from the AS to the originating UE.

Need for VoLTE Supplementary Services in your own network?

In case you need VoLTE Supplementary Services, such as Call Forwarding, in your own network, please do not hesitate to contact our team at sales(a.t.)radiatorsoftware.com. Our team of experts is happy to assist with your project.

Powered by Radiator: Verkkovieras.fi for simple and secure federated Wi-Fi authentication

Powered by Radiator: Verkkovieras.fi

This blog post is first one of the Powered by Radiator articles, where we and our agents or partners introduce products, services or solutions they have made using Radiator. If you have a product, service or solution you would like to introduce, please contact sales (a.t.) radiatorsoftware.com for more information.

This time it's Arch Red's turn to introduce their cloud based authentication service -- verkkovieras.fi , Powered by Radiator.

verkkovieras.fi for simple and secure federated Wi-Fi authentication

David Bleasdale: security

Verkkovieras is a Finnish word, which means network guest. Verkkovieras.fi is Arch Red's cloud authentication service for organisation’s employee and guest network access control. The service also supports authentication roaming federations such as eduroam and roam.fi making the service an easy way to deploy and serve federated network access for employees, guests and partners.

We know that maintaining user databases and RADIUS servers for employee and guest access can be difficult, especially when there’s additional complexity such as federated roaming. With verkkovieras.fi we focused in building a service, which is easy to deploy and easy to use. We thought, designed, thought some more and improved our design to be as clean and clear as possible.

Easily deployed in any Wi-Fi network

To deploy verkkovieras.fi authenticaton service you only need RADIUS capable authenticated devices such as for example almost all Wi-Fi controllers and access points. The authenticating device, usually the Wi-Fi controller, needs to be able to communicate with our cloud based servers in Internet and that’s it -- only our server details and Wi-Fi networks need to be configured in the controller.

User account registration as easy as email

Employees manage their user accounts themselves by requesting them from WWW page and after simple email-www page confirmation they activate their email address based user account. Account’s username is their email address and password is randomly generated string. We wanted to make sure that the network password is secure and on the other hand create a separate user account for network access. This was to keep more important or sensitive passwords such as Active Directory or other service passwords separate and safe. This way the employee cannot undermine the security by changing password to less secure or more sensitive one.

Federated roaming with a flick of a switch

Roaming federations and federated user access is even simpler, just select which federations and to activate or deactivate it. Your employees or visiting roaming guests are then able to roam free within federations and networks with same profiles they use for network access in your home network.

Easy guest user access or traditional vouchers -- you choose

Howard Lake: Sainsburys Active Kids vouchers

For guest user access there are two options, a simple time-limited guest user account for automated access and possibility to create and print more traditional time-limited guest user accounts before hand. Automated access means that the user account can be integrated for example with WWW page based authentication to provide guest short Internet access with just a click of a button on the authentication page. The traditional guest user accounts can be used like vouchers, the username and password must be entered on the authentication page or system dialog to get the access to network.

All this as a cloud service, ready to be deployed today

verkkovieras.fi architecture

We packaged all this in a redundant Amazon cloud based service distributed across two geographical regions, where we handle the difficult details such as scaling, server certificates, EAP methods (EAP-PEAP, EAP-TTLS, EAP-PWD) leaving you as a customer time to focus to your business and core functions.

If you are interested, contact our sales team: sales (a.t.) archred.com for more details.

Enhance your voice coverage and get back in control - doing VoWiFi with Radiator

Since Wi-Fi calling (VoWiFi) has been introduced into the market, operators are
increasing their indoor coverage overnight to provide better voice coverage to their subscribers and offer new voice models (both domestic and roaming). With new generation devices and automatic SIM authentication, end-users will never have to consider are they connected to LTE- or WiFi network.

Doing with seamless call transfer support between WiFi and VoLTE provides new opportunities for operators. For years, voice calls have been transmitted over Wi-Fi in the form of OTT applications such as Skype. The problem with OTT applications from an operator’s perspective is that the operator loses control and revenue. With VoWiFi voice calls and messaging work seamlessly for the end-user - and operator retains control.

Benefits for VoWiFi solution

For operator, several benefits are the same as for the end-user - for example better indoor coverage. Additional benefits come from getting the control back for the calls, making OTT players such as skype less important. WiFi is also low-cost solution to enhance voice service coverage and at the same time offload traffic from the core network. After all, VoWiFi is using sharing similar infrastructure as VoLTE.

For end-user, the benefits come from seamless voice and messaging solution between WiFi and LTE networks - provided that their smartphone will support the solution. At the same time WiFi calling will provide better indoor coverage as it will complement LTE network. Also, the operator can offer atttractive solutions that can for example minimise roaming charges when using VoWiFi.

How to do this with Radiator?

Radiator products provide the essential components for VoWifi authentication. Authentication is done with our Radiator SIM Pack that also includes 3GPP AAA Server - providing all the interfaces for 3GPP and non-3GPP authentication. When combined with Radiator Telco Pack Diameter support for policy control and authentication, your network will be ready for Wifi calling. Radiator integrates with all your evolved packet core and WiFi network elements via 3GPP interfaces.


Please contact our team at info(a)open.com.au - we are happy to provide you more information.