Mavenir's Application Gateway (AGW) is 3GPP Generic Authentication Architecture (GAA) compliant extensible authentication solution.

As digital and network convergence become a reality and operators launch the next generation of IP services across Internet and Telecom planes with 2G/3G/4G/Fixed network access.  AGW solves the problem of user, network and service’s mutual authentication for trusted communications.

At its core, Mavenir’s AGW provides the essential function of authentication and security key management between the client and the network resources and services on the Internet or operator’s secured domain. AGW uses 3GPP and OMA specified functions such as Authentication/Aggregation Proxy (AP), Bootstrapping Server Function (BSF), and Network Application Function interface (NAF) etc. to achieve the security and authentication functions. Its flexible framework also allows operators to converge the security mechanism for non-SIP traffic for all the IMS and legacy services while enabling multi-device access. Service such as user data management/configuration for VoLTE, VoWiFi, RCS and PoC; WebRTC and other HTTP (REST based) services as well as legacy MMS traffic can be routed through Mavenir’s AGW to provide consolidated security and routing function in the network.

Mavenir’s AGW is built on top our flagship mOne® convergence platform that is a fully virtualized, scalable, carrier-grade solution and supports deployment on cloud-based infrastructure. Its modular architecture provides flexibility to operators to scale or deploy specific AGW components such as AP, BSF etc. based upon their transition path to all IP services.

With its architectural flexibility and extensive utilization at operators for enabling seamless multi-device access to network platforms such as XDMS or IP based rich voice, messaging solutions, Mavenir’s AGW is a leader in the space. 

Key Features & Benefits

  • 3GPP compliant for Generic Authentication Architecture (GAA)
    • Full support for Aggregation Proxy, Bootstrapping Server and Network Application interface functions
    • Support for both shared secret and public/private keys/digital certificates based security models
  • Modular architecture with options for integrated or standalone NAF interface and BSF nodes
  • Support for multiple authentication mechanisms based upon operator policies and client types
    • Fixed and mobile convergence with support for early IMS Authentication
    • Support for Basic, AKA Digest authentication methods
  • Fully virtualized software based solution
  • Extensible architecture to support converged security of multi-device, multi-service access