Multi-Media Consultancy Overview
Overview
Multi-media networks are increasingly becoming an integral part of most enterprise IT infrastructures, providing high-speed voice and data services to any location. The benefits of leveraging these capabilities are significant for both the enterprises and those that use them.However these benefits come at the cost of an increased security exposure due to the extended nature of the network and complex management requirements.
InMezzo has extensive expertise in the area of multi-media and mobile technology, combined with comprehensive skills and real world experience in service management and security.
Approach
To effectively counter this situation, InMezzo focuses on helping user organisations to create a multi-media service management and security architecture integrated with the systems as one well-designed single system. Using our experience in mobile, multimedia, and secure computing, we help you to design and build a shield to protect and administer multi-media networks end-to-end.
Our role starts by identifying the management requirements, key vulnerabilities and potential attacks, to help build systems that will protect revenues and customers, with the performance required. Analysis and research is focused on building an inclusive service and security management environment, following standards and security measures for 3G and 2.5G GPRS/EDGE, also WiFi and GSM 2G. Our goal is to exploit existing service and security systems as part of a seamless protective shield, all under a single logical point of control, with policy-based decisions and activities.
Inmezzo methodology adopts a four-phase approach to the delivery of enterprise and operator security solutions:
1.Service Management and Threat Analysis
2.Business Case Development
3.Solution Design
4.Development, Test and Deployment of Design
This pragmatic approach ensure the delivery of practical, cost effective mobile security solutions
Multi-Media Consultancy Programme
Our expertise is aimed at preparing your multi-media service management and security operations through a four stage process:
Threat analysis – examining the vulnerabilities and security requirements across all three subject key areas (networks, handsets/PCs, servers/3rd party gateways) with key usage scenarios – for instance, spam, virus, denial of service, network element attack, financial transactions, tracing audit and accounting, user control of security, regulator mandated measures, and privacy in location–based systems. Finally we can build a risk register for the system. Business case for action - exploring and estimating the risks to continuity of service in the mobile multimedia offerings as well as the networks and servers as a business case. We help you to understand the potential losses and liabilities due to a potential weakness in security, as a background to developing a Security Platform. We highlight where the security measures are most needed across the multimedia mobile architecture, and can exploit the usage scenarios to focus on the most likely major risks. Design the solution - examine options for an end-to-end security and service management solution with the key concepts embedded in the policy engine, leading on to an outline design for implementation. Probably based on a mobile security platform, to cover, for example: human operator and customer interfaces, attack detection, protection of server and network elements including customer handsets, with services access control using strong authentication, federated authentication if required for m-commerce, etc. If required, this stage may include specifying a range of suitable additional products to be acquired and integrated. Our approach is to first identify the top level architectural components, such as the security manager for enforcement, administration, updating and monitoring of security, but in a form which will assure the performance required for mobile. We also consider management of entitlements, privacy, permissioning, audits, accounting and operational monitoring. Our view is that all should be standards-based, with an open architecture to enable ease of integration into an existing services architecture, leveraging current IT investments in security systems and processes. Engineer the development, test and deployment –we will also provide project support to management for the build of the final system, if required, with selection of hardware and software and of system integrators as needed. An initial conceptual model may be built to show the working system, before embarking on development, test and final deployment.InMezzo
Policy & Identity Management Solutions
