"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code

We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.

If you're serious about implementing protocols correctly, you need the Codenomicon tools."

-- Jeremy Allison,
   Co Creator of Samba


"Codenomicon has found a critical focus area which expands beyond web testing, where the XML industry has an opportunity to proactively assess the security holes contained in everyday services used by the general public. I would hope the industry warmly welcomes both the research results and an innovative testing solution to help diagnose the problems."

Prof. Howard A. Schmidt
former White House Cyber Security advisor & Codenomicon board member

DEFENSICS™ for 3G/4G LTE   pdf

Introduction | DEFENSICS™ Advantage | DEFENSICS™ for 4G

DEFENSICS for 4G

DEFENSICS for 4G provides unique value by offering support for core LTE protocols, such as GTPv1, GTPv2 and Diameter. Assuring the security and robustness of underlying IP layers, including Mobile IP, UDP and SCTP are supported. For an all-IP LTE network, Layer 3 tests that cover end-to-end connectivity are important: Network entry, authentication, call setup and security procedures have to be exhaustively tested. Significance of Layer 3 is underlined by the fact that it is the LTE entry vector visible to large amount of consumers. As such, non-compliant client devices and malicious hacking attempts are likely to be encountered.

DEFENSICS for LTE protocol summary:

  • GTPv1
  • GTPv2
  • Diameter
  • IPv4
  • IPv6
  • UDP
  • SCTP

The most important use scenarios to be tested involve User Access (UA) to LTE/EPC core and an interface between LTE/EPC and open Internet (PDN-GW testing to be more precise). In the User Access case, Serving Gateway (SG) and Mobility Management Entity (MME) are critical components to be tested. These components also play major role in roaming scenarios between operators, creating a trust boundary requiring a high level of robustness. An aspect over which operator has least control in an all-IP network is IP traffic originating from user equipment, and as such, robustness of IP packet handling should be thoroughly tested in an end-to-end configuration. Packet Data Network Gateway (PD-GW), together with the AAA servers create outer boundary of LTE/EPC facing Internet. PDN-GW is also part of the trust boundary in roaming scenarios. This requires high degree of robustness and reliability from these components.