Abstract: Methods for Multiprotocol Label Switching (MPLS) Traffic Engineering (TE) design for IP Multimedia Subsystems (IMS) include determining that a network is a flat MPLS-enabled Voice over Internet Protocol (VoIP) or Unified Communications IMS network including an IMS Core site and excluding Session Border Controllers (SBCs). The network further includes multiple user endpoints (UEs). Responsive to determining that the network is a flat MPLS-enabled VoIP or Unified Communications IMS network, the computer system configures a first set of TE LSPs between each UE and the IMS Core site. The computer system configures a second set of TE LSPs between each UE and each other UE of the plurality of UEs to form a full mesh. A display device of the computer system generates a graphical representation of the network. The graphical representation represents the first set of TE LSPs and the second set of TE LSPs connecting each UE.

Abstract: A system and method maintain communication service quality in a network. The method comprises providing a network of nodes including a network component and at least two user endpoints, implementing a physical connection between at least two nodes in the network, implementing virtual connections between all of the nodes using a metering module disposed in at least one node which meters actual traffic on the physical connections at the nodes, generating synthetic traffic on the virtual connections to simulate traffic by the at least two user endpoints, metering the synthetic traffic on the virtual connections at the nodes using the metering module, generating traffic data metrics from the actual traffic and the synthetic traffic in the network, diagnosing network connectivity from the traffic data metrics using a diagnostic module, and rectifying quality-related issues of the network from the diagnosed network connectivity using a remediation module. The system implements the method.

Abstract: Methods for Multiprotocol Label Switching (MPLS) Traffic Engineering (TE) design for IP Multimedia Subsystems (IMS) include determining that a network is a hierarchical MPLS-enabled network including a single IMS Core site and multiple Session Border Controllers (SBCs). Responsive to determining that the network is a hierarchical MPLS-enabled network, the computer system configures a first set of TE Label Switching Paths (LSPs) between each SBC of the multiple SBCs and the single IMS Core site. The computer system configures a second set of TE LSPs between each SBC of the multiple SBCs and each other SBC of the multiple SBCs to form a full mesh. The network further includes multiple user endpoints (UEs). The computer system configures a third set of TE LSPs between each UE of the multiple UEs and an SBC of the multiple SBCs. The UE is configured to use the SBC.

Abstract: Methods for Multiprotocol Label Switching (MPLS) Traffic Engineering (TE) design for IP Multimedia Subsystems (IMS) include determining that a network is a hierarchical MPLS-enabled network including a single IMS Core site and multiple Session Border Controllers (SBCs). Responsive to determining that the network is a hierarchical MPLS-enabled network, the computer system configures a first set of TE Label Switching Paths (LSPs) between each SBC of the multiple SBCs and the single IMS Core site. The computer system configures a second set of TE LSPs between each SBC of the multiple SBCs and each other SBC of the multiple SBCs to form a full mesh. The network further includes multiple user endpoints (UEs). The computer system configures a third set of TE LSPs between each UE of the multiple UEs and an SBC of the multiple SBCs. The UE is configured to use the SBC.

Abstract: Methods for Multiprotocol Label Switching (MPLS) Traffic Engineering (TE) design for IP Multimedia Subsystems (IMS) include determining that a network is a flat MPLS-enabled Voice over Internet Protocol (VoIP) or Unified Communications IMS network including an IMS Core site and excluding Session Border Controllers (SBCs). The network further includes multiple user endpoints (UEs). Responsive to determining that the network is a flat MPLS-enabled VoIP or Unified Communications IMS network, the computer system configures a first set of TE LSPs between each UE and the IMS Core site. The computer system configures a second set of TE LSPs between each UE and each other UE of the plurality of UEs to form a full mesh. A display device of the computer system generates a graphical representation of the network. The graphical representation represents the first set of TE LSPs and the second set of TE LSPs connecting each UE.

Abstract: Systems and methods include a method for securing an Internet protocol (IP) Multimedia Subsystem (IMS)-based voice over IP (VoIP) network with multiple virtual private networks (VPNs). A call sent by a first user endpoint (UE) to a second UE is received by a SBC. The SBC provides security for an IMS-based VoIP network and controls traffic between a first VPN connecting IMS core servers, a second VPN connecting IP phones, and a third VPN connecting non-IP-phone devices. The call originates from either of the second VPN connecting the IP phones or from the third VPN connecting the non-IP-phone devices. A signaling for the call is encrypted and routed by the SBC to the second UE. A media flow for the call is encrypted and routed by the SBC through the third VPN before routing the call to the second UE.

Abstract: Methods and systems for independent security scrubbing and billing of calls through an IP Multimedia Core Network Subsystem (IMS) are provided. The system includes a core IMS network and a security network cloud securely connected via session border controllers. The IMS network is configured to route calls to the security network cloud. The security network includes call-processing and billing servers that implement security checks on calls from OSI model layer three to seven and analyze the call to collect and generate billing data. After successful security and billing operations, the call is routed back to the IMS network for handling according to conventional workflows. Accordingly, the disclosed invention serves to enhance security for IMS traffic, improve the accuracy of customer billing and conserves IMS network resources which would otherwise be consumed by malicious attacks and billing responsibilities.

Abstract: Methods and systems for independent security scrubbing and billing of calls through an IP Multimedia Core Network Subsystem (IMS) are provided. The system includes a core IMS network and a security network cloud securely connected via session border controllers. The IMS network is configured to route calls to the security network cloud. The security network includes call-processing and billing servers that implement security checks on calls from OSI model layer three to seven and analyze the call to collect and generate billing data. After successful security and billing operations, the call is routed back to the IMS network for handling according to conventional workflows. Accordingly, the disclosed invention serves to enhance security for IMS traffic, improve the accuracy of customer billing and conserves IMS network resources which would otherwise be consumed by malicious attacks and billing responsibilities.

Abstract: Methods and systems for preventing information leaks in telephony communications involving any number of parties for use in an IP telephony network having core components. A method according to one aspect of the disclosure comprises receiving an outbound audio and signaling stream from a first terminal device within the IP telephony network, determining call parameters of the outbound audio stream, storing the call parameters within the IP telephony network, and inserting a watermark into the outbound audio stream routed from the IP telephony core components to the second terminal device with an audio watermark using the determined call parameters within the IP telephony network, wherein the watermarked outbound audio stream can be used to identify unauthorized recordings of the outbound audio stream recorded at a second terminal device at which the watermarked outbound stream is received.

Abstract: Systems and methods include a method for securing an Internet protocol (IP) Multimedia Subsystem (IMS)-based voice over IP (VoIP) network with multiple virtual private networks (VPNs). A call sent by a first user endpoint (UE) to a second UE is received by a SBC. The SBC provides security for an IMS-based VoIP network and controls traffic between a first VPN connecting IMS core servers, a second VPN connecting IP phones, and a third VPN connecting non-IP-phone devices. The call originates from either of the second VPN connecting the IP phones or from the third VPN connecting the non-IP-phone devices. A signaling for the call is encrypted and routed by the SBC to the second UE. A media flow for the call is encrypted and routed by the SBC through the third VPN before routing the call to the second UE.

Abstract: Methods and systems for preventing information leaks in telephony communications involving any number of parties for use in an IP telephony network having core components. A method according to one aspect of the disclosure comprises receiving an outbound audio and signaling stream from a first terminal device within the IP telephony network, determining call parameters of the outbound audio stream, storing the call parameters within the IP telephony network, and inserting a watermark into the outbound audio stream routed from the IP telephony core components to the second terminal device with an audio watermark using the determined call parameters within the IP telephony network, wherein the watermarked outbound audio stream can be used to identify unauthorized recordings of the outbound audio stream recorded at a second terminal device at which the watermarked outbound stream is received.