Network enablers

Designed to meet specific IoT communication needs

Functions / Services

The platform offers extensive billing capabilities which allow for easy and complete management of product, charges, bundles, accumulators and plans. With its modular design built around a powerful engine, the billing services include customer treatment, mediation, rating, charging, invoicing, payment and receivables management as well as financial and business intelligence.

These capabilities enable service providers to quickly and effortlessly launch new services, monetize new revenue streams and deliver improved customer experiences.

Simfony’s IoT platform includes a, purposely build, full MVNO core network software stack, together with business and customer support facilities. It is designed to meet specific machine-to-machine communications needs with a focus on the low revenue per unit these types of connections bring.
Simfony’s Online Charging System a carrier grade platform for the real-time management of mobile subscriptions wallets and allowances in a 3GPP network. It is also responsible for the quota monitoring features of the platform.

Simfony’s AAA Server is a carrier grade, 3GPP compliant application used by the platform to provide security in the form of authentication and fraud prevention; IP and network access management to mobile M2M connections.

The IPSec Gateway powers the platform’s self-managed virtual private network services where users can define their VPN connections and associate SIM cards with them. In conjunction with managed IP allocation traffic from these SIM cards is routed directly to the user’s internal network in uses cases where security is paramount.

Features:

  • Supports IKEv1 and IKEv2 (RFC 7296) key exchanges
  • Support of NAT-Traversal (RFC 3947)
  • Dead Peer Detection (RFC 3706)
  • IKEv2 EAP user authentication with RADIUS support
  • 509 certificates or pre-shared keys authentication
  • Support of the Online Certificate Status Protocol (OCSP, RFC 2560).

In order to allow for the economies of scale needed to support the price point at which Internet of Things applications become ubiquitous we need to ensure that IoT connections and resources are used in the proper way.

Patterns of Things is a service offered by Simfony based on a Deep Packet Inspection engine and machine learning algorithms (supervised dictionary learning, anomaly detection, prediction) which ensures enhanced security, better service quality, proper planning and ease of troubleshooting.

Features:

  • Detection of unauthorized events from and to the mobile connection
  • Firewalling connections from unwanted traffic based on type, geolocation or blacklists
  • Proactively detection of abnormal behavior pointing to possible faults
  • Managing network quality parameters according to your SLAs
  • Prediction of costs and usage
  • Inspection of data flows, devices, ports and protocols in order to fine tune applications
  • Distribution of workloads to match company processes and procedures

Simfony’s IoT Platform is designed to support multiple access technologies for enabling IoT applications. For this purpose, it implements a fully standards (LoRaWAN 1.0 and 1.1) compatible LoRaWAN Network Server which, together with the platform, manages these types of LPWAN devices.

Both sensors and gateways can be configured and monitored and the facility is integrated with the Node-RED installation to provide capture, processing and storage of the data sent from LoRaWAN devices.

Security, encryption, authentication and authorization for LoRaWAN devices is managed in a similar way to mobile devices through the platform and its API.

Features:

  • LoRaWAN Class-A support
  • LoRaWAN Class-B support
  • LoRaWAN Class-C support
  • Adaptive data-rate
  • Debugging / frame-logging

The web portal has the ability to group together all the existing capabilities into a user friendly, yet powerful interface .It provides real-time information regarding network events, such as location status, PDP session status and incoming and outgoing SMS messages.

The administrators are able to define various permissions levels which allow for separation of concerns in respect to mobile assets management (e.g. a billing manager can only see and pay invoices and cannot modify SIM services).

 

All actions performed in the web portal are available via secure REST JSON/XML APIs, so users can seamlessly integrate all available functions into their own enterprise applications.

Managing fleets of thousands of connected devices can be a difficult task, but the tools made available by the platform aim to simplify these processes as much as possible.

  • Network presence
  • Geolocation services
  • Data caps and usage alerts
  • Rich configuration profiles
  • Automatic device detection
  • SIM card lifecycle management (incl. SIM parking)
  • Inbound and outbound SMS messages
  • Aggregated billing information, invoicing and payments
  • Real time portal notifications and web hooks

Shared APN Secure VPN is an automatically configured IP VPN, built in the platform. Once provisioned a customer can add SIM cards to VPN connections either by ordering new SIM cards attached to a specific product or by reconfiguring an existing device to use a VPN enabled plan. The VPN is IPSec IKEv2 with a pre-shared key and specific hashing and keying functions.

The platform provides the necessary tools to design, run, view and export reports on network data gathered for connected assets. The reports can provide information for the entire devices fleet, a specific group of devices, or a single device.

Reports can be assigned to dashboards in order to group visualizations based on user requirements.

The IoT platform includes facilities for receiving and sending data in various formats from external sources (i.e. sensor devices), via standard communication protocols, by allowing customer to provision managed Node-RED instances. Node-RED is a visual tool for wiring the Internet of Things which implements a graphical service designer in an intuitive, drag-and-drop manner.   The service is integrated with other platform features, such as the MQTT broker, authentication and authorization mechanisms as well as with the platform API.