UM Labs

UM-Labs are R&D

UM-Labs R&D has been set up to design and look to create a better way of protecting against real-time communication cybercrime, all parties in the group have significant experience of developing robust solutions for a 21st century set of problems.

Thanks to the Internet, we live in a connected world, connectivity now extends beyond the set of applications of web, email to include internet transit via Instant Messaging (IM), Voice over IP (VoIP) and video calling. So much now of our everyday life relies on interconnects in Real-Time and new levels of usage which means 24 hour usage and a large multi-level attack surface for criminals and hostile nations, means a fertile research area to improve the way technology deals with and continues to evolve, such as AI,  but as is often the case with new technologies such as IoT security, this has not received the attention it deserves.

The weakness of IP fragmentation

As the capabilities of a single internet host compare to the capabilities of multiple IoT hosts, Internet hosts can mount attacks against all RTC and all IoT devices that are similarly effective to today’s distributed Denial of Service attacks. DoS protection mechanisms built into standard IP security protocols do not mitigate this type of attack, as they often assume that individual hosts are equally powerful.

IP packet fragmentation enables malicious Internet hosts to fill up the limited buffer space of IoT hosts with invalid IP fragments by sending merely a few large packets. This is due to the fact that IP security protocols commonly calculate integrity checksums and signatures over whole packets instead of over intermediate fragments. Hence, the validity of fragmented packets cannot be verified before packet re-assembly.

The solution UM-Labs provide

The cooperative routing topology of RTC/IoT networks in combination with the higher bandwidth available to Internet host allows to not only target single IoT devices, but whole IoT networks with DoS attacks. As today’s IP security protocols focus on end-to-end mechanisms, they do not defend against this type of attack that would need to stop at the IoT ingress point.

The above issues show that IP security solutions do not cater immediately to a secure interconnection of IoT networks and the Internet. The research has taken us forward already to present a layer in any cloud for which IPV4 and IPV6 can be considered inter-operational allowing for an adaptation layer-based approach to enabling security bootstrapping between the IoT domain and the Internet with existing IP security protocols.

Sum of the R&D that leads UM-Labs to be ahead of the industry for RTC Cyber Security.

  • 21st century new designs for IP and SIP connectivity.
  • Advanced intelligence that reflects protection across multi-levels in ICT.
  • All Unified Communications tested and protected.
  • All mobile connectivity either using LTE or SIP protected.
  • Multi-cloud implementations allowing umbrella service models.
  • Full protection between network, applications and content.
  • Advanced intelligence from within a hardened UOS-Unicus.
  • Full connectivity and inter-op between industry standard UC systems.
  • First compliant multi-level defences set against ENISA guidelines.
  • First compliant Data in Transit that meets GDPR and other data protection regulations.
  • Fully integrated with partner technologies around legal intercept, archive, HSM encryption and private, public or hybrid cloud deployments.

First Call Fraud data base with honey pots and in partnership with ITSPA. SNITCH.

Denial of Service Attacks

DoS protection mechanisms built into standard IP security protocols do not mitigate this type of attack, as they often assume that individual hosts are equally powerful

Case Study – ATOS Group

The Atos Partnership has applied the UM-Labs Unicus UOS to deal with different RTC security needs in a cohesive structure that allows ATOS Hoox a fully secure smart mobile device to function against a cloud RTC secure service, labelled Hoox for Mission (Defence grade) and Hoox for Business (Enterprise compliant).  Unicus is the Hoox Security Platform (HSP) and provides inter-operation with all SIP IPPBX, UC systems, plus inter-op between IPV4 and IPV6 communications.

Case Study – Micro Focus / HPE

Todays compliance spans multiple regulations and needs to archive significant amounts of new real-time communications, labelled data in transit for legal intercept, GDPR, NIS, MiFiDII,23 NYCRR 500, California Data protection 2018 and others. UM-Labs Unicus UOS captures all RTC (Voice, Video, IM) communications as part of the protection and cyber attack operation. Add this in close integration to MicroFocus/HPE Digital Safe archive solution and MicroFocus Retain, the partnership delivers a top-grade encrypted end to end solution which meets all compliance needs and running across any cloud implementation. Protect, Intercept and archive has been the centre of a initiative in the health sector labelled the ‘Circle of Trust’.

Case Study – Microsoft Azure

UM-Labs R&D is part of the Microsoft OCP program working together to fully integrate the Unicus UOS native across all public and private Azure Clouds. The RTC Cyber Security layer allows customers of Azure to protect and interconnect all SIP based RTC via an umbrella service. As the work has been done with Microsoft Azure teams in Redmond, Unicus scales and utilises all aspects of Azure storage and other connectivity. Skype For Business and Teams can operate in conjunction with Azure via Unicus, which makes all SIP interconnection to other platforms secure and seamless. All mobile LTE and IP connections become fully secure and compliant.

Case Study – KPN

UM-Labs R&D and KPN the Dutch national Telco have been collaborating together to provide a full ‘security as a service’ to their enterprise and SME customers, which allows for complete compliant RTC Cyber Security using Unicus UOS and provides for all SIP based communications and this offering is all that is needed to be GDPR Data in transit compliant, it will replace legacy security point solution products, today these are not multi-level for attack protection fully integrated for Network, Application and content in any cloud. The service is known as NGSS services (Next Generation SIP Security).

Security that protects every day 21st century communications.
UM Labs
UM Labs
UM Labs