A user authentication system that analyzes call forwarding information obtained from telecommunication networks, such as through the use of Signaling System No. 7 (SS7) protocols, to detect the possibility of fraud. In response to a request to access a network-accessible service, the system performs an initial authentication of provided user account credentials. The system then obtains a telecommunication subscriber identifier that is associated with the user account. Prior to performing additional device-based user authentication, the system obtains call forwarding information for the user. The obtained call forwarding information is then evaluated for potentially fraudulent call forwarding configurations. For example, call forwarding to certain call forwarding numbers, or the use of different call forwarding types, may be indicative of fraud intended to undermine further user authentication.

A differentiated routing system includes an electronic service in communication with an ingress gateway that receives a communication service, such as a call from a terminal, over a trunk. The service receives a request from the ingress gateway for establishing a communication service for the calling party terminal. The service obtains information associated with the calling party terminal, which may be based on the trunk and its relationship to a customer, in which the information is to be used for applying at least one of a routing decision and policy decision to the communication service, and appends a tag to the request based on the information. The service may then transmit the request appended with the information to a routing device, which may then use the information when providing the service.

A system, server, and method of DTMF detection in a VoIP network.

A method for multiple transaction capabilities application part (TCAP) operation code (opcode) screening includes receiving a first SS7 signaling message including multiple TCAP opcodes. The method further includes determining that the first SS7 signaling message requires further processing. The method further includes, in response to determining that the first SS7 signaling message requires further processing, decoding, from the first SS7 signaling message, N TCAP opcodes, where N is an integer of at least two. The method further includes, for each of the N TCAP opcodes, applying a filter and determining that one of the filters indicates that the opcode, alone or in combination with other parameters in the first SS7 signaling message, is not allowed. The method further includes, in response to determining that the one filter indicates that the opcode, alone or in combination with the other parameters is not allowed, performing an SS7 firewall action.

A method for load sharing class 1 SCCP messages includes receiving a class 1 SCCP message requiring global title translation (GTT). The method includes performing GTT for the message to select a load sharing group for the message. The method further includes generating a message signal unit (MSU) load sharing key using parameters from a combination of message transfer part (MTP) layer parameters and signaling connection control part (SCCP) layer parameters. The method further includes using the MSU load sharing key to select a destination address from the load sharing group for the message. The method further includes inserting the destination address into the message. The method further includes routing the message to a destination corresponding to the destination address.

Implementations described and claimed herein provide systems and methods for identification of connection areas in a telecommunications network. In one implementation, a customer set is obtained for a communications node in the telecommunications network. The customer set includes an existing connection type and a collection of network sites including the connection type is generated from the customer set. An overlay of customer sites without the connection type may be applied to the collection of network sites to generate an intersection of non-connected customer sites within the collection of network sites including the connection type. The intersection provides an indication of underserviced sites connection to the telecommunication network for potential network growth.

A method of establishing a communication link between a mobile terminal of a wireless network and a subscriber of a network, such as an enterprise network, and/or a residential network.

A user authentication system that analyzes call forwarding information obtained from telecommunication networks, such as through the use of Signaling System No. 7 (SS7) protocols, to detect the possibility of fraud. In response to a request to access a network-accessible service, the system performs an initial authentication of provided user account credentials. The system then obtains a telecommunication subscriber identifier that is associated with the user account. Prior to performing additional device-based user authentication, the system obtains call forwarding information for the user. The obtained call forwarding information is then evaluated for potentially fraudulent call forwarding configurations. For example, call forwarding to certain call forwarding numbers, or the use of different call forwarding types, may be indicative of fraud intended to undermine further user authentication.

A differentiated routing system includes an electronic service in communication with an ingress gateway that receives a communication service, such as a call from a terminal, over a trunk. The service receives a request from the ingress gateway for establishing a communication service for the calling party terminal. The service obtains information associated with the calling party terminal, which may be based on the trunk and its relationship to a customer, in which the information is to be used for applying at least one of a routing decision and policy decision to the communication service, and appends a tag to the request based on the information. The service may then transmit the request appended with the information to a routing device, which may then use the information when providing the service.

Implementations described and claimed herein provide systems and methods for identification of connection areas in a telecommunications network. In one implementation, a customer set is obtained for a communications node in the telecommunications network. The customer set includes an existing connection type and a collection of network sites including the connection type is generated from the customer set. An overlay of customer sites without the connection type may be applied to the collection of network sites to generate an intersection of non-connected customer sites within the collection of network sites including the connection type. The intersection provides an indication of underserviced sites connection to the telecommunication network for potential network growth.