Gsma Fs.38 [HD]

Gsma Fs.38 [HD]

One of the most common questions is: How does FS.38 compare to ETSI EN 303 645 or NISTIR 8259?

The heart of lies in its 14 distinct security requirements. These are grouped into three lifecycle phases: Development & Manufacturing , Deployment & Operation , and Decommissioning .

GSMA FS.38: Securing the SIP Backbone of Modern Telecom In the modern telecommunications landscape, the shift toward networks has fundamentally changed how we communicate. While protocols like Session Initiation Protocol (SIP) have enabled the seamless delivery of Voice over LTE (VoLTE), Voice over Wi-Fi (VoWiFi), and Rich Communication Services (RCS), they have also introduced a new frontier of cyber threats.

Outlines scenarios where SIP vulnerabilities are exploited for financial gain, such as toll fraud or subscription fraud. Technical Recommendations

is a technical specification published by the GSMA’s Fraud and Security (F&S) team that defines standardized formats, processes, and operational guidance related to the secure exchange of fraud and security-related data between mobile network operators, service providers, and trusted third parties. It focuses on enabling timely detection, sharing, and mitigation of mobile network fraud, SIM fraud, subscription fraud, and related threats through consistent data schemas and interoperable message flows. gsma fs.38

Without FS.38, the global eSIM market would fragment. Operators would have to maintain different profile inventories for every type of hardware on the market. FS.38 allows for mass production of profiles that work across the entire ecosystem of certified devices, from smartwatches to industrial IoT sensors.

Against this backdrop, the GSMA Fraud and Security Group (FASG) shifted its focus to SIP, a protocol with a vast attack surface that is used across access networks, core networks, and interconnects. While existing standards from the IETF, 3GPP, and ETSI cover various security aspects of SIP, there was no single, overarching document addressing real-world attacks and comprehensive countermeasures. FS.38 was created to fill this critical gap. The 230+ page guide outlines potential security, privacy, and fraud attacks based on SIP against mobile, fixed, and converged networks, and it provides practical defensive strategies for network operators.

If you need to dig deeper into the technical "how," FS.38 defines the following specific mechanisms:

: For details on how different network elements interact securely, refer to the GSMA Interworking Security page. One of the most common questions is: How does FS

represents a maturing industry. No longer can IoT devices be shipped with gaping security holes and fixed with a "future update." The era of connected everything demands connected security everywhere.

SIP signaling traverses public and private IP networks, exposing endpoints to interception, modification, and spoofing.

The following table outlines some of the most important GSMA security documents:

If you are a product manager or CTO, the cost of FS.38 assessment (typically $15,000–$50,000 based on complexity) may seem steep. However, the cost of not certifying is far higher: GSMA FS

All of these technologies rely on SIP to initiate, maintain, and terminate voice sessions. While legacy SS7 networks were closed and fundamentally isolated, SIP operates over open IP architectures. This transition significantly widened the attack surface. Hackers, fraudsters, and malicious state actors quickly adapted open-internet VoIP hacking tools to target mobile network operators (MNOs).

GSMA FS.38: Securing the Future of SIP Networks In the modern telecommunications landscape, the transition from legacy circuit-switched systems to has revolutionized how we communicate. However, this shift has also introduced complex security vulnerabilities. The GSMA FS.38 permanent reference document (PRD) is the industry's response, providing a comprehensive framework for SIP Network Security . What is GSMA FS.38?

The GSMA FS.38 PRD moves telecom operators away from "paper-based" vendor promises and establishes real-world validation methods. The document divides SIP network protection into distinct target domains and operational architectures: 1. Target Domains Under Review

The FS.38 guide advocates for a holistic security posture, recommending that operators go beyond basic SBC protection and actively use technologies such as dedicated SIP firewalls. A SIP firewall can perform critical functions that an SBC may not, such as correlating incoming messages with data from other signaling protocols, actively querying external platforms for context, and creating tailored, dynamic security policies.

FS.38 defines the structure of the Profile Package (the collection of files, applications, and keys that make up a SIM). Because of this standard, a Mobile Network Operator (MNO) can build a profile using tools from one vendor (e.g., Giesecke+Devrient) and successfully download and install that profile onto an eUICC chip manufactured by a completely different vendor (e.g., Thales or IDEMIA). This decoupling is the engine of the eSIM economy.

TOPICS

MINISTRY OF CONTROVERSY
RANT’S PLANTS
REGULAR GARDENS
GARDEN DESIGN
UNUSUALLY CLEVER PEOPLE
YOUR GARDENING DOLLAR
RANT REVIEWS
GUEST RANTS
REAL GARDENING
WHO’S RANTING ABOUT US
DEAR GARDENER
PUBLIC GARDENS
GARDENING ON THE PLANET
DEFIANTLY UNCATEGORICAL
WHITE HOUSE GARDENS
THE INDOOR GARDENER

GARDENRANT VOICES

The Rant’s writing team of horticulturists, authors, nursery owners, columnists, ecologists, speakers, and activists provide an interactive, thought-provoking platform that tackles all aspects of gardening.

READ MORE ABOUT GARDENRANT

Disclosure Policy

As an Amazon Associate, we earn commissions from qualifying purchases.

© 2026 BeSignal. All rights reserved.

Go to Top