For device makers, achieving FS.38 certification is a competitive differentiator. For network operators, it is a risk management tool. For end-users, it is the silent guarantee that the smart meter in their basement or the tracker on their logistics fleet operates with integrity.
In response to these threats, the FS.38 recommends a multi-layered security strategy. While the complete document is a comprehensive library of best practices, some of the core, high-level recommendations frequently cited by industry experts include: gsma fs.38
It is within this context that the GSMA’s Fraud and Security Group (FASG) created the SIP Security (SIPSEC) group, chaired by Tony Friar of Velona Systems, who also served as the editor and lead author of the FS.38. The goal was ambitious: to provide an overarching, end-to-end document covering real-world SIP attacks and practical countermeasures—a resource that had been conspicuously absent in the fragmented landscape of existing IETF, 3GPP, and ETSI standards. For device makers, achieving FS
: It provides a governance-led framework for CSPs to conduct thorough end-to-end penetration testing on both enterprise and consumer Unified Communications (UC) networks, specifically for IMS-based systems. 🚀 Strategic Benefits Interoperability In response to these threats, the FS