The BroadForward Next Generation EIR provides a single, unified access point for authentication of mobile devices in the network. It is a fully standards compliant, 100% software-based product and supports 2G/3G, 4G/LTE, 5G and IT interfaces. It also offers an extensive feature set for implementing service logic, active triggering, reporting, alarming and more.
Traditional EIR systems provide device authentication security based solely on blacklisting. Devices in this list are prohibited from entering a specific network. However, in many cases this no longer suffices. With the massive adoption of smartphones and exponential growth of IoT devices there is a growing desire to increase device access control not only to individual networks but to enable enforcement of regulatory directives on a national level. Nominated by the GSMA for Best Mobile Technology, the BroadForward EIR supports both blacklisting and whitelisting, virtually without storage limitation. Because it also supports auto-provisioning, the BroadForward EIR provides a strong base for controlled network access of devices without running the risk of unmanageable access restrictions.
BroadForward Next Generation EIR offers major differentiators:
The BroadForward EIR supports black-, grey- and white-lists for individual IMEIs, 5G PEIs as well as IMEI / PEI ranges, and allows creation of customized lists (VIP list, exception list etc.). Within non-3GPP networks (e.g. Wi-Fi based) the PEI could also be a MAC address. The EIR functionality works across legacy and IP networks, supporting SS7/MAP as well as Diameter and HTTP/2 based IMEI / PEI checks. Based on available IMSI / MSISDN, 5G SUPI information, flexible service logic can be applied for (un)blocking devices based on e.g. IMEI-IMSI combinations. The latter allows networks to detect IMEI cloning. Furthermore the solution can detect SIM box fraud by cross-referencing location data with the IMEI and IMSI. Expiration can be applied for each entry in any of the black-, grey- and white-lists. Flexible service logic can be applied to trigger actions at expiration (e.g. move to blacklist or whitelist). Extensive options are provided for notification (via SNMP, HTTP, SMS) for all lists.
From an operations, administration and management (OAM) perspective, the BroadForward EIR offers a wide range of functions to manage the EIR solution. This includes an SNMP interface, logging and tracing, reporting, dashboards and a central provisioning interface based on HTTP (REST, SOAP). The BroadForward EIR supports automatic black/white/grey-list synchronization (up and download) with a central EIR system – including that of the GSMA (GSMA IMEI DB) – via the SG.18 IMEI database file format specification. A local web interface is available for customer care and operations (supporting IMEI checking and modification of device status). The BroadForward EIR also supports security access control for remote peers (systems performing IMEI checks, provisioning systems, GUI user management), overload control etc. Also see BroadForward closes device authentication security gaps in the mobile network with the Next Generation EIR.
EIR in a Cross-Generation Mobile Network
| Software packaging | RPM packages |
| 3GPP specifications | TS 22.016TS 29.272TS 23.401TS 23.060TS 29.002TS 29.511 |
