Fraud and Security Group
Overview
The GSMA’s Fraud and Security Group (FASG) drives the industry’s direction on fraud and security matters related to mobile technology, networks and services. Its objective is to maintain or increase the protection of mobile operator technology and infrastructure and customer identity, security, and privacy so that the industry’s reputation stays strong and mobile operators remain trusted partners in the ecosystem.
FASG provides an open and receptive environment where fraud and security matters can be discussed and addressed through various platforms. It also works to promote fraud and security awareness across the industry.
What the Fraud and Security Group Does
- Continuously assess the global fraud and security threat landscape, analyse the associated risks for network operators and their customers and define and prioritize appropriate mitigating actions.
- Assess threats and actual implementation across the globe and report on the state of the industry at regular intervals.
- Specify technical fraud solutions and security enablers such as security algorithms and drive their adoption by suppliers and network operators.
- Review and analyse new and existing architectures, services and solutions and conduct fraud and security risk assessments of these to ensure adequate protection by design.
- Define fraud and security requirements and minimum standards for the industry and drive implementation and compliance with those standards.
- Promote fraud and security awareness across the industry.
- Establish processes to handle industry level fraud or security incidents and support these in operation.
- Assist members with the investigation of fraud and security incidents.
Key Topics
The Fraud and Security Group is working on a range of topics in the following areas:
- Fraud: Protecting customers against fraud, detecting and preventing fraudulent access to mobile services, identifying abuses of service terms & conditions, fast identification of fraud committed while roaming
- Security Architecture: 5G security, infrastructure security and testing, LTE network configuration, NFV security, define security requirements and minimum standards
- Roaming and Interconnect security: signalling, roaming security, minimising wholesale risks to mobile operators
- Mobile Device Security: Mobile malware, mobile device, and application security, IoT security, UICC security
- Intelligence Sharing: Sharing fraud and security events.
Meetings
Fraud and Security Group meetings are held three times per year, with conference calls used to progress work between physical meetings.
Participating companies attending these meetings should make adequate travel budget provision to travel to these meetings.
How to Get Involved
If you would like more information about the Fraud and Security Group, please contact [email protected]. If you are interested in contributing and attending Fraud and Security Group then please contact [email protected] to become a GSMA member and to join this group.
Communications to the Fraud and Security Group, including industry liaison statements, should be sent to [email protected].