Avaya Application Server 5300

The Avaya Aura Application Server 5300 or Avaya Aura AS5300 in telecommunication and computer networking is a secure Unified Communications (UC) system designed and manufactured by Avaya. The system provides integrated IP telephony, conferencing, voice mail and instant messaging - all centered around dynamic presence - that meets, US Department of Defense (DoD) and US federal government security and service assurance requirements. The AS5300 is used for creating, modifying, and terminating two-party (unicast) or multiparty (multicast) media streams, supporting up to 25,000 subscribers per system.^[1]

The Avaya Aura AS5300 is a SIP-based session manager designed to increase productivity and collaboration by allowing users to collaborate using the appropriate tool (instant messaging, chat, voice, video, file transfer, web collaboration, etc.) all in an integrated solution. The AS5300 supports the Session Initiation Protocol (SIP), Assured Services Session Initiation Protocol (AS-SIP), Secure Real-time Transport Protocol (SRTP), Session Description protocol (SDP) Security Descriptions for Media Streams (SDESC),^[2] Transport Layer Security (TLS), Nortel encrypted UNIStim, Multilevel precedence and preemption (MLPP) and ANSI PRI Multilevel precedence and preemption (MLPP) T1.619a.

The AS5300 encrypts both the voice conversation and the signaling setup to create a secure voice over IP (VoIP) environment.

AS5300 Compatibility

The AS5300 can connect with the following systems to support digital, analog, and other phone technologies during migration to Voice over Internet Protocol.

Avaya Communication Server 2100

Avaya Communication Server 1000

AS5300 History

Release 1.0 of AS5300 became commercially available in September 2008.
- In May 2009, AS5300 R1.0 passed the U.S. Joint Interoperability Test Command (JITC) testing for PBX1 and PBX2 certification.^[3]

Release 2.0 of the AS5300 became commercially available in August 2010.
- Release 2.0 of the AS5300 passed the U.S. Joint Interoperability Test Command (JITC) testing for Local Session Controller (LSC) certification.^[4]^[5]
- Release 2.0 of the AS5300 approved for Classified Voice^[6]
- Release 2.0 of the AS5300 approved for Classified Video^[7]

IP Phones & Video Phones Compatibility

The Avaya Aura AS5300 supports both hard and soft Session Initiation Protocol (SIP) clients.

1165E
1140E
1120E
1120SA (special use, CNSS Class-A and Class-B Certified)^[8]^[9]
- For use in Sensitive Compartmented Information Facilities (SCIF)
- TSG-6 certified^[10]
- NSA & NTSWG certified^[11]^[12]
IP Video Phone 1535 (Videotelephony)
AS5300 Soft Client
Sectéra vIPer Phone

File:1140E-7.JPG

1140E IP Phone

AS 5300 Security Capabilities

AS5300 SIP session signaling is secured with TLS.
Mutual authentication of SIP endpoint and session server is ensured with TLS Handshake protocol.
Confidentiality and integrity of SIP message payloads are accomplished via the TLS Record protocol
Media payload is secured with SRTP (RFC 3711)using the following ciphers:
- AES_CM_128_HMAC_SHA1_80
- AES_CM_128_HMAC_SHA1_32
- F8_128_HMAC_SHA1_80
Security descriptions for media streams (RFC 4568)
AS5300 is PKI compatible and supports X.509 certificates
Certificate management system including importing, key generation, verification (RFC 3280) and certificate revocation
Security administrator role
HTTP interfaces secured with TLS
System administration interfaces for Network Element and Subscriber and Provisioning are GR-815 compliant, including password complexity, mandatory change default password, password aging and failed authentication lockout
Anti-virus support
Access control list
File system integrity tool

Unique Government & Military Features

IPv6
Encrypted SIP
Secure SIP Collaboration
Secure SIP Conferencing
Media and Signaling Encryption
Multi-Level Precedence and Pre-emption (MLPP) or Executive barge-in
The AS5300 is Joint Interoperability Test Command (JITC) certified.^[13]

To comply with the NSA Suite B requirements and to integrate pre-approved FIPS 140-2 validated modules into the AS5300 uses Elliptic Curve Cryptography (ECC), and Security Builder GSE technology from Certicom now acquired by RIM enabling security and encryption requirements that meet the DoD and other government requirements for classified communications and unclassified but sensitive communications. ^[14] ^[15] ^[16] The Application Server 5300 (AS5300) is both Multi-Function Soft Switch (MFSS) and Local Session Controller (LSC) capability within the Department of Defense Unified Capabilities Architecture.

References

^ "Application Server 5300 (AS5300) Technical Specifications". Nortel (Avaya). Retrieved 5 February 2010.
^ "IEEE draft-kaplan-mmusic-best-effort-srtp-01". Retrieved 10 February 2010.
^ Nortel Government Solutions Next Generation UC Solution First To Achieve JITC-Certification
^ JITC Certification
^ JITC Certification PDF
^ AS5300 Classified Voice Certification
^ AS5300 Classified Video Certification
^ "TSG-Certified Secure IP Phones". Avaya. Retrieved 23 July 2011.
^ "Type-Acceptance program for Voice over Internet Protocol (VoIP) Telephones" (PDF). Committee on National Security Systems. December 2007. Retrieved 23 July 2011.
^ "Nortel TSG-6 Certified Secure IP Phone 1120SA" (PDF). Nortel. Retrieved 1 January 2011.
^ "1120SA Overview". Nortel. Retrieved 5 February 2010.
^ "Official News". Nortel. Retrieved 5 February 2010.
^ Department of Defense (DoD) Unified Capabilities Approved Products List for the AS5300
^ "Nortel Licenses Certicom Security Technology to Help Secure Unified Communications for U.S. Federal Government Agencies". Retrieved 28 March 2009.
^ "Nortel Delivers UC For Government". Retrieved 5 February 2010.
^ "Nortel Licenses Certicom Security Technology to Help Secure Unified Communications for U.S. Federal Government Agencies".

External links

Avaya Application Server 5300 -Retrieved 27 July 2011
Nortel Delivers UC For Government -Broken
AS5300 Brief -Retrieved 27 July 2011
AS5300 Technical Documentation Avaya Support -Retrieved 27 July 2011
Unified Communications Featured Article -Retrieved 27 July 2011
Nortel Using Certicom Security Technology VoIP News -Retrieved 27 July 2011
Certicom Helps Nortel Secure Unified Communications for U.S. Federal Government Agencies TMC Net -Retrieved 27 July 2011
Nortel Government Solutions, Inc. Business Week -Retrieved 27 July 2011

[1] "Application Server 5300 (AS5300) Technical Specifications". Nortel (Avaya). Retrieved 5 February 2010.

[2] "IEEE draft-kaplan-mmusic-best-effort-srtp-01". Retrieved 10 February 2010.

[3] Nortel Government Solutions Next Generation UC Solution First To Achieve JITC-Certification

[4] JITC Certification

[5] JITC Certification PDF

[6] AS5300 Classified Voice Certification

[7] AS5300 Classified Video Certification

[8] "TSG-Certified Secure IP Phones". Avaya. Retrieved 23 July 2011.

[9] "Type-Acceptance program for Voice over Internet Protocol (VoIP) Telephones" (PDF). Committee on National Security Systems. December 2007. Retrieved 23 July 2011.

[10] "Nortel TSG-6 Certified Secure IP Phone 1120SA" (PDF). Nortel. Retrieved 1 January 2011.

[11] "1120SA Overview". Nortel. Retrieved 5 February 2010.

[12] "Official News". Nortel. Retrieved 5 February 2010.

[13] Department of Defense (DoD) Unified Capabilities Approved Products List for the AS5300

[14] "Nortel Licenses Certicom Security Technology to Help Secure Unified Communications for U.S. Federal Government Agencies". Retrieved 28 March 2009.

[15] "Nortel Delivers UC For Government". Retrieved 5 February 2010.

[16] "Nortel Licenses Certicom Security Technology to Help Secure Unified Communications for U.S. Federal Government Agencies".

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]