Security policies definition and enforcement utilizing policy control function framework in 5G

Gomez, German Peinado; Batalla, Jordi Mongay; Miché, Yoan; Holtmanns, Silke; Mavromoustakis, Constandinos X.; Mastorakis, George; Haider, Noman

doi:10.1016/j.comcom.2021.03.024

Cited by 12 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the same line, many other examples of Network Slices with other security attributes may be built in the network. This approach responds to our previous studies that require a more comprehensive, even if more complex, response to security in a network with many underlying infrastructures [7,8].…”

Section: Network Slices With Security Constraints: An Examplementioning

confidence: 63%

“…It takes effect in that when we consider different underlying technologies, many researchers have required a more comprehensive approach to security. We also support this request in our prior research studies [7,8]. In the proposal shown in this paper, we propose a comprehensive selection with the definition of the classes of the parameters that impact slice security so that those parameters may be included in slice specification and be part of the orchestration procedure for initiating the slice configuration.…”

Section: Introductionmentioning

confidence: 83%

See 1 more Smart Citation

Network Slicing Security Controls and Assurance for Verticals

et al. 2022

Self Cite

View full text Add to dashboard Cite

This paper focuses on the security challenges of network slice implementation in 5G networks. We propose that network slice controllers support security by enabling security controls at different network layers. The slice controller orchestrates multilevel domains with resources at a very high level but needs to understand how to define the resources at lower levels. In this context, the main outstanding security challenge is the compromise of several resources in the presence of an attack due to weak resource isolation at different levels. We analysed the current standards and trends directed to mitigate the vulnerabilities mentioned above, and we propose security controls and classify them by efficiency and applicability (easiness to develop). Security controls are a common way to secure networks, but they enforce security policies only in respective areas. Therefore, the security domains allow for structuring the orchestration principles by considering the necessary security controls to be applied. This approach is common for both vendor-neutral and vendor-dependent security solutions. In our classification, we considered the controls in the following fields: (i) fair resource allocation with dynamic security assurance, (ii) isolation in a multilayer architecture and (iii) response to DDoS attacks without service and security degradation.

show abstract

Section: Network Slices With Security Constraints: An Examplementioning

confidence: 63%

Section: Introductionmentioning

confidence: 83%

Network Slicing Security Controls and Assurance for Verticals

et al. 2022

Self Cite

View full text Add to dashboard Cite

show abstract

“…(2) non-RT RIC for RAN optimization; and (3) O-Cloud management, orchestration, and workflow management. As shown in many publications, security and accountability are crucial issues of the Open RAN initiative [18,19].…”

Section: Smo (Service Management and Orchestration)mentioning

confidence: 99%

On Analyzing Beamforming Implementation in O-RAN 5G

et al. 2021

Self Cite

View full text Add to dashboard Cite

The open radio access network (O-RAN) concept is changing the landscape of mobile networks (5G deployment and 6G research). O-RAN Alliance’s suggestions that O-RAN can offer openness and intelligence to the traditional RAN vendors will enable the capability for multi-vendors to re-shape the RAN structure and optimize the network. This paper positions the main research challenges of the O-RAN approach in regards= to the implementation of beamforming. We investigate the O-RAN architecture and the configurations of the interfaces between O-RAN units and present the split options between the radio and distributing units in terms of O-RAN specification and 3GPP standards. From this point, we discuss the beamforming methods in O-RAN, addressing challenges and potential solutions, and suggest the introduction of the zero-forcing equalizer as a precoding vector in the channel-information-based beamforming method. This may be one of the solutions for achieving flexibility in a high-traffic communication environment while reducing the radio unit interferences caused by implanting the precoding in the open radio unit.

show abstract

Securing 5G virtual networks: a critical analysis of SDN, NFV, and network slicing security

Alnaim

2024

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Security policies definition and enforcement utilizing policy control function framework in 5G

Cited by 12 publications

References 11 publications

Network Slicing Security Controls and Assurance for Verticals

Network Slicing Security Controls and Assurance for Verticals

On Analyzing Beamforming Implementation in O-RAN 5G

Securing 5G virtual networks: a critical analysis of SDN, NFV, and network slicing security

Contact Info

Product

Resources

About