ViodiTV


Race for a Secure 5G – #TIS19

“The reality is that 5G isn’t here,” states Bill Conner, President and CEO of Sonicwall. Speaking at the 2019 Independent Show, Conner suggests there is a great deal of marketing hype around 5G, while questions remain about spectrum, standards, and devices. He says if there is a race, “Let’s race for a safe, secure [5G] future.” Conner implores industry, policymakers, and regulators to use this window of uncertainty as an opportunity to focus on ensuring the fundamental security of the 5G ecosystem.

The 5G network is really one of networked devices (i.e., IoT) and that the telephony portion of becomes a subset (e.g. the telephone is just another IoT device). As such, he calls for government agencies and industry to develop a security framework for 5G that is free from hype.

[Added 9/4/19]

This Brookings Institute whitepaper, from former FCC Chair Tom Wheeler and Rear Admiral David Simpson, USN (Ret.) who was chief of the FCC’s Public Safety and Homeland Security Bureau, also argues that security must be part of the design of the 5G network. It points out that with 5G largely being a software-defined, decentralized network, it is more open compared to the hardware-based, more centralized networks of the past.

It suggests that market forces alone are not sufficient to ensure secure networks, as security isn’t a priority of the end-consumers (they do make an interesting suggestion of creating a sort of UL label for cybersecurity effectiveness, so consumers could judge whether the equipment they are installing is cybersecure).

https://www.brookings.edu/research/why-5g-requires-new-approaches-to-cybersecurity/

The authors recommend two key steps for ensuring a secure 5G future, summarized below:

#1: Companies must recognize and be held responsible for a new cyber duty of care

Key #2: Government must establish a new cyber regulatory paradigm to reflect the new realities

TIS 19 coverage is brought to you by The Independent Show and ViodiTV.

2 responses to “Race for a Secure 5G – #TIS19”

  1. Alan Weissberger Avatar

    Despite everyone agreeing that 5G security is vital, there are no serious 5G security standards projects underway. ITU-T SG17/Q6 “Security aspects of telecommunication services, networks and Internet of Things” is the leading standardization activity, but no implementable standards have been developed yet.
    A 5G end-to-end security framework is presented at https://docbox.etsi.org/Workshop/2018/201806_ETSISECURITYWEEK/5G/S01_INPUT_TO_5G/ACTIVITIES_ACTION_PLAN_5G-SEC_ITUT_YANG.pdf

    CTIA’s What’s New In 5G Security is at https://www.ctia.org/news/whats-new-in-5g-security-a-brief-explainer

    There are several 5G security whitepapers, but again NOTHING THAT’S IMPLEMENTABLE IN 5G ENDPOINTS/PHONES, BASE STATIONS, SMALL CELLS, COMPUTE SERVERS RESPONSIBLE FOR 5G RAN/MOBILE PKT CORE VIRTUALIZATION & NETWORK SLICING.

    VERY DISAPPOINTING THAT SECURITY HAS BEEN NEGLECTED BY 5G STANDARDS BODIES, ESPECIALLY ITU!

    1. Ken Pyle Avatar
      Ken Pyle

      Alan, thank you very much for your insightful comments and pointing to useful references.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.