5G Cyber Security

2.

5G System Architecture and Security Domains

2.1.

Overview of 5G System Architecture

2.1.1.

5G Network Components

2.1.1.1.

User Equipment (UE)

2.1.1.2.

Radio Access Network (RAN)

2.1.1.3.

5G Core Network (5GC)

2.1.1.4.

2.1.2.

Functional Split Between RAN and Core

2.1.2.1.

Control Plane Functions

2.1.2.2.

User Plane Functions

2.1.2.3.

Management Plane Functions

2.1.3.

Service-Based Architecture (SBA) Overview

2.1.3.1.

Network Function Services

2.1.3.2.

Service Registration and Discovery

2.1.3.3.

API-Based Communication

2.2.

Radio Access Network (RAN) Security

2.2.1.

gNodeB (gNB) Security

2.2.1.1.

Secure Boot and Firmware Validation

2.2.1.2.

Secure Management Interfaces

2.2.1.3.

Hardware Security Modules

2.2.1.4.

Physical Tamper Protection

2.2.2.

Physical Layer Vulnerabilities

2.2.2.1.

Eavesdropping Risks

2.2.2.2.

Physical Tampering

2.2.2.3.

Signal Interception

2.2.3.

Jamming and Spoofing Attacks

2.2.3.1.

Detection and Mitigation Techniques

2.2.3.2.

Impact on Service Availability

2.2.3.3.

Countermeasures and Resilience

2.2.4.

Security of RAN Interfaces

2.2.4.1.

F1 Interface Security

2.2.4.2.

E1 Interface Security

2.2.4.3.

Xn Interface Security

2.2.4.4.

NG Interface Security

2.2.4.5.

Interface Encryption

2.2.4.6.

Authentication of RAN Elements

2.2.4.7.

Protection Against Man-in-the-Middle Attacks

2.3.

Core Network (5GC) Security

2.3.1.

Service-Based Architecture (SBA) Security

2.3.1.1.

Security of Network Functions (NFs)

2.3.1.2.

API Security for NF Communication

2.3.1.3.

Service Registration and Discovery Protection

2.3.2.

Network Function Security

2.3.2.1.

Access and Mobility Management Function (AMF) Security

2.3.2.2.

Session Management Function (SMF) Security

2.3.2.3.

User Plane Function (UPF) Security

2.3.2.4.

Unified Data Management (UDM) Security

2.3.2.5.

Authentication Server Function (AUSF) Security

2.3.2.6.

Network Slice Selection Function (NSSF) Security

2.3.2.7.

Policy Control Function (PCF) Security

2.3.3.

Control Plane Security

2.3.3.1.

Signaling Message Protection

2.3.3.2.

Control Plane Isolation

2.3.3.3.

Secure Protocol Implementation

2.3.4.

User Plane Security

2.3.4.1.

Data Path Isolation

2.3.4.2.

Protection Against Data Leakage

2.3.4.3.

User Data Encryption

2.4.

Multi-Access Edge Computing (MEC) Security

2.4.1.

Securing Edge Nodes and Platforms

2.4.1.1.

Physical Security of Edge Sites

2.4.1.2.

Secure Remote Management

2.4.1.3.

Edge Infrastructure Hardening

2.4.2.

Application Security at the Edge

2.4.2.1.

Application Sandboxing

2.4.2.2.

Secure Application Deployment

2.4.2.3.

Application Lifecycle Management

2.4.3.

Data Privacy in Edge Environments

2.4.3.1.

Data Minimization

2.4.3.2.

Local Data Processing and Storage Security

2.4.3.3.

Cross-Border Data Transfer Controls

2.4.4.

Isolation of Edge Applications

2.4.4.1.

Resource Isolation Mechanisms

2.4.4.2.

Prevention of Cross-Application Attacks

2.4.4.3.

Tenant Separation

Previous

1. Introduction to 5G Cyber Security

Go to top

Next

3. Security of Key 5G Technologies