5G Cyber Security

  1. Network Slicing Security
    1. Principles of Network Slice Isolation
      1. Control Plane Isolation
        1. Logical Separation of Control Functions
          1. Access Control Between Slices
            1. Control Message Filtering
            2. User Plane Isolation
              1. Data Path Separation
                1. Traffic Filtering and Policing
                  1. Quality of Service Enforcement
                  2. Management Plane Isolation
                    1. Separate Management Interfaces
                      1. Role-Based Access for Slice Management
                        1. Configuration Isolation
                      2. Slice-Specific Security
                        1. Custom Security Policies per Slice
                          1. Policy Definition and Enforcement
                            1. Compliance Monitoring
                              1. Security Level Agreements
                              2. Slice-Specific Authentication and Authorization
                                1. Unique Credentials per Slice
                                  1. Slice-Level Access Control
                                    1. Multi-Tenant Identity Management
                                    2. Security Service Chaining
                                      1. Slice-Specific Security Functions
                                        1. Security Function Orchestration
                                          1. Dynamic Security Policy Adaptation
                                        2. Inter-Slice and Intra-Slice Security
                                          1. Preventing Lateral Movement Between Slices
                                            1. Segmentation Controls
                                              1. Monitoring for Cross-Slice Activity
                                                1. Slice Boundary Enforcement
                                                2. Securing Communication Within a Slice
                                                  1. Encryption of Intra-Slice Traffic
                                                    1. Integrity Protection for Slice Data
                                                      1. Slice-Internal Access Control
                                                      2. Slice Resource Protection
                                                        1. Resource Quota Enforcement
                                                          1. Performance Isolation
                                                            1. Denial of Service Prevention
                                                          2. Network Slice Lifecycle Security
                                                            1. Secure Slice Creation and Instantiation
                                                              1. Authentication of Slice Requests
                                                                1. Validation of Slice Configuration
                                                                  1. Secure Resource Allocation
                                                                  2. Secure Slice Modification and Termination
                                                                    1. Change Management Controls
                                                                      1. Secure Decommissioning of Resources
                                                                        1. Data Sanitization
                                                                        2. Slice Template Security
                                                                          1. Template Integrity Protection
                                                                            1. Template Access Control
                                                                              1. Version Management
                                                                            2. Security of the Network Slice Selection Function (NSSF)
                                                                              1. NSSF Authentication and Authorization
                                                                                1. Secure NSSF Registration
                                                                                  1. Access Control for Slice Selection
                                                                                  2. Protection of Slice Selection Signaling
                                                                                    1. Signaling Message Integrity
                                                                                      1. Slice Selection Privacy
                                                                                      2. Slice Selection Policy Security
                                                                                        1. Policy Integrity Protection
                                                                                          1. Policy Update Security

                                                                                      Previous

                                                                                      4. Identity, Authentication, and Authorization

                                                                                      Go to top

                                                                                      Next

                                                                                      6. Securing 5G Use Cases