Securing 5G and Evolving Architectures/ Nair, Pramod.

By:

Nair, Pramod [author.]

Contributor(s):

Material type: Text

TextPublisher: Boston: Addison-Wesley Professional, 2021Edition: 1st editionDescription: 1 online resource (504 pages)Content type:

text

Media type:

computer

Carrier type:

online resource

ISBN:

9780137458097
0137458096
0137458045
9780137458042

Subject(s):

Genre/Form:

DDC classification:

384.5 NPS 23

LOC classification:

TK5103.25

Online resources:

Click here to access online

Contents:

Foreword xv Preface xvi Acknowledgments xxi About the Author xxii Part I Evolution of Cellular Technologies to 5G, Security Enhancements, and Challenges Chapter 1: Evolution from 4G to 5G 2 Mobile Network Evolution from 4G to 5G.. . . . . . . . . . . . . . . . . . 4 Key 5G Features in 3GPP Releases.. . . . . . . . . . . . . . . . . . . . 18 Key 5G Advanced Features.. . . . . . . . . . . . . . . . . . . . . . . 20 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24 Chapter 2: Deployment Modes in 5G 26 5G NSA and SA Deployments.. . . . . . . . . . . . . . . . . . . . . . 27 5G Time-Sensitive Networks.. . . . . . . . . . . . . . . . . . . . . . . 42 5G Local Area Network–Type Service.. . . . . . . . . . . . . . . . . . . 44 Private 5G/Non-Public Networks.. . . . . . . . . . . . . . . . . . . . . 46 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54 Chapter 3: Securing 5G Infrastructure 56 3GPP 5G Security Enhancements.. . . . . . . . . . . . . . . . . . . . . 57 Security Challenges in 5G. . . . . . . . . . . . . . . . . . . . . . . . 74 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77 Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80 Part II Securing 5G Architectures, Deployment Modes, and Use Cases Chapter 4: Securing RAN and Transport Deployments in 5G 82 5G RAN and Transport Threats. . . . . . . . . . . . . . . . . . . . . . 84 Securing 5G RAN and Transport.. . . . . . . . . . . . . . . . . . . . . 92 Real Scenario Case Study: Examples of Threat Surfaces and Their Mitigation. . 125 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140 Chapter 5: Securing MEC Deployments in 5G 142 Service Provider Network-Based MEC.. . . . . . . . . . . . . . . . . . 144 Enterprise Network-Based MEC.. . . . . . . . . . . . . . . . . . . . . 145 MEC Deployment Models.. . . . . . . . . . . . . . . . . . . . . . . . 146 Threat Surfaces in 5G MEC Deployments.. . . . . . . . . . . . . . . . . 154 Securing 5G MEC.. . . . . . . . . . . . . . . . . . . . . . . . . . . 178 Real Scenario Case Study: MEC Threats and Their Mitigation.. . . . . . . . . 217 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233 Chapter 6: Securing Virtualized 5G Core Deployments 234 A Brief Evolution of Virtualization in Telecommunications.. . . . . . . . . . . 235 Threats in Virtualized 5G Packet Core Deployments.. . . . . . . . . . . . . 240 Securing Virtualized 5G Packet Core Deployments.. . . . . . . . . . . . . 257 Real Scenario Case Study: Virtualized 5GC Threats and Mitigation.. . . . . . . 281 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 290 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 296 Chapter 7: Securing Network Slice, SDN, and Orchestration in 5G 298 Network Slicing and Its Enablers—SDN and Orchestration. . . . . . . . . . 299 Threat Surfaces in 5G Network Slice, SDN, and Orchestration Deployments.. . . 309 Mitigation of Threats.. . . . . . . . . . . . . . . . . . . . . . . . . . 327 Real Scenario Case Study: Threats in the 5G Network Slice, SDN, and Orchestration Deployments and Their Mitigation. . . . . . . . . . . . . 355 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 369 Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 372 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 374 Chapter 8: Securing Massive IoT Deployments in 5G 376 Massive IoT–Based Threats in 5G.. . . . . . . . . . . . . . . . . . . . 380 Securing mIoT Deployments in 5G Networks.. . . . . . . . . . . . . . . . 391 Real Scenario Case Study: mIoT Threats and Their Mitigation.. . . . . . . . . 414 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 418 Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 420 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 422 Chapter 9: Securing 5G Use Cases 424 Secure 5G Smart Factory and Manufacturing. . . . . . . . . . . . . . . . 425 Critical Infrastructure.. . . . . . . . . . . . . . . . . . . . . . . . . . 437 5G Vehicle-to-Everything (5G-V2X).. . . . . . . . . . . . . . . . . . . . 447 Standards and Associations.. . . . . . . . . . . . . . . . . . . . . . . 463 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 465 Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 465 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 467 Part III End-to-End 5G Security Architecture and Prioritizing Security Investments Chapter 10: Building Pragmatic End-to-End 5G Security Architecture 468 Foundations of 5G Security.. . . . . . . . . . . . . . . . . . . . . . . 470 Key Tenets of 5G Security Architecture.. . . . . . . . . . . . . . . . . . 472 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 497 Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 498 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 501 Chapter 11: Prioritizing 5G Security Investments 502 Method of Prioritizing Security Controls.. . . . . . . . . . . . . . . . . . 505 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 532 Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 533 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 534 Part IV Emerging Discussions Chapter 12: 5G and Beyond 536 Adoption and Adaptability of 5G and Evolving Technologies.. . . . . . . . . 537 Convergence of Wi-Fi and Evolving Cellular Technologies.. . . . . . . . . . 539 Use of AI and ML in Securing 5G and Evolving Networks.. . . . . . . . . . . 543 Crypto Agility in 5G and Evolving Technologies.. . . . . . . . . . . . . . . 546 Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 548 Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 548 References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 550 9780137457939, TOC, 10/27/2021

Summary: This practical guide employs real-world use cases and deployment methods to address the threat vectors and mitigation techniques to secure 5G networks. 5G is a disruptive technology not only because it has the potential to support millions of devices at ultrafast speeds, but also because it has the potential to transform the lives of people around the world by improving mission-critical services that affect the safety and security of different services. 5G is susceptible to many of the cybersecurity risks found in today's existing telecom networks but also to new avenues of attack against core network services due to its complex ecosystem of technologies, stakeholders and operations, which include containerized networks, multi-access edge compute (MEC) deployments, services-based architecture, introduction of API interfaces and new use cases catering to enterprise, industrial, health and IoT services. Due to the critical services being provided by 5G and its increased threat surfaces, having a solid security architecture to detect and mitigate these threats is very important. Security is always an important area, especially as it relates to emerging technologies, but it is often the last aspect to be covered. This book is an essential guide to different deployment methods, threat surfaces based on those deployment scenarios, and methods to mitigate them efficiently. It is also a critical resource for any individual or enterprise (from any industrial sector) planning to evolve towards 5G technology and anyone designing 5G networks because it addresses the security implications up front.

Average rating: 0.0 (0 votes)

Holdings
Item type	Current library	Collection	Call number	Copy number	Status	Date due	Barcode
Books	Main library	Computers & Information Technology ( Computer Science )	384.5 NPS (Browse shelf(Opens below))	C.1	Available		00017702

Browsing Main library shelves Close shelf browser (Hides shelf browser)

Previous	No cover image available					No cover image available		Next
Previous	384.091751 T التجارة في الخدمات : الاتصالات : دراسات حالة : مصر والأردن ولبنان /	384.0954 S.V.T The telecom revolution in India : technology, regulation, and policy /	384.3 F.R.M Managing Internet-driven change in international telecommunications /	384.5 NPS Securing 5G and Evolving Architectures/	384.54091767 C Culture wars : the Arabic music video controversy and other studies in satellite broadcasting in the Arab and Islamic worlds.	384.540973 B.E.I A history of broadcasting in the United States.	384.80973 B.G.U Understanding the business of entertainment : the legal and business essentials all filmmakers should know /	Next

Foreword xv

Preface xvi

Acknowledgments xxi

About the Author xxii

Part I Evolution of Cellular Technologies to 5G, Security Enhancements, and Challenges

Chapter 1: Evolution from 4G to 5G 2

Mobile Network Evolution from 4G to 5G.. . . . . . . . . . . . . . . . . . 4

Key 5G Features in 3GPP Releases.. . . . . . . . . . . . . . . . . . . . 18

Key 5G Advanced Features.. . . . . . . . . . . . . . . . . . . . . . . 20

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Chapter 2: Deployment Modes in 5G 26

5G NSA and SA Deployments.. . . . . . . . . . . . . . . . . . . . . . 27

5G Time-Sensitive Networks.. . . . . . . . . . . . . . . . . . . . . . . 42

5G Local Area Network–Type Service.. . . . . . . . . . . . . . . . . . . 44

Private 5G/Non-Public Networks.. . . . . . . . . . . . . . . . . . . . . 46

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

Chapter 3: Securing 5G Infrastructure 56

3GPP 5G Security Enhancements.. . . . . . . . . . . . . . . . . . . . . 57

Security Challenges in 5G. . . . . . . . . . . . . . . . . . . . . . . . 74

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

Part II Securing 5G Architectures, Deployment Modes, and Use Cases

Chapter 4: Securing RAN and Transport Deployments in 5G 82

5G RAN and Transport Threats. . . . . . . . . . . . . . . . . . . . . . 84

Securing 5G RAN and Transport.. . . . . . . . . . . . . . . . . . . . . 92

Real Scenario Case Study: Examples of Threat Surfaces and Their Mitigation. . 125

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140

Chapter 5: Securing MEC Deployments in 5G 142

Service Provider Network-Based MEC.. . . . . . . . . . . . . . . . . . 144

Enterprise Network-Based MEC.. . . . . . . . . . . . . . . . . . . . . 145

MEC Deployment Models.. . . . . . . . . . . . . . . . . . . . . . . . 146

Threat Surfaces in 5G MEC Deployments.. . . . . . . . . . . . . . . . . 154

Securing 5G MEC.. . . . . . . . . . . . . . . . . . . . . . . . . . . 178

Real Scenario Case Study: MEC Threats and Their Mitigation.. . . . . . . . . 217

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233

Chapter 6: Securing Virtualized 5G Core Deployments 234

A Brief Evolution of Virtualization in Telecommunications.. . . . . . . . . . . 235

Threats in Virtualized 5G Packet Core Deployments.. . . . . . . . . . . . . 240

Securing Virtualized 5G Packet Core Deployments.. . . . . . . . . . . . . 257

Real Scenario Case Study: Virtualized 5GC Threats and Mitigation.. . . . . . . 281

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 290

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 296

Chapter 7: Securing Network Slice, SDN, and Orchestration in 5G 298

Network Slicing and Its Enablers—SDN and Orchestration. . . . . . . . . . 299

Threat Surfaces in 5G Network Slice, SDN, and Orchestration Deployments.. . . 309

Mitigation of Threats.. . . . . . . . . . . . . . . . . . . . . . . . . . 327

Real Scenario Case Study: Threats in the 5G Network Slice, SDN, and Orchestration Deployments and Their Mitigation. . . . . . . . . . . . . 355

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 369

Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 372

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 374

Chapter 8: Securing Massive IoT Deployments in 5G 376

Massive IoT–Based Threats in 5G.. . . . . . . . . . . . . . . . . . . . 380

Securing mIoT Deployments in 5G Networks.. . . . . . . . . . . . . . . . 391

Real Scenario Case Study: mIoT Threats and Their Mitigation.. . . . . . . . . 414

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 418

Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 420

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 422

Chapter 9: Securing 5G Use Cases 424

Secure 5G Smart Factory and Manufacturing. . . . . . . . . . . . . . . . 425

Critical Infrastructure.. . . . . . . . . . . . . . . . . . . . . . . . . . 437

5G Vehicle-to-Everything (5G-V2X).. . . . . . . . . . . . . . . . . . . . 447

Standards and Associations.. . . . . . . . . . . . . . . . . . . . . . . 463

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 465

Key Acronyms.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 465

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 467

Part III End-to-End 5G Security Architecture and Prioritizing Security Investments

Chapter 10: Building Pragmatic End-to-End 5G Security Architecture 468

Foundations of 5G Security.. . . . . . . . . . . . . . . . . . . . . . . 470

Key Tenets of 5G Security Architecture.. . . . . . . . . . . . . . . . . . 472

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 497

Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 498

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 501

Chapter 11: Prioritizing 5G Security Investments 502

Method of Prioritizing Security Controls.. . . . . . . . . . . . . . . . . . 505

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 532

Acronyms Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . 533

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 534

Part IV Emerging Discussions

Chapter 12: 5G and Beyond 536

Adoption and Adaptability of 5G and Evolving Technologies.. . . . . . . . . 537

Convergence of Wi-Fi and Evolving Cellular Technologies.. . . . . . . . . . 539

Use of AI and ML in Securing 5G and Evolving Networks.. . . . . . . . . . . 543

Crypto Agility in 5G and Evolving Technologies.. . . . . . . . . . . . . . . 546

Summary.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 548

Acronym Key.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 548

References.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 550

9780137457939, TOC, 10/27/2021

This practical guide employs real-world use cases and deployment methods to address the threat vectors and mitigation techniques to secure 5G networks. 5G is a disruptive technology not only because it has the potential to support millions of devices at ultrafast speeds, but also because it has the potential to transform the lives of people around the world by improving mission-critical services that affect the safety and security of different services. 5G is susceptible to many of the cybersecurity risks found in today's existing telecom networks but also to new avenues of attack against core network services due to its complex ecosystem of technologies, stakeholders and operations, which include containerized networks, multi-access edge compute (MEC) deployments, services-based architecture, introduction of API interfaces and new use cases catering to enterprise, industrial, health and IoT services. Due to the critical services being provided by 5G and its increased threat surfaces, having a solid security architecture to detect and mitigate these threats is very important. Security is always an important area, especially as it relates to emerging technologies, but it is often the last aspect to be covered. This book is an essential guide to different deployment methods, threat surfaces based on those deployment scenarios, and methods to mitigate them efficiently. It is also a critical resource for any individual or enterprise (from any industrial sector) planning to evolve towards 5G technology and anyone designing 5G networks because it addresses the security implications up front.