-
5G Security News
European Parliament adopted the report on the security and defence implications of China’s influence on critical infrastructure in the European Union
Yesterday, the European Parliament adopted the resolution of 17 January 2024 on the security and defence implications of China’s influence on critical infrastructure in the European Union addressing several key concerns and recommendations including: China’s Economic Influence: The resolution highlights the risks arising from economic flows and dependencies on authoritarian regimes like China, particularly in the context of geopolitical tensions and technological shifts. It emphasizes the need to protect free market principles from distortion by…
Read More » -
Open RAN News
DISH Wireless Receives $50M Grant for Open RAN Center for Integration & Deployment
DISH Wireless received $50 million grant from the National Telecommunications and Information Administration (NTIA) of the U.S. Department of Commerce. This funding is allocated for establishing the Open RAN Center for Integration & Deployment (ORCID). ORCID’s primary role will be to facilitate testing and validation of various hardware and software solutions, including RU, DU, and CU, against DISH’s fully operational commercial-grade Open RAN network. This grant is the largest ever awarded by NTIA under the…
Read More » -
5G Security News
European Commission publishes second report on Member States’ progress in implementing the EU Toolbox on 5G Cybersecurity
The European Commission and the EU Agency for Cybersecurity (ENISA), published a second progress report on the implementation of the EU Toolbox on 5G cybersecurity. This report also addresses recommendations from the European Court of Auditors’ Special Report of January 2022. Additionally, the Commission adopted a Communication on the implementation of the toolbox by Member States and in the EU’s corporate communications and funding activities. Key points from the report and the Commission’s Communication include:…
Read More » -
Open RAN News
NTIA Publishes Open RAN Security Report
National Telecommunications and Information Administration (NTIA) of the United States Department of Commerce published “Open RAN Security Report” outlining cybersecurity considerations associated with using Open Radio Access Networks (Open RAN) as an approach to developing network architecture. The report provides an in-depth analysis of the security implications associated with Open Radio Access Networks (Open RAN), comparing them to traditional RAN deployments. The report concludes that Open RAN does not significantly alter the overall security risk…
Read More » -
Open RAN News
CISA and NSA Publish Open Radio Access Network Security Considerations
CISA and the National Security Agency (NSA) have published Open Radio Access Network Security Considerations. This product—generated by the Enduring Security Framework (ESF) Open Radio Access Network (RAN) Working Panel, a subgroup within the cross-sector working group—assessed the benefits and security considerations associated with implementing an Open RAN architecture. Focusing on current designs and specification standards, the ESF Open RAN Working Panel examined how security compares with, and is distinct from, traditional, proprietary RANs. The…
Read More » -
5G Security News
RAND publishes “Securing 5G – A Way Forward in the U.S. and China Security Competition”
RAND Corporation just published a new research report: “Securing 5G – A Way Forward in the U.S. and China Security Competition.” The report examines 5G security issues, the 5G supply chain, and the competitive landscape in 5G equipment. It describes where U.S. or Chinese companies have technology or market advantages in the emerging 5G security competition between the United States and China and provides recommendations for securing U.S. 5G networks. The report correctly views the…
Read More » -
5G Security News
NIST publishes draft of 5G Cybersecurity Practice Guide
National Cybersecurity Center of Excellence (NCCoE) of the U.S. National Institute of Standards and Technology (NIST) just published the second portion of a preliminary draft practice guide for “5G Cybersecurity” – Special Publication SP 1800-33B 5G Cybersecurity – Volume B: Approach, Architecture, and Security Characteristics. This volume is intended for technology, security, and privacy program managers who are concerned with how to identify, understand, assess, and mitigate risk for 5G networks. This comes 14 months…
Read More » -
5G Security News
US DoD offering up to $3 million to help make 5G more compatible
The United States Department of Defense (DoD), in collaboration with the National Telecommunications and Information Administration’s (NTIA) Institute for Telecommunication Sciences (ITS), announced today the launch of the 5G Challenge Preliminary Event: RAN Subsystem Interoperability. This competition aims to accelerate the development and adoption of open interfaces, interoperable components, and multi-vendor solutions toward the development of an open 5G ecosystem. DoD has started significant investments in 5G since it wants to create data-centric weapons systems…
Read More » -
5G Security News
OIC-CERT promotes its 5G security framework as GISEC
OIC-CERT is the the Computer Emergency Response Team of The Organisation of Islamic Cooperation. I’ve been following their excellent efforts around 5G security for a while and was glad to see how seriously they are taking it. For example, about a year ago OIC-CERT published “Achieving 5G Security through Open Standards“. The organization also recently held a 5G Security Framework Workshop And now it has started rolling-out of the OIC-CERT 5G Security Framework Adoption at…
Read More » -
5G Security News
CSIS publishes study “The Two Technospheres”
The Center for Strategic and International Studies (CSIS), a Washington, D.C.-based think tank, published an interesting study on the cybersecurity implications of the “decoupling” of Chinese and Western technology spheres and warns of more aggressive offensive cyber operations to come.The study, “The Two Technospheres: Western-Chinese Technology Decoupling: Implications for Cybersecurity” focuses on digital decoupling—establishment of two “technospheres”, one driven by China and the other by companies and governments in Western nations. The study finds that…
Read More » -
5G Security News
ENISA Publishes 5G Cybersecurity Standards
European Union Agency for Cybersecurity (ENISA) published 5G Cybersecurity Standards report focused on 5G cybersecurity standardisation from a technical and organisational perspective. The report aims to highlight the role of standardization in reducing technical risks and enhancing trust and resilience within the 5G ecosystem. It examines the 5G landscape, which includes technological, functional, process, and stakeholder dimensions. The report’s focus is on the technical and organizational aspects of standardization, excluding the effectiveness of specific standards…
Read More » -
5G Security News
ENISA publishes NFV Security in 5G report
The EU Agency for Cybersecurity (ENISA) continues its excellent effort on 5G security by issuing a report with suggested good practices for the secure deployment of Network Function Virtualisation (NFV) in 5G networks. The report identifies some 60 security challenges for NFV, which it groups in seven categories: Virtualisation or containerisation; Orchestration and management; Administration and access control; New and legacy technologies; Adoption of open source or COTS; Supply chain; Lawful interception (LI). It analyses…
Read More » -
5G Security News
Vodafone’s 5G network in Portugal hit by cyber-attack
The attack, discovered on Monday night, impacted the 4g/5g network, TV, voice services, and SMS services provided to more than seven million people. While the company was able to restore 3G services, others remained impacted. It even affected the ATM network of some large banks connected to the Vodafone 4g network. Vodafone called the incident “a deliberate and malicious attack intended to cause damage.” Mário Vaz, CEO of Vodafone Portugal, said in a statement that…
Read More » -
5G Security News
US FCC asking $5.6B to replace Chinese networking equipment
The US Federal Communications Commission (FCC) Chairwoman is asking $5.6B from Congress seeks to reimburse carriers for removing and replacing insecure 5G networking equipment – those made by banned Chinese vendors Huawei and ZTE. Congress had initially set aside $1.9B for the replacement program under The Supply Chain Reimbursement Program created by the Secure and Trusted Communications Networks Act. However, after FCC received 181 applications from carriers, the total cost has been estimated to $5.6B…
Read More » -
5G Security News
EU auditors issue a report on delays and security risks in the rollout of 5G networks
The EU Court of Auditors issued a special report “5G roll–out in the EU: delays in deployment of networks with security issues remaining unresolved” in which EU auditors are raising an alarm. According to the report, 5G services are seen as essential for a wide range of innovative applications which have the potential to transform many sectors of our economies and improve citizens’ daily lives. 5G is therefore of strategic importance for the entire single…
Read More » -
5G Security News
NSA and CISA Release Part IV of Guidance on Securing 5G Cloud Infrastructures
The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) recently released the first of a four part series titled Security Guidance for 5G Cloud Infrastructures. This series of four action-oriented documents is intended to provide guidance on how to move toward zero trust in support of securing 5G. It’s been created as a joint industry and government effort with the support of several large contributors through the NSA’s Enduring Security…
Read More » -
5G Security News
NSA and CISA Release Part III of Guidance on Securing 5G Cloud Infrastructures
The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) recently released the first of a four part series titled Security Guidance for 5G Cloud Infrastructures. This series of four action-oriented documents is intended to provide guidance on how to move toward zero trust in support of securing 5G. It’s been created as a joint industry and government effort with the support of several large contributors through the NSA’s Enduring Security…
Read More » -
5G Security News
NSA and CISA Release Part II of Guidance on Securing 5G Cloud Infrastructures
The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) recently released the first of a four part series titled Security Guidance for 5G Cloud Infrastructures. This series of four action-oriented documents is intended to provide guidance on how to move toward zero trust in support of securing 5G. It’s been created as a joint industry and government effort with the support of several large contributors through the NSA’s Enduring Security…
Read More » -
5G Security News
NSA and CISA Release Part I of Guidance on Securing 5G Cloud Infrastructures
The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) recently released the first of a four part series titled Security Guidance for 5G Cloud Infrastructures. This series of four action-oriented documents is intended to provide guidance on how to move toward zero trust in support of securing 5G. It’s been created as a joint industry and government effort with the support of several large contributors through the NSA’s Enduring Security…
Read More » -
5G Security News
A text message routing company suffers possibly a massive mobile network privacy breach
Syniverse is a critical part of the global telecom infrastructure. It connects 300+ cell phone networks globally and acts as an intermediary for billing records and text messages sent between cell phone networks. In the Securities and Exchange Commission filing Syniverse published last week the company disclosed that in May 2021 it “…became aware of unauthorized access to its operational and information technology systems by an unknown individual or organization.” It also revealed that the…
Read More »