5G Security News

NSA and CISA Release Part II of Guidance on Securing 5G Cloud Infrastructures

Photo of Marin Ivezic Marin IvezicNovember 19, 2021
1 minute read
NSA CISA Securing 5G

The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) recently released the first of a four part series titled Security Guidance for 5G Cloud Infrastructures. This series of four action-oriented documents is intended to provide guidance on how to move toward zero trust in support of securing 5G. It’s been created as a joint industry and government effort with the support of several large contributors through the NSA’s Enduring Security Framework (ESF).

This second release in the series is titled Security Guidance for 5G Cloud Infrastructures – Part II: Securely Isolate Network Resources [PDF] with the focus on ensuring that there is secure isolation among customer resources with emphasis on securing the container stack that supports the running of virtual network functions.

The guidance focuses on “pods” isolated environments used to execute 5G network functions in a 5G container-centric or hybrid container/virtual network function design and deployment and it describes several aspects of Pod security including:

  • Strengthening Pod isolation, such as limiting permissions on deployed containers;
  • Cryptographically isolating critical Pods using trusted execution environments;
  • Using best practices to avoid resource contention & DOS attacks;
  • Implementing container image security through build processes, scanning, and
    enhancements to the trust environment; and
  • Implementing real-time threat detection through minimizing noise, curating baseline
    behavior, and alerting on anomalous activity.

For more information see the release on the CISA website: https://www.cisa.gov/uscert/ncas/current-activity/2021/11/19/nsa-and-cisa-release-guidance-securing-5g-cloud-infrastructures

The guidance is available here [PDF]: Security Guidance for 5G Cloud Infrastructures – Part II: Securely Isolate Network Resources

All the guidance papers and other useful information will be available at the CISA’s 5G Security and Resilience page or at the NSA’s Enduring Security Framework (ESF) page.

Avatar of Marin Ivezic
Marin Ivezic
Website | Other articles

For over 30 years, Marin Ivezic has been protecting critical infrastructure and financial services against cyber, financial crime and regulatory risks posed by complex and emerging technologies.

He held multiple interim CISO and technology leadership roles in Global 2000 companies.

Photo of Marin Ivezic Marin IvezicNovember 19, 2021
1 minute read

Related Articles

Switzerland 5G

Swisscom debuts Europe’s first 5G service

April 10, 2019
5G Rollout EU

EU auditors issue a report on delays and security risks in the rollout of 5G networks

January 24, 2022
NSA CISA Securing 5G

NSA and CISA Release Part IV of Guidance on Securing 5G Cloud Infrastructures

December 27, 2021
Huawei Position Paper Cybersecurity

Huawei releases its position paper on cyber security

November 18, 2019
© Copyright 2024, All Rights Reserved Marin Ivezic
Back to top button
Share via
Facebook
X (Twitter)
LinkedIn
Mix
Pinterest
Tumblr
Skype
Buffer
Pocket
VKontakte
Parler
Xing
Reddit
Line
Flipboard
MySpace
Delicious
Amazon
Digg
Evernote
Blogger
LiveJournal
Baidu
MeWe
NewsVine
Yummly
Yahoo
WhatsApp
Viber
SMS
Telegram
Facebook Messenger
Like
Email
Print
Copy Link
Powered by Social Snap
Copy link
CopyCopied
Powered by Social Snap