Network slicing is considered a key enabler to 5th Generation (5G) communication networks. Mobile network operators may deploy network slices-complete logical networks customized for specific services expecting a certain Quality of Service (QoS). New business models like Network Slice-as-a-Service offerings to customers from vertical industries require negotiated Service Level Agreement (SLA) contracts, and network providers need automated enforcement mechanisms to assure QoS during instantiation and operation of slices. In this paper, we focus on ultra-reliable low-latency communication (URLLC). We propose a software architecture for security functions based on offthe-shelf hardware and open-source software and demonstrate, through a series of measurements, that the strict requirements of URLLC services can be achieved. As a real-world example, we perform our experiments using the intrusion prevention system (IPS) Snort to demonstrate the impact of security functions on latency. Our findings lead to the creation of a model predicting the system load that still meets the URLLC latency requirement. We fully disclose the artifacts presented in this paper including pcap traces, measurement tools, and plotting scripts at https://gallenmu.github.io/low-latency.
Having a changing ecosystem in 5G requires coordinating and adapting new security capabilities for Mobile Virtual Network Operators (MVNOs) that can cover several verticals, their new business models, and mode of operation. In such an ecosystem, cloud service providers should offer corresponding security services to MNVOs, regarding the deployment, layer, and configuration of security functions. Furthermore, 5G network slicing requires automated security and orchestration functionality, especially in complex network environments comprising multiple providers and multiple tenants. MNVOs must not only define security‐related Service Level Agreements (SLAs) for new business models but also offer automated security management capabilities to tenants like verticals. To utilize such benefits and toward a secure and flexible 5G architecture, this article investigates MVNOs' security challenges and mitigation mechanisms for cloud layers as well cloud deployments. In addition, in this article the challenges for MVNOs to correlate security events in 5G scenarios are analyzed and a framework for automated security event management is proposed to offer security monitoring and correlation capabilities to mobile network operators, infrastructure service providers, and tenants like verticals.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.