Providing strong 5G mobile network slice isolation for highly sensitive third-party services

Schneider, Peter; Mannweiler, Christian; Kerboeuf, Sylvaine

doi:10.1109/wcnc.2018.8377166

Cited by 32 publications

(25 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Complexity in the case of multi-domain infrastructure is a risk for security and raises challenges [21]. In a scenario where the network slices may be created by an organization like a MNO and rented out to 3rd-party organizations like enterprises, network slices relying solely on common infrastructure cannot meet the highest isolation requirements [45]. Isolation within these scenarios is still a hot research topic.…”

Section: B Isolationmentioning

confidence: 99%

5G Network Slicing: A Security Overview

Olimid

Nencioni

2020

IEEE Access

View full text Add to dashboard Cite

The fifth-generation (5G) of cellular networks is currently under deployment by network operators, and new 5G end-user devices are about to be commercialized by many manufacturers. This is just a first step in the 5G's development, and the true potential of 5G is still far from being reached. Currently, one of the main 5G technologies under the interest of the research community is the network slicing. Network slicing will allow exploiting the 5G infrastructure to flexibly and efficiently provide heterogeneous services (e.g., voice communication, video streaming, e-health, vehicular communication). Like every new technology, one of the critical aspects that need to be considered is the security. In this article, we spotlight the security in 5G network slicing. We highlight threats and recommendations, which are presented in terms of life-cycle security, intra-slice security, and inter-slice security. Furthermore, we identify and discuss open security issues related to network slicing. INDEX TERMS 5G, Network Slicing, Security.

show abstract

Section: B Isolationmentioning

confidence: 99%

5G Network Slicing: A Security Overview

Olimid

Nencioni

2020

IEEE Access

View full text Add to dashboard Cite

show abstract

“…The authors in [13] outlined the recent trends and proposed a set of challenges to realize end-to-end user's security based on slices isolation. For the combination of private and public network infrastructure, several deployment models were introduced in [14] to provide strong network slice isolation for the third parties. However, they just showed the qualitative analysis of different deployment approaches.…”

Section: A Network Slice Isolationmentioning

confidence: 99%

Side Channel Attack-Aware Resource Allocation for URLLC and eMBB Slices in 5G RAN

Zhao

et al. 2020

IEEE Access

View full text Add to dashboard Cite

Network slicing is a key enabling technology to realize the provisioning of customized services in 5G paradigm. Due to logical isolation instead of physical isolation, network slicing is facing a series of security issues. Side Channel Attack (SCA) is a typical attack for slices that share resources in the same hardware. Considering the risk of SCA among slices, this paper investigates how to effectively allocate heterogeneous resources for the slices under their different security requirements. Then, a SCA-aware Resource Allocation (SCA-RA) algorithm is proposed for Ultra-reliable and Low-latency Communications (URLLC) and Enhanced Mobile Broadband (eMBB) slices in 5G RAN. The objective is to maximize the number of slices accommodated in 5G RAN. With dynamic slice requests, simulation is conducted to evaluate the performance of the proposed algorithm in two different network scenarios. Simulation results indicate that compared with benchmark, SCA-RA algorithm can effectively reduce blocking probability of slice requests. In addition, the usage of IT and transport resources is also optimized. INDEX TERMS Network slicing, resource allocation, side channel attack, 5G RAN.

show abstract

“…There are various critical gaps in the literature and architectural deployments related to management and orchestration, accountability, compliance, and liability, as well as performance and resilience. For example, there is no established security architecture for network slice deployment models which include 3rd-party-owned network infrastructure to implement highly secure mobile communication services across public and private infrastructure domains [26].…”

Section: (#8) Lack Of a Refined 5g Security Architecture Designmentioning

confidence: 99%

“…(#9) Lack of a Self-Adaptive and Slice-Aware Model for Security. E2E network slicing demands a revaluation and research on various aspects of traditional security (e.g., privacy, integrity, zoning, monitoring, and risk mitigation) [26].…”

Section: (#8) Lack Of a Refined 5g Security Architecture Designmentioning

confidence: 99%

A Flexible Network Architecture for 5G Systems

Shariat

Bulakçı

Domenico

et al. 2019

Wireless Communications and Mobile Computing

Self Cite

View full text Add to dashboard Cite

In this paper, we define a flexible, adaptable, and programmable architecture for 5G mobile networks, taking into consideration the requirements, KPIs, and the current gaps in the literature, based on three design fundamentals: (i) split of user and control plane, (ii) service-based architecture within the core network (in line with recent industry and standard consensus), and (iii) fully flexible support of E2E slicing via per-domain and cross-domain optimisation, devising inter-slice control and management functions, and refining the behavioural models via experiment-driven optimisation. The proposed architecture model further facilitates the realisation of slices providing specific functionality, such as network resilience, security functions, and network elasticity. The proposed architecture consists of four different layers identified as network layer, controller layer, management and orchestration layer, and service layer. A key contribution of this paper is the definition of the role of each layer, the relationship between layers, and the identification of the required internal modules within each of the layers. In particular, the proposed architecture extends the reference architectures proposed in the Standards Developing Organisations like 3GPP and ETSI, by building on these while addressing several gaps identified within the corresponding baseline models. We additionally present findings, the design guidelines, and evaluation studies on a selected set of key concepts identified to enable flexible cloudification of the protocol stack, adaptive network slicing, and inter-slice control and management.

show abstract

Providing strong 5G mobile network slice isolation for highly sensitive third-party services

Cited by 32 publications

References 1 publication

5G Network Slicing: A Security Overview

5G Network Slicing: A Security Overview

Side Channel Attack-Aware Resource Allocation for URLLC and eMBB Slices in 5G RAN

A Flexible Network Architecture for 5G Systems

Contact Info

Product

Resources

About