Implementing 5G Security: 5 Service Provider Priorities & Preferences - Palo Alto Networks

Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda

Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus

Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government

1. 5G security use case priorities during commercial launch

Service providers intend to address immediate security challenges inherent with 5G New Radio (NR) and 5G Next-Gen Core (NGC) by prioritizing these security use cases.

1

Core network signaling security services
2

Cloud RAN fronthaul and backhaul security
3

Core network configuration services, including slice management

2. Top 5 service provider security-as-a-service (SECaaS) priorities

A number of key offerings are central to enhancing the CSP 5G SECaaS portfolio.

1

Application visibility and control for IoT services
2

Subscriber (IMSI) threat correlation
3

Secure applications on the mobile edge
4

Automated cloud-based proactive security for known and unknown attacks
5

Device (IMEI) threat correlation

3. Signaling security crucial to 5G

Current signaling control planes are stable for the most part, but service providers are less confident that this security performance can be duplicated on the 5G control plane.

of CSPs agree signaling storms will be more common in 5G NR RAN and 5G NGC

of CSPs agree signaling security between inter-operator networks (roaming) will be crucial in 5G

4. Full content inspection a must-have

Full content inspection enhances visibility into RAN and Core and is fast becoming an extremely important “must-have” network security capability to CSPs.

agree full content inspection is vital in 5G NR RAN
agree full content inspection is vital in 5G/NGC
agree full content inspection is vital in roaming
agree full content inspection is vital in Gi/SGi interface
agree full content inspection is vital in MEC cloud

5. Threat correlation: a critical requirement

Full content inspection enhances visibility into RAN and Core and is fast becoming an extremely important “must-have” network security capability to CSPs.

IMSI

of CSPs rated subscriber (IMSI) correlation to threats and vulnerabilities a critical security service
IMEI

of CSPs rated device (IMEI) correlation to threats and vulnerabilities a critical security service

Although security challenges await at the inaugural phase of the 5G rollout, CSPs have clear insight into strategic security use case priorities that will guarantee success.

WANT TO LEARN MORE?

Source

"Heavy Reading's 2019 5G Security Survey," Heavy Reading, February 2019.