{"id":41799,"date":"2021-07-15T00:00:00","date_gmt":"2021-07-15T00:00:00","guid":{"rendered":"https:\/\/www.trendmicro.com\/en_us\/research\/21\/g\/main-considerations-for-securing-enterprise-5g-networks.html"},"modified":"2021-07-15T00:00:00","modified_gmt":"2021-07-15T00:00:00","slug":"main-considerations-for-securing-enterprise-5g-networks","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/main-considerations-for-securing-enterprise-5g-networks\/","title":{"rendered":"Main Considerations for Securing Enterprise 5G Networks"},"content":{"rendered":"

<\/p>\n

<\/div>\n

Securing the integration of 5G with other technologies<\/span><\/h2>\n

A myriad of technologies can work alongside enterprise 5G. Network slicing, open API, DevOps<\/a>, automation, cloud native, core virtualization, microservices, and machine learning are just a few examples. But the very connections with these and other technologies can also inadvertently expose the network to more threats.<\/p>\n

With the goal of securely integrating these technologies with 5G, enterprises should establish an onboarding process that identifies security demands as a response to their inherent characteristics, such as their service provider, vendor, configurations, security controls, and environment.<\/p>\n

For example, through network slicing, enterprises can perform microsegmentation on the network level. It provides hybrid (private\/public 5G) concepts of network isolation, or network separation by use cases such as healthcare, internet of things (IoT)<\/a>, and connected cars<\/a>. At this point, it is necessary to consider the security measurements and controls, such as IT\/OT clean pipes<\/a> and application-based security, that are specific to a particular use case.<\/p>\n

Security considerations for enterprise 5G networks<\/span><\/h2>\n

Of course, besides the technologies linked to 5G, it is also important to secure the elements within the network itself. Here are some of these components and their corresponding pressing security considerations.<\/p>\n

Core services security<\/b><\/p>\n

It can be said that the foundation of 5G core service security is virtualization infrastructure and technology innovation security. In addition to the underlying security mechanisms, enterprises must also look at the importance of day-to-day operations from a security perspective, as core services govern 5G control and management elements.<\/p>\n

Security considerations for these include zoning for communication controls, integration with security operations centers (SOCs), and realizing the proof of concept of the security functions.<\/p>\n

MEC security<\/b><\/p>\n

Multiaccess edge computing (MEC) involves moving services and functions to the edge of the network. Virtual machines (VMs) help keep each MEC service operational. For these VM setups, baseline security is nonnegotiable. Further considerations for this include the implementation of strong security controls for the coordination and separation of each service, which results from a deep understanding of each business use case.<\/p>\n

For example, the healthcare industry needs private 5G because hospital use cases require deep medical analytics, and it is necessary to automatically optimize the data scanned by medical machines and relay it to medical professionals\u2019 computers. Here, personal health information, being the usual target of cybercriminal activity, is most in need of protection. This situation requires strict security implementation that is different from mere segmentation provided for other common services.<\/p>\n

RAN security<\/b><\/p>\n

A radio access network (RAN) provides radio connections that help link endpoints and devices to networks (such as 5G ones). The openness of open radio access network (O-RAN) architecture, which aims to establish interoperability standards for RAN, speeds up the transformation of the 5G radio access network industry toward open, intelligent, virtualized, and fully interoperable RANs.<\/p>\n

But leveraging O-RAN solutions to construct RANs also brings cyber risks to enterprises. The decoupled radio unit (RU), distributed unit (DU), and centralized unit (CU) could be developed through open-source platforms, which have vulnerabilities that could be exploited by cybercriminals. Therefore, vulnerability management is vital in the use of open-source platforms and in overall RAN security.<\/p>\n

Endpoint security<\/b><\/p>\n

Endpoints include drones, cranes, and various sensors in factories. Related security considerations include preventing and fighting forms of abuse of endpoints. It is also necessary to consider countermeasures against the exploitation of radio-connected endpoint devices that use new identifiers.<\/p>\n

An example of such abuse is SIM swapping<\/a>, where an attacker installs the endpoint\u2019s SIM card on their own device and uses it to infiltrate the enterprise network, locate and identify vulnerabilities, or attack other devices. <\/p>\n

Securing 5G connections in actual applications<\/span><\/h3>\n

Implementing enterprise 5G security requires understanding not only its technical characteristics but also how the networks are used in enterprise systems. Venues where enterprise 5G is commonly used include smart factories and smart cars.<\/p>\n

Cyber risks in smart factories<\/b><\/p>\n

5G connections provide various benefits in smart factories<\/a>. For example, the wireless connection afforded by 5G for production equipment can significantly reduce wiring work. This makes it possible to quickly and easily lay and reorganize lines, which improves equipment utilization.<\/p>\n

In such an environment, it is necessary to protect intellectual property and other sensitive information as well as the operation of production equipment. However, the precarious connections between IT and OT<\/a> make systems vulnerable to threats. These threats can have serious consequences, such as:<\/p>\n