How the 5G Telco Market is Transforming with Lessons Learned from the Enterprise

By

Over the past six months, the term “5G” has become an increasingly regular part of general conversations.  It was a big focus at the recently concluded MWC Barcelona event in February, and industry experts and analysts are working to explain 5G to the layman after national security concerns were raised about letting certain vendors into the buildout of 5G infrastructure in Europe and North America.

Some of the operators in North America, South Korea and Japan are already deploying 5G along with LTE (Long Term Evolution or 4G) in what is called a Non-Stand Alone (NSA) deployment.  

There are many aspects in which 5G is blazing a new path.  It can supply at least 10x more peak data rate (at 10Gbps uplink) than 4G, 10x improvement over latency (at 1ms) than 4G, 1000x capacity expansion over 4G, etc.  An important aspect that often gets lost in the speed and feed platitudes of 5G is literally how transformational it is that the entities in 5G core network communicate with each other.

Until 4G, the wireless core network was architected around nodes (or devices) that had physical and logical interfaces morphed over them with a defined stack of protocol layers.  These layers exchanged signaling/control messages over point-to-point (logical) links with other nodes.  However, in the case of 5G, signaling/control messages between nodes give way to open API calls between virtual network functions (VNF).  Let’s explore this a bit more.

Over the last decade and half, the enterprise world has gone from running monolithic purpose-built applications on dedicated servers (similar to nodes in 4G network), to running modular applications consisting of open microservices exposing open APIs (Representational State Transfer [REST] APIs being the most common) running on a public or private cloud.

With 5G, the telecommunications network is finally making a similar transition.  Functions served by purpose-built nodes in 4G have been abstracted out as VNFs exposing open APIs (RESTful APIs being the preferred choice in 3GPP) running in a cloud.  So, the mode of communication between these VNFs is now leveraging REST API calls instead of exchanging signaling/control messages.  

Interestingly, now the protocol layers involved in some of the control functions have changed over generations of wireless networks.  To illustrate this, let us specifically consider the protocol layers involved in the initial attachment of the mobile device to the network, the authentication of this mobile device and the associated subscriber in the network (see below).

In the case of 2G (GSM/GPRS), the interface between MSC and HLR/VLR is sending mobility management (MM) control messages over links running Signaling System 7 (SS7) protocols.  In the case of 3G (UMTS), lower-level SS7 layers (MTP and SCCP) are replaced by Signaling Transport (SIGTRAN), and NAS mobility management control messages are sent over SS7 protocols running over links using SIGTRAN protocols.  In the case of 4G (LTE), NAS mobility management control messages are sent over S1AP (towards SGW or MME) or DIAMETER (towards HSS) over SCTP.  In all three cases, mobility management control messages are sent using myriad of signaling protocols over point-to-point (logical) links.

In the case of 5G, instead of signaling/control messages, mobility management is achieved through the REST API call over HTTP by a service-consuming VNF, which then goes over a TCP session to a peer service-producing VNF.  To be fair, it is still traversing a protocol stack that consists of HTTP on the top of TCP/IP.  However, the VNF is no longer attached to a node and it can literally move from the core network cloud to the mobile edge cloud while still using same open API to seamlessly communicate with its peer VNF.

It’s important to note that the API calls from 5G VNFs are potentially traversing public networks, and this requires additional security considerations.  This is where Security Edge Protection Proxy (SEPP) function plays an important role in securing the communication between the consumer VNF and the producer VNF.  The SEPP enforces protection policies for application-layer security to ensure the integrity and confidentiality protection for communication between the consumer VNF and the producer VNF – using Javascript Object Notation (JSON) Web Encryption (JWE).

In summary, the transformation of the wireless core network from signaling/control messages exchanging nodes to VNFs designed as microservices calling open APIs that traverse public networks exposes entirely new security vulnerabilities.  This transformation is using a long legacy of all-IP networks and standard IT infrastructures and it exposes the wireless core network to familiar vulnerabilities that the enterprise world has been dealing with.  However, mobile operators are now able to use the security tools that have been in place for many years to protect enterprise applications, such as firewalls, SSL intercept, DDoS protection to address the security vulnerabilities in 5G networks.




Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]


SHARE THIS ARTICLE
Related Articles

Can Science Outsmart Deepfake Deceivers? Klick Labs Proposes an Emerging Solution

By: Alex Passett    3/25/2024

Researchers at Klick Labs were able to identify audio deepfakes from authentic audio recordings via new vocal biomarker technology (alongside AI model…

Read More

Top 5 Best Ways to Integrate Technology for Successful Project-Based Learning

By: Contributing Writer    3/19/2024

Project-based learning, also popularly known as the PBL curriculum, emphasizes using and integrating technology with classroom teaching. This approach…

Read More

How to Protect Your Website From LDAP Injection Attacks

By: Contributing Writer    3/12/2024

Prevent LDAP injection attacks with regular testing, limiting access privileges, sanitizing user input, and applying the proper encoding functions.

Read More

Azure Cost Optimization: 5 Things You Can Do to Save on Azure

By: Contributing Writer    3/7/2024

Azure cost optimization is the process of managing and reducing the overall cost of using Azure. It involves understanding the resources you're using,…

Read More

Massive Meta Apps and Services Outage Impacts Users Worldwide

By: Alex Passett    3/5/2024

Meta's suite of apps and services are experiencing major global outages on Super Tuesday 2024.

Read More