The University of Southampton
University of Southampton Institutional Repository

5G-ENSURE - D3.1 5G-PPP security enablers technical roadmap (early vision)

5G-ENSURE - D3.1 5G-PPP security enablers technical roadmap (early vision)
5G-ENSURE - D3.1 5G-PPP security enablers technical roadmap (early vision)
This document provides an early vision (at M4) of the 5G security and privacy enablers proposed by the 5G-ENSURE project, and that are planned to be developed through two major releases: v1.0 (R1) due at M11/Sep’16 and v2.0 (R2) due at M22/Aug’17. It details the Technical Roadmap for v1.0 (R1) in terms of enablers in scope and their features, while providing insights for v2.0 (R2) enablers that will be fully detailed in an update of this deliverable (D3.5 due at M13/Nov’16) taking account of the progress and achievements made by that time. Enablers envisioned are here presented organized in categories, which represent major security areas recognized as topmost priorities for 5G-PPP & 5G Security: Authentication, Authorization and Accountability (AAA); Privacy; Trust; Security Monitoring and Network management & virtualization isolation. They are also presented following a common template covering each of the following key aspects: product vision, technology area, security aspects, security challenges, technical roadmap for first release vs. next release.

In the AAA category the main focus is on 5G users’ authentication, authorization and accounting, but the contribution of the AAA enablers goes beyond the incremental improvements to security that one would expect in a next-generation network. The evolving 5G network will support an unpredictable number of devices due to the boom of Internet of Things (IoT), whose security these enablers will aim to address. Moreover, the enablers target to integrate authentication and authorization functions between satellite and terrestrial systems.

The main objective of the 5G-Ensure Privacy enablers is to identify in advance 5G user privacy requirements and to provide security mechanisms able to prevent privacy violations by adopting a proactive, privacy-by-design approach. For each 5G use case, the privacy mitigation technology (e.g., anonymity by using temporary identity, access control mechanisms, new encryption system and procedures, etc.) was also investigated so as to satisfy privacy requirements. The privacy enablers aim to enhance user data protection by proposing solutions at several layers: at the network layer, as well as application layer, i.e., privacy as a service.

The Trust category will provide trust models which will address the complex relationships between the many actors in 5G networks including the machine-to-machine interactions characterising the next generation networks. The trust model needs to address the different aspects of trust, between automated systems (M2Mt), between human stakeholders holding responsibilities for different parts of 5G networks, between user and network operators and between users of the network (U2Ut), trust that a human stakeholder has towards a system (U2Mt), that an automated system (machine) has in users that it interacts with.

5G-ENSURE project also aims at providing new innovative solutions ensuring the highest level of security and resilience in 5G network. Mobile networks will dramatically evolve with the fifth generation of networks compared to 3/4G, in particular with new concepts and technologies such Internet of Things, infrastructure virtualization (SDN, NFV), network resource sharing, new access interfaces, dynamic network topologies, slicing and so forth. These technologies introduce new security and resilience and provide new opportunities to implement extensive and accurate security solutions. Thus, new innovative approaches to predict and counter these challenges will be considered by the category devoted to Monitoring the 5G security.
Thales Services; 5G-ENSURE Consortium
Hiltunen, Jouni
94400aac-78a1-4ddb-b2ca-8db9b1c83086
Mammela, Olli
3b7f2617-e44f-47c1-9abc-1db0b04698cc
Suomalainen, Jani
c6dbb7b9-6256-4af9-bb48-515ba3ff747a
Bisson, Pascal
cd9ce7b3-80ab-427b-87fb-541f9ce7c7de
Bettan, Olivier
399317c5-942a-416e-90a5-05fd14ad9c66
Maknavicius, Linas
7880dd95-9495-4e98-b881-aa8ac9123ada
Naslund, Mats
4aa69d0f-baee-4a45-9bab-4413ae85ddf5
Englund, Hakan
6b0a4c10-d41c-45b8-b9fd-6b3e42eaea76
Phillips, Stephen
47610c30-a543-4bac-a96a-bc1fce564a59
Nasser, Bassem
d601c873-8295-44e3-a4e1-d363a26ee086
Sahlin, Bengt
cdbc39ed-d8f0-4a4e-ac1c-fd29953022f1
Klaedtke, Felix
0978366f-f74b-4371-98f1-41f9fca2d0df
Pernila, Tommi
af389550-0ead-42be-9c52-aacd9fb186a4
Wary, Jean-Philippe
0986fda2-e2f4-49d3-94b9-c8190b780bf9
Ghada, Arfaoui
0fdd6ebd-2ec3-43ef-a534-dcc06ec0fbfc
Svensson, Martin
d8e0dd72-20b8-4cee-b9ab-86db0f411caf
Giustolisi, Rosario
ba9221b8-6319-4af1-bfd5-afbccda7e743
Paladi, Nicolae
e8e5b6ed-f829-4328-a47d-7cc64db06655
Jalon Valero, Ana
c02eb381-57cd-438d-90f8-54c5efd00855
Vela, Gorka Lendrino
a88519cc-df19-456b-a5e8-979f20fbef19
Dotaro, Emmanuel
52513b23-772f-4d5e-a9ad-23ba5dcd0c99
Keller, Sebastien
e30a2203-24c9-4bef-b612-ce703de8c09a
Lacroix, Jean-Marc
25ceb802-6858-41e6-9a27-37aa8c35d9af
Papastefanakis, Ermis
c675d8a1-3074-4b98-9ea1-faaffc657bfe
Costa, Luciana
eaade814-5e11-4e6a-97e2-57f8decf9322
Baltatu, Madalina
1c9dfe43-3236-48bb-af84-e093c1eeebfe
O'Hanlon, Piers
a61dbe4d-27de-47cd-8e1f-7643595e48ba
Hiltunen, Jouni
94400aac-78a1-4ddb-b2ca-8db9b1c83086
Mammela, Olli
3b7f2617-e44f-47c1-9abc-1db0b04698cc
Suomalainen, Jani
c6dbb7b9-6256-4af9-bb48-515ba3ff747a
Bisson, Pascal
cd9ce7b3-80ab-427b-87fb-541f9ce7c7de
Bettan, Olivier
399317c5-942a-416e-90a5-05fd14ad9c66
Maknavicius, Linas
7880dd95-9495-4e98-b881-aa8ac9123ada
Naslund, Mats
4aa69d0f-baee-4a45-9bab-4413ae85ddf5
Englund, Hakan
6b0a4c10-d41c-45b8-b9fd-6b3e42eaea76
Phillips, Stephen
47610c30-a543-4bac-a96a-bc1fce564a59
Nasser, Bassem
d601c873-8295-44e3-a4e1-d363a26ee086
Sahlin, Bengt
cdbc39ed-d8f0-4a4e-ac1c-fd29953022f1
Klaedtke, Felix
0978366f-f74b-4371-98f1-41f9fca2d0df
Pernila, Tommi
af389550-0ead-42be-9c52-aacd9fb186a4
Wary, Jean-Philippe
0986fda2-e2f4-49d3-94b9-c8190b780bf9
Ghada, Arfaoui
0fdd6ebd-2ec3-43ef-a534-dcc06ec0fbfc
Svensson, Martin
d8e0dd72-20b8-4cee-b9ab-86db0f411caf
Giustolisi, Rosario
ba9221b8-6319-4af1-bfd5-afbccda7e743
Paladi, Nicolae
e8e5b6ed-f829-4328-a47d-7cc64db06655
Jalon Valero, Ana
c02eb381-57cd-438d-90f8-54c5efd00855
Vela, Gorka Lendrino
a88519cc-df19-456b-a5e8-979f20fbef19
Dotaro, Emmanuel
52513b23-772f-4d5e-a9ad-23ba5dcd0c99
Keller, Sebastien
e30a2203-24c9-4bef-b612-ce703de8c09a
Lacroix, Jean-Marc
25ceb802-6858-41e6-9a27-37aa8c35d9af
Papastefanakis, Ermis
c675d8a1-3074-4b98-9ea1-faaffc657bfe
Costa, Luciana
eaade814-5e11-4e6a-97e2-57f8decf9322
Baltatu, Madalina
1c9dfe43-3236-48bb-af84-e093c1eeebfe
O'Hanlon, Piers
a61dbe4d-27de-47cd-8e1f-7643595e48ba

Hiltunen, Jouni, Mammela, Olli, Suomalainen, Jani, Bisson, Pascal, Bettan, Olivier, Maknavicius, Linas, Naslund, Mats, Englund, Hakan, Phillips, Stephen, Nasser, Bassem, Sahlin, Bengt, Klaedtke, Felix, Pernila, Tommi, Wary, Jean-Philippe, Ghada, Arfaoui, Svensson, Martin, Giustolisi, Rosario, Paladi, Nicolae, Jalon Valero, Ana, Vela, Gorka Lendrino, Dotaro, Emmanuel, Keller, Sebastien, Lacroix, Jean-Marc, Papastefanakis, Ermis, Costa, Luciana, Baltatu, Madalina and O'Hanlon, Piers (2016) 5G-ENSURE - D3.1 5G-PPP security enablers technical roadmap (early vision) Southampton, GB. Thales Services; 5G-ENSURE Consortium 99pp.

Record type: Monograph (Project Report)

Abstract

This document provides an early vision (at M4) of the 5G security and privacy enablers proposed by the 5G-ENSURE project, and that are planned to be developed through two major releases: v1.0 (R1) due at M11/Sep’16 and v2.0 (R2) due at M22/Aug’17. It details the Technical Roadmap for v1.0 (R1) in terms of enablers in scope and their features, while providing insights for v2.0 (R2) enablers that will be fully detailed in an update of this deliverable (D3.5 due at M13/Nov’16) taking account of the progress and achievements made by that time. Enablers envisioned are here presented organized in categories, which represent major security areas recognized as topmost priorities for 5G-PPP & 5G Security: Authentication, Authorization and Accountability (AAA); Privacy; Trust; Security Monitoring and Network management & virtualization isolation. They are also presented following a common template covering each of the following key aspects: product vision, technology area, security aspects, security challenges, technical roadmap for first release vs. next release.

In the AAA category the main focus is on 5G users’ authentication, authorization and accounting, but the contribution of the AAA enablers goes beyond the incremental improvements to security that one would expect in a next-generation network. The evolving 5G network will support an unpredictable number of devices due to the boom of Internet of Things (IoT), whose security these enablers will aim to address. Moreover, the enablers target to integrate authentication and authorization functions between satellite and terrestrial systems.

The main objective of the 5G-Ensure Privacy enablers is to identify in advance 5G user privacy requirements and to provide security mechanisms able to prevent privacy violations by adopting a proactive, privacy-by-design approach. For each 5G use case, the privacy mitigation technology (e.g., anonymity by using temporary identity, access control mechanisms, new encryption system and procedures, etc.) was also investigated so as to satisfy privacy requirements. The privacy enablers aim to enhance user data protection by proposing solutions at several layers: at the network layer, as well as application layer, i.e., privacy as a service.

The Trust category will provide trust models which will address the complex relationships between the many actors in 5G networks including the machine-to-machine interactions characterising the next generation networks. The trust model needs to address the different aspects of trust, between automated systems (M2Mt), between human stakeholders holding responsibilities for different parts of 5G networks, between user and network operators and between users of the network (U2Ut), trust that a human stakeholder has towards a system (U2Mt), that an automated system (machine) has in users that it interacts with.

5G-ENSURE project also aims at providing new innovative solutions ensuring the highest level of security and resilience in 5G network. Mobile networks will dramatically evolve with the fifth generation of networks compared to 3/4G, in particular with new concepts and technologies such Internet of Things, infrastructure virtualization (SDN, NFV), network resource sharing, new access interfaces, dynamic network topologies, slicing and so forth. These technologies introduce new security and resilience and provide new opportunities to implement extensive and accurate security solutions. Thus, new innovative approaches to predict and counter these challenges will be considered by the category devoted to Monitoring the 5G security.

Text
401847.pdf - Other
Download (3MB)

More information

Published date: 11 March 2016
Organisations: IT Innovation

Identifiers

Local EPrints ID: 401847
URI: http://eprints.soton.ac.uk/id/eprint/401847
PURE UUID: 640958b5-5cf8-4fb7-944a-d207f5ce667f
ORCID for Stephen Phillips: ORCID iD orcid.org/0000-0002-7901-0839

Catalogue record

Date deposited: 21 Oct 2016 15:19
Last modified: 15 Mar 2024 02:58

Export record

Contributors

Author: Jouni Hiltunen
Author: Olli Mammela
Author: Jani Suomalainen
Author: Pascal Bisson
Author: Olivier Bettan
Author: Linas Maknavicius
Author: Mats Naslund
Author: Hakan Englund
Author: Stephen Phillips ORCID iD
Author: Bassem Nasser
Author: Bengt Sahlin
Author: Felix Klaedtke
Author: Tommi Pernila
Author: Jean-Philippe Wary
Author: Arfaoui Ghada
Author: Martin Svensson
Author: Rosario Giustolisi
Author: Nicolae Paladi
Author: Ana Jalon Valero
Author: Gorka Lendrino Vela
Author: Emmanuel Dotaro
Author: Sebastien Keller
Author: Jean-Marc Lacroix
Author: Ermis Papastefanakis
Author: Luciana Costa
Author: Madalina Baltatu
Author: Piers O'Hanlon

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×