\"\"
<\/span><\/figcaption><\/figure>New Delhi: A working group on technology under Quad has found security specification of Open-RAN (radio access network), which is widely used for 5G services<\/a>, to be incomplete and called for additional efforts from industry groups to adopt \"security best practices\". The Open RAN Security Report<\/a> of Quad Critical and Emerging Technology Working Group released on Saturday said it is unclear the way O-RAN Alliance<\/a> selected security guidelines and best practices related to Open RAN Security<\/a>.

The working group was set up in March 2021 under Quadrilateral Security Dialogue (Quad) between US, India, Australia and Japan to facilitate cooperation around technology standards and explore cooperation on 5G deployment and diversification of equipment suppliers, in close cooperation with the industry.

\"Parts of the O-RAN security specification appear to be incomplete. For example, security requirements do not cover all security principles, specified security controls do not cover all security requirements, security controls do not cover all components or interfaces,\" the report said.

The O-RAN alliance was formed to break the oligopoly of few players in setting up telecom base stations. It helps telecom operators and equipment suppliers access the radio access network data to ensure seamless services to users.

Leading players, including Jio, Airtel, Vodafone,
IBM<\/a>, Apple<\/a>, Nokia, Singtel, Softbank etc., are part of Open RAN alliance.

The report based on theoretical exercise found no clarity in adoption of security specifications.

\"It is often unclear how guidance has been determined or how it relates to other parts of the security specification. For example, no details on how security principles have been derived and how the security controls address the security threats. It is unclear how the O-RAN Alliance selected security guidelines and best practices related to Open RAN security,\" the report said.

Some reports referred by the working group stated that the Open RAN may increase security risks, especially those associated with disaggregation and openness of the system.

A study by the French Institute of International Relations (IFRI) said in the report the disaggregation of RAN functionalities may result in lower-quality performance due to components provided by multiple suppliers.

\"Because not all suppliers are trusted, the performance of the components compared to proprietary solutions and their inherent security vulnerabilities remain in question,\" the IFRI study said.

The Quad working group said a large number of best practices shows that relevant guidance does exist but they just are not yet in a consolidated form.

\"Additional efforts from industry groups will be required to support Open RAN stakeholders to identify and adopt relevant security best practices. This applies in particular to MNOs (mobile network operators), as the absence of a single RAN vendor requires them to take on new security responsibilities in the Open RAN life cycle,\" the report said.<\/body>","next_sibling":[{"msid":100328284,"title":"E-band to play pivotal role in accelerating digital transformation in India","entity_type":"ARTICLE","link":"\/news\/telecom-equipment\/e-band-to-play-pivotal-role-in-accelerating-digital-transformation-in-india\/100328284","category_name":null,"category_name_seo":"telecom-equipment"}],"related_content":[],"msid":100406021,"entity_type":"ARTICLE","title":"Security specification in Open Radio Access Network incomplete: Quad working group","synopsis":"Leading players, including Jio, Airtel, Vodafone, IBM, Apple, Nokia, Singtel, Softbank etc., are part of Open RAN alliance.","titleseo":"telecom-equipment\/security-specification-in-open-radio-access-network-incomplete-quad-working-group","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":703,"shares":0,"engagementtimems":2837000},"Alttitle":{"minfo":""},"artag":"PTI","artdate":"2023-05-22 07:16:51","lastupd":"2023-05-22 07:21:55","breadcrumbTags":["Open RAN Security","O-RAN Alliance","5G services","reliance jio","bharti airtel","vodafone idea","IBM","apple","Open RAN Security Report","telecom equipment"],"secinfo":{"seolocation":"telecom-equipment\/security-specification-in-open-radio-access-network-incomplete-quad-working-group"}}" data-authors="[" "]" data-category-name="Telecom Equipment" data-category_id="914" data-date="2023-05-22" data-index="article_1">

开放的无线接入网络安全规范不完整:四工作组

主要球员,包括Jio Airtel、沃达丰、IBM、苹果、诺基亚、新加坡电信、软银等,是开放了联盟的一部分。

  • 更新2023年5月22日凌晨07:21坚持
阅读: 100年行业专业人士
读者的形象读到100年行业专业人士
新德里:一个技术工作组下四发现安全规范Open-RAN(无线接入网络),广泛用于5 g服务,是不完整的,并呼吁更多的努力从行业组织采取“安全最佳实践”。的开放运行安全报告四至关重要和新兴技术工作组周六公布说,目前尚不清楚O-RAN联盟选择安全相关指导原则和最佳实践开放运行安全

工作小组成立于2021年3月在四边形安全对话(四)我们之间,印度,澳大利亚和日本促进合作在技术标准和探索合作5 g部署和多样化的设备供应商,与行业密切合作。

广告
“O-RAN安全规范的部分似乎是不完整的。例如,安全需求不包括所有安全原则,指定安全控制不包括所有的安全需求,安全控制不包括所有组件或接口,”该报告说。

O-RAN联盟成立,打破一些玩家设置的寡头垄断电信基站。它有助于电信运营商和设备供应商访问无线接入网络数据,确保无缝服务用户。

主要球员,包括Jio Airtel、沃达丰、IBM,苹果、诺基亚、新加坡电信、软银等,是开放了联盟的一部分。

报告基于理论运动没有发现明确采用的安全规范。

“常常不清楚如何指导已经决定或其他地区的相关安全规范。例如,没有细节的安全原则派生和安全控制如何解决安全威胁。目前尚不清楚如何O-RAN联盟选择安全指南和最佳实践与开放的运行安全,”该报告说。

工作组表示,有报道称的开放可能会增加安全风险,特别是那些与解集和系统的开放性。

广告
法国国际关系研究所的一项研究(IFRI)在报告中说的瓦解了功能可能会导致低质量性能组件由多个供应商提供。

”,因为并不是所有的供应商都是可信的,专有的解决方案相比,组件的性能和其固有的安全漏洞保持问题,“IFRI研究说。

四工作组说大量的最佳实践表明,相关指导确实存在,但他们只是还没有统一的形式。

“额外努力从行业组织将被要求支持开放了利益相关者识别并采取相关的安全最佳实践。这尤其适用于MNOs(移动网络运营商),没有一个跑供应商要求他们承担新的安全责任的生命周期,”该报告说。
  • 发布于2023年5月22日凌晨07:16坚持
是第一个发表评论。
现在评论

加入2 m +行业专业人士的社区

订阅我们的通讯最新见解与分析。乐动扑克

下载ETTelec乐动娱乐招聘om应用

  • 得到实时更新
  • 保存您最喜爱的文章
扫描下载应用程序
\"\"
<\/span><\/figcaption><\/figure>New Delhi: A working group on technology under Quad has found security specification of Open-RAN (radio access network), which is widely used for 5G services<\/a>, to be incomplete and called for additional efforts from industry groups to adopt \"security best practices\". The Open RAN Security Report<\/a> of Quad Critical and Emerging Technology Working Group released on Saturday said it is unclear the way O-RAN Alliance<\/a> selected security guidelines and best practices related to Open RAN Security<\/a>.

The working group was set up in March 2021 under Quadrilateral Security Dialogue (Quad) between US, India, Australia and Japan to facilitate cooperation around technology standards and explore cooperation on 5G deployment and diversification of equipment suppliers, in close cooperation with the industry.

\"Parts of the O-RAN security specification appear to be incomplete. For example, security requirements do not cover all security principles, specified security controls do not cover all security requirements, security controls do not cover all components or interfaces,\" the report said.

The O-RAN alliance was formed to break the oligopoly of few players in setting up telecom base stations. It helps telecom operators and equipment suppliers access the radio access network data to ensure seamless services to users.

Leading players, including Jio, Airtel, Vodafone,
IBM<\/a>, Apple<\/a>, Nokia, Singtel, Softbank etc., are part of Open RAN alliance.

The report based on theoretical exercise found no clarity in adoption of security specifications.

\"It is often unclear how guidance has been determined or how it relates to other parts of the security specification. For example, no details on how security principles have been derived and how the security controls address the security threats. It is unclear how the O-RAN Alliance selected security guidelines and best practices related to Open RAN security,\" the report said.

Some reports referred by the working group stated that the Open RAN may increase security risks, especially those associated with disaggregation and openness of the system.

A study by the French Institute of International Relations (IFRI) said in the report the disaggregation of RAN functionalities may result in lower-quality performance due to components provided by multiple suppliers.

\"Because not all suppliers are trusted, the performance of the components compared to proprietary solutions and their inherent security vulnerabilities remain in question,\" the IFRI study said.

The Quad working group said a large number of best practices shows that relevant guidance does exist but they just are not yet in a consolidated form.

\"Additional efforts from industry groups will be required to support Open RAN stakeholders to identify and adopt relevant security best practices. This applies in particular to MNOs (mobile network operators), as the absence of a single RAN vendor requires them to take on new security responsibilities in the Open RAN life cycle,\" the report said.<\/body>","next_sibling":[{"msid":100328284,"title":"E-band to play pivotal role in accelerating digital transformation in India","entity_type":"ARTICLE","link":"\/news\/telecom-equipment\/e-band-to-play-pivotal-role-in-accelerating-digital-transformation-in-india\/100328284","category_name":null,"category_name_seo":"telecom-equipment"}],"related_content":[],"msid":100406021,"entity_type":"ARTICLE","title":"Security specification in Open Radio Access Network incomplete: Quad working group","synopsis":"Leading players, including Jio, Airtel, Vodafone, IBM, Apple, Nokia, Singtel, Softbank etc., are part of Open RAN alliance.","titleseo":"telecom-equipment\/security-specification-in-open-radio-access-network-incomplete-quad-working-group","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":703,"shares":0,"engagementtimems":2837000},"Alttitle":{"minfo":""},"artag":"PTI","artdate":"2023-05-22 07:16:51","lastupd":"2023-05-22 07:21:55","breadcrumbTags":["Open RAN Security","O-RAN Alliance","5G services","reliance jio","bharti airtel","vodafone idea","IBM","apple","Open RAN Security Report","telecom equipment"],"secinfo":{"seolocation":"telecom-equipment\/security-specification-in-open-radio-access-network-incomplete-quad-working-group"}}" data-news_link="//www.iser-br.com/news/telecom-equipment/security-specification-in-open-radio-access-network-incomplete-quad-working-group/100406021">