Securing the 5G edge

November 11, 2021 | 92 views

5G_edge
The rollout of 5G networks coupled with edge compute introduces new security concerns for both the network and the enterprise. Security at the edge presents a unique set of security challenges that differ from those faced by traditional data centers. Today new concerns emerge from the combination of distributed architectures and a disaggregated network, creating new challenges for service providers.
Many mission critical applications enabled by 5G connectivity, such as smart factories, are better off hosted at the edge because it's more economical and delivers better Quality of Service (QoS). However, applications must also be secured; communication service providers need to ensure that applications operate in an environment that is both safe and provides isolation. This means that secure designs and protocols are in place to pre-empt threats, avoid incidents and minimize response time when incidents do occur.

As enterprises adopt private 5G networks to drive their Industry 4.0 strategies, these new enterprise 5G trends demand a new approach to security. Companies must find ways to reduce their exposure to cyberattacks that could potentially disrupt mission critical services, compromise industrial assets and threaten the safety of their workforce. Cybersecurity readiness is essential to ensure private network investments are not devalued.

The 5G network architecture, particularly at the edge, introduces new levels of service decomposition now evolving beyond the virtual machine and into the space of orchestrated containers. Such disaggregation requires the operation of a layered technology stack, from the physical infrastructure to resource abstraction, container enablement and orchestration, all of which present attack surfaces which require addressing from a security perspective. So how can CSPs protect their network and services from complex and rapidly growing threats?

Addressing vulnerability points of the network layer by layer

As networks grow and the number of connected nodes at the edge multiply, so do the vulnerability points. The distributed nature of the 5G edge increases vulnerability threats, just by having network infrastructure scattered across tens of thousands of sites. The arrival of the Internet of Things (IoT) further complicates the picture: with a greater number of connected and mobile devices, potentially creating new network bridging connection points, questions around network security have become more relevant.

As the integrity of the physical site cannot be guaranteed in the same way as a supervised data center, additional security measures need to be taken to protect the infrastructure. Transport and application control layers also need to be secured, to enable forms of "isolation" preventing a breach from propagating to other layers and components. Each layer requires specific security measures to ensure overall network security: use of Trusted Platform Modules (TPM) chipsets on motherboards, UEFI Secure OS boot process, secure connections in the control plane and more. These measures all contribute to and are integral part of an end-to-end network security design and strategy.

Open RAN for a more secure solution

The latest developments in open RAN and the collaborative standards-setting process related to open interfaces and supply chain diversification are enhancing the security of 5G networks. This is happening for two reasons. First, traditional networks are built using vendor proprietary technology – a limited number of vendors dominate the telco equipment market and create vendor lock-in for service providers that forces them to also rely on vendors' proprietary security solutions. This in turn prevents the adoption of "best-of-breed" solutions and slows innovation and speed of response, potentially amplifying the impact of a security breach.

Second, open RAN standardization initiatives employ a set of open-source standards-based components. This has a positive effect on security as the design embedded in components is openly visible and understood; vendors can then contribute to such open-source projects where tighter security requirements need to be addressed.

Aside from the inherent security of the open-source components, open RAN defines a number of open interfaces which can be individually assessed in their security aspects. The openness intrinsically present in open RAN means that service components can be seamlessly upgraded or swapped to facilitate the introduction of more stringent security characteristics, or they can simultaneously swiftly address identified vulnerabilities.

Securing network components with AI

Monitoring the status of myriad network components, particularly spotting a security attack taking place among a multitude of cooperating application functions, requires resources that transcend the capabilities of a finite team of human operators. This is where advances in AI technology can help to augment the abilities of operations teams. AI massively scales the ability to monitor any number of KPIs, learn their characteristic behavior and identify anomalies – this makes it the ideal companion in the secure operation of the 5G edge. The self-learning aspect of AI supports not just the identification of known incident patterns but also the ability to learn about new, unknown and unanticipated threats.

Security by design

Security needs to be integral to the design of the network architecture and its services. The adoption of open standards caters to the definition of security best practices in both the design and operation of the new 5G network edge. The analytics capabilities embedded in edge hyperconverged infrastructure components provide the platform on which to build an effective monitoring and troubleshooting toolkit, ensuring the secure operation of the intelligent edge.

Spotlight

Kellton Tech Solutions Limited

KelltonTech Solutions Ltd. is a Public Listed, CMMI Level 3, ISO 9001:2008 certified IT firm offering end-to-end solutions in Web, SMAC (Social, Mobile, Analytics, Cloud), ERP-EAI, SAP and IoT. The company has been delivering IT Solutions, strategic technology consulting, and Outsourced Product Development services since past 22 years.

OTHER ARTICLES
APPLICATION INFRASTRUCTURE

A new era of automation with Cisco ACI and the Citrix ADC Manager app

Article | July 16, 2022

Since it was first available, Citrix has worked with Cisco Application Centric Infrastructure (ACI) to integrate Citrix ADC with the Cisco Application Policy Infrastructure Controller (APIC). As a valued technology partner, Citrix has a device package — a software module — that enables users to configure the Citrix ADC directly from a Cisco APIC. This setup has run in many customer production environments over the years. Let’s consider one of those customers — Jim. He was the first to deploy the integrated solution in his data center. The solution gave him the automation he needed and a single view to configure, deploy, and manage applications. However, his application admins preferred to use the Citrix ADC user interface to manage L4-L7 services.

Read More
APPLICATION INFRASTRUCTURE

Storage made simple for hybrid multicloud: the new IBM FlashSystem family

Article | December 20, 2021

In part one of this blog post series, we discussed IBM’s approach for delivering innovation while simplifying your storage infrastructure, reducing complexity, and cutting costs. Now let’s take a closer look at the details of the new IBM FlashSystem family, a single platform designed to simplify your storage infrastructure, reduce complexity and cut costs, while continuing to deliver extensive innovation for your enterprise class storage solutions and your hybrid multicloud environments.

Read More
APPLICATION INFRASTRUCTURE

We Need to Talk About ‘Cloud Neutrality’

Article | January 21, 2021

We spent a lot of years talking about net neutrality the idea that the companies that provide access to the internet shouldn’t unfairly block, slow down, or otherwise interfere with traffic even if that traffic competes with their services. But there’s an even bigger issue brewing, and it’s time to start talking about it: cloud neutrality. “While its name sounds soft and fluffy,” Microsoft president and general counsel Brad Smith and coauthor Carol Ann Browne write in their recent book, Tools and Weapons: The Promise and the Peril of the Digital Age, “in truth the cloud is a fortress.” Their introduction describes the modern marvel of the data center: a 2 million-square-foot, climate-controlled facility made up of colossal electrical generators, diesel fuel tanks, battery arrays, and bulletproof doors

Read More

Why enterprises are going all-in on hyperscale

Article | February 10, 2020

Cloud computing continues to dominate the technology space, with cloud migration yielding a rain of opportunities and benefits. To date, achieving massive scale in computing power and data storage is a priority for organizations looking to mature in digital transformation. Hyperscale infrastructure is designed exclusively for that purpose, and it offers increasingly relevant features such as high levels of performance and high tolerance and room for error as well as redundancy. A recent report showed enterprises are leaning towards hyperscalers for cloud services as compared to second-tier providers.

Read More

Spotlight

Kellton Tech Solutions Limited

KelltonTech Solutions Ltd. is a Public Listed, CMMI Level 3, ISO 9001:2008 certified IT firm offering end-to-end solutions in Web, SMAC (Social, Mobile, Analytics, Cloud), ERP-EAI, SAP and IoT. The company has been delivering IT Solutions, strategic technology consulting, and Outsourced Product Development services since past 22 years.

Related News

HYPER-CONVERGED INFRASTRUCTURE,APPLICATION INFRASTRUCTURE,STORAGE MANAGEMENT

STACK Infrastructure Breaks Ground on 100MW Data Center Campus in Northern Virginia

STACK Infrastructure | November 30, 2022

STACK Infrastructure, the digital infrastructure partner to the world’s most innovative companies and leading global developer and operator of data centers, announced the groundbreaking of STACK’s latest hyperscale campus in the center of Prince William County, one of the most desirable locations in Northern Virginia. Delivery of the first building on the campus is targeted for Q1 2024. The latest among STACK’s portfolio of seven data center campuses in Northern Virginia, the 40-acre site will add nearly 100MW of committed and scalable power from Northern Virginia Electric Cooperative (NOVEC). Construction will begin with a 36MW facility, with plans to grow the campus to multiple data centers supported by a 300MW substation. The scalable campus offers a prime opportunity for clients interested in securing capacity within this critical land and power-constrained market. “Expanding our presence in the heart of Prince William County represents a strategic approach of continuing to deliver scalable capacity where it matters most. “Powered with 100% renewable energy, STACK’s new campus offers a sustainable solution and allows our clients the ability to grow quickly in the world’s largest data center market.” Matthew VanderZanden, Chief Operating Officer of STACK Americas STACK’s presence in Northern Virginia has markedly increased with continued growth announcements over the last four years. STACK has nearly 1GW of current and under-development capacity in one of the most constrained data center markets on the globe. Plans for this latest development were announced in April, on the heels of a 216MW Ashburn campus announcement shared earlier in 2022. Over the past three months, STACK has announced growth in the top data center markets across the globe, including a 230MW five-building campus in central Phoenix, an 80MW hyperscale campus in Frankfurt, Germany, a 48MW facility in Seoul, Korea, and multiple data centers in Australia. STACK’s presence within 23 markets distributed throughout the Americas, EMEA, and APAC regions makes it one of the largest private data center operators worldwide. ABOUT STACK INFRASTRUCTURE STACK provides digital infrastructure to scale the world’s most innovative companies. With a client-first approach, STACK delivers a comprehensive suite of campus, build-to-suit, colocation, and powered shell solutions in the Americas, EMEA and APAC regions. With robust existing and flexible expansion capacity in the leading availability zones, STACK offers the scale and geographic reach that rapidly growing hyperscale and enterprise companies need. The world runs on data. And data runs on STACK.

Read More

HYPER-CONVERGED INFRASTRUCTURE,APPLICATION INFRASTRUCTURE,STORAGE MANAGEMENT

ExteNet Systems Announces Exclusive, Expanded Partnership with T-Mobile

ExteNet Systems, LLC | November 29, 2022

ExteNet Systems, a leading privately held owner of LTE/5G wireless and fiber neutral-host communications infrastructure, today announced it has entered an exclusive agreement with T-Mobile to deploy digital wireless infrastructure in large sports, entertainment, hospitality and transportation venues, as well as to rationalize and decommission T-Mobile's overlapping network assets inherited from its merger with Sprint. The agreement, which expands ExteNet's existing relationship with T-Mobile as a primary wireless carrier in its contracted venues, is expected to deliver best-in-class wireless communications in commercial sites, creating unparalleled experiences for guests and users. Under the terms of the agreement, ExteNet will deploy, own and operate the digital wireless infrastructure for large venues, and every venue contract couples ExteNet's infrastructure deployment with T-Mobile, as the first committed carrier. This represents an industry first in enabling the extension of 5G wireless capabilities and state-of-the-art technology to fans and guests, with deployment timeframes up to two times faster. "We are thrilled to continue building our relationship with T-Mobile to bring high-quality and cost-effective infrastructure operations to our clients and venue partners. "This collaboration enables a turnkey, win-win road map for T-Mobile's consumer and business clients alike as we bring a revolutionary Un-carrier approach to venue contracting." Rich Coyle, ExteNet Systems Chief Executive Officer As part of the expanded partnership, ExteNet will rationalize T-Mobile's small cell framework and upgrade existing infrastructure, implementing a high-quality and cost-effective solution to deliver streamlined, faster and more efficient 5G wireless networks. These enhancements, which will be done without any service interruptions, are expected to provide a superior end-user experience and a competitive advantage for T-Mobile, as well as further elevate ExteNet's reputation for innovative and customer-centric Un-carrier approach to venue contracting. The rollout of the expanded agreement between ExteNet and T-Mobile, which took effect on October 1, 2022, is already underway. As part of the agreement, T-Mobile will be the first carrier to join the new wireless network ExteNet is deploying in each MGM Resorts property nationwide. In September 2022, ExteNet announced a groundbreaking partnership with MGM Resorts International to bring state-of-the-art distributed wireless networks to 25 MGM properties, consisting of 54 million square feet, more than 43,000 guest rooms, and serving more than 70 million visitors annually. About ExteNet Systems, LLC Lisle, IL-based, soon to be Frisco, TX-based, ExteNet Systems, LLC is the leading national provider of converged communications infrastructure and services addressing outdoor, real estate, communities, and enterprise advanced connectivity needs. ExteNet's strategy is customer-centered, and its mission is to provide best-in-class connectivity solutions, including fiber and mobility, for its customers. Major investors in ExteNet Systems include Digital Bridge (NYSE: BDRG), John Hancock Life Insurance Company (U.S.A.), and Stonepeak Infrastructure Partners. "ExteNet®" is a registered trademark of ExteNet Systems, LLC.

Read More

APPLICATION INFRASTRUCTURE,APPLICATION STORAGE,DATA STORAGE

OTAVA Doubles Capacity in Indianapolis Data Center

Otava | November 29, 2022

OTAVA® a global leader in custom and compliant multi-cloud solutions, today announced it has doubled its Indianapolis data center capacity and is now expanding to include advanced interconnection services, including Internet Exchange access, to meet growing demand for colocation and hosting services. "Since the pandemic we continue to see an increasing flow of businesses downsizing and eliminating office space and moving their IT infrastructure to secure and compliant off-site hosting facilities. "We are thrilled to be able to expand our space and welcome new customers to our state-of-the-art data center in Indianapolis. Our fully compliant facility features a diverse power supply and a growing list of fiber interconnection partners. Our customers can count on us for reliable, secure, and compliant service." TJ Houske, SVP of Technology, Operations and Engineering, OTAVA Located in downtown Indianapolis since 2014, OTAVA's data center is strategically located to support companies in the metropolitan area, across the region, and throughout the world. The carrier neutral facility is geographically separated from the company's three other locations to create redundancies that are ideal for data protection and production solutions. It provides secure, compliant, scalable enterprise-class cloud computing, colocation, offsite backup, and disaster recovery solutions. With the expansion, OTAVA has built out an additional 4,000 feet of raised floor space to meet rising demand. "The larger footprint creates greater capacity for area businesses across all industries looking to move their workloads off-site and accelerate their digital transformation journeys. We've also added new upgrades to our Uninterruptible Power Supplies (UPS) including moving to sustainable lithium ion batteries which create a greener footprint. We are thrilled to be able to serve more customers in Indianapolis and we plan to make even more space available in the future," concluded Houske. All OTAVA data centers are independently certified compliant with industry standards including SOC (SSAE 16/SOC 1, SOC 2, SOC 3), HIPAA, PCI DSS, ISO 27001. About Otava OTAVA® is a global, recognized leader in delivering secure multi-cloud solutions with a personal touch. Its extensive portfolio is powered by world-class technology partners, backed with expert intelligence, and tailored to help businesses and service providers achieve their individual goals while protecting mission-critical data. With its flexible solutions, fortified security, colocation offerings, and professional services, OTAVA empowers its clients with everything they need to thrive in the cloud and stay focused on what they do best.

Read More

HYPER-CONVERGED INFRASTRUCTURE,APPLICATION INFRASTRUCTURE,STORAGE MANAGEMENT

STACK Infrastructure Breaks Ground on 100MW Data Center Campus in Northern Virginia

STACK Infrastructure | November 30, 2022

STACK Infrastructure, the digital infrastructure partner to the world’s most innovative companies and leading global developer and operator of data centers, announced the groundbreaking of STACK’s latest hyperscale campus in the center of Prince William County, one of the most desirable locations in Northern Virginia. Delivery of the first building on the campus is targeted for Q1 2024. The latest among STACK’s portfolio of seven data center campuses in Northern Virginia, the 40-acre site will add nearly 100MW of committed and scalable power from Northern Virginia Electric Cooperative (NOVEC). Construction will begin with a 36MW facility, with plans to grow the campus to multiple data centers supported by a 300MW substation. The scalable campus offers a prime opportunity for clients interested in securing capacity within this critical land and power-constrained market. “Expanding our presence in the heart of Prince William County represents a strategic approach of continuing to deliver scalable capacity where it matters most. “Powered with 100% renewable energy, STACK’s new campus offers a sustainable solution and allows our clients the ability to grow quickly in the world’s largest data center market.” Matthew VanderZanden, Chief Operating Officer of STACK Americas STACK’s presence in Northern Virginia has markedly increased with continued growth announcements over the last four years. STACK has nearly 1GW of current and under-development capacity in one of the most constrained data center markets on the globe. Plans for this latest development were announced in April, on the heels of a 216MW Ashburn campus announcement shared earlier in 2022. Over the past three months, STACK has announced growth in the top data center markets across the globe, including a 230MW five-building campus in central Phoenix, an 80MW hyperscale campus in Frankfurt, Germany, a 48MW facility in Seoul, Korea, and multiple data centers in Australia. STACK’s presence within 23 markets distributed throughout the Americas, EMEA, and APAC regions makes it one of the largest private data center operators worldwide. ABOUT STACK INFRASTRUCTURE STACK provides digital infrastructure to scale the world’s most innovative companies. With a client-first approach, STACK delivers a comprehensive suite of campus, build-to-suit, colocation, and powered shell solutions in the Americas, EMEA and APAC regions. With robust existing and flexible expansion capacity in the leading availability zones, STACK offers the scale and geographic reach that rapidly growing hyperscale and enterprise companies need. The world runs on data. And data runs on STACK.

Read More

HYPER-CONVERGED INFRASTRUCTURE,APPLICATION INFRASTRUCTURE,STORAGE MANAGEMENT

ExteNet Systems Announces Exclusive, Expanded Partnership with T-Mobile

ExteNet Systems, LLC | November 29, 2022

ExteNet Systems, a leading privately held owner of LTE/5G wireless and fiber neutral-host communications infrastructure, today announced it has entered an exclusive agreement with T-Mobile to deploy digital wireless infrastructure in large sports, entertainment, hospitality and transportation venues, as well as to rationalize and decommission T-Mobile's overlapping network assets inherited from its merger with Sprint. The agreement, which expands ExteNet's existing relationship with T-Mobile as a primary wireless carrier in its contracted venues, is expected to deliver best-in-class wireless communications in commercial sites, creating unparalleled experiences for guests and users. Under the terms of the agreement, ExteNet will deploy, own and operate the digital wireless infrastructure for large venues, and every venue contract couples ExteNet's infrastructure deployment with T-Mobile, as the first committed carrier. This represents an industry first in enabling the extension of 5G wireless capabilities and state-of-the-art technology to fans and guests, with deployment timeframes up to two times faster. "We are thrilled to continue building our relationship with T-Mobile to bring high-quality and cost-effective infrastructure operations to our clients and venue partners. "This collaboration enables a turnkey, win-win road map for T-Mobile's consumer and business clients alike as we bring a revolutionary Un-carrier approach to venue contracting." Rich Coyle, ExteNet Systems Chief Executive Officer As part of the expanded partnership, ExteNet will rationalize T-Mobile's small cell framework and upgrade existing infrastructure, implementing a high-quality and cost-effective solution to deliver streamlined, faster and more efficient 5G wireless networks. These enhancements, which will be done without any service interruptions, are expected to provide a superior end-user experience and a competitive advantage for T-Mobile, as well as further elevate ExteNet's reputation for innovative and customer-centric Un-carrier approach to venue contracting. The rollout of the expanded agreement between ExteNet and T-Mobile, which took effect on October 1, 2022, is already underway. As part of the agreement, T-Mobile will be the first carrier to join the new wireless network ExteNet is deploying in each MGM Resorts property nationwide. In September 2022, ExteNet announced a groundbreaking partnership with MGM Resorts International to bring state-of-the-art distributed wireless networks to 25 MGM properties, consisting of 54 million square feet, more than 43,000 guest rooms, and serving more than 70 million visitors annually. About ExteNet Systems, LLC Lisle, IL-based, soon to be Frisco, TX-based, ExteNet Systems, LLC is the leading national provider of converged communications infrastructure and services addressing outdoor, real estate, communities, and enterprise advanced connectivity needs. ExteNet's strategy is customer-centered, and its mission is to provide best-in-class connectivity solutions, including fiber and mobility, for its customers. Major investors in ExteNet Systems include Digital Bridge (NYSE: BDRG), John Hancock Life Insurance Company (U.S.A.), and Stonepeak Infrastructure Partners. "ExteNet®" is a registered trademark of ExteNet Systems, LLC.

Read More

APPLICATION INFRASTRUCTURE,APPLICATION STORAGE,DATA STORAGE

OTAVA Doubles Capacity in Indianapolis Data Center

Otava | November 29, 2022

OTAVA® a global leader in custom and compliant multi-cloud solutions, today announced it has doubled its Indianapolis data center capacity and is now expanding to include advanced interconnection services, including Internet Exchange access, to meet growing demand for colocation and hosting services. "Since the pandemic we continue to see an increasing flow of businesses downsizing and eliminating office space and moving their IT infrastructure to secure and compliant off-site hosting facilities. "We are thrilled to be able to expand our space and welcome new customers to our state-of-the-art data center in Indianapolis. Our fully compliant facility features a diverse power supply and a growing list of fiber interconnection partners. Our customers can count on us for reliable, secure, and compliant service." TJ Houske, SVP of Technology, Operations and Engineering, OTAVA Located in downtown Indianapolis since 2014, OTAVA's data center is strategically located to support companies in the metropolitan area, across the region, and throughout the world. The carrier neutral facility is geographically separated from the company's three other locations to create redundancies that are ideal for data protection and production solutions. It provides secure, compliant, scalable enterprise-class cloud computing, colocation, offsite backup, and disaster recovery solutions. With the expansion, OTAVA has built out an additional 4,000 feet of raised floor space to meet rising demand. "The larger footprint creates greater capacity for area businesses across all industries looking to move their workloads off-site and accelerate their digital transformation journeys. We've also added new upgrades to our Uninterruptible Power Supplies (UPS) including moving to sustainable lithium ion batteries which create a greener footprint. We are thrilled to be able to serve more customers in Indianapolis and we plan to make even more space available in the future," concluded Houske. All OTAVA data centers are independently certified compliant with industry standards including SOC (SSAE 16/SOC 1, SOC 2, SOC 3), HIPAA, PCI DSS, ISO 27001. About Otava OTAVA® is a global, recognized leader in delivering secure multi-cloud solutions with a personal touch. Its extensive portfolio is powered by world-class technology partners, backed with expert intelligence, and tailored to help businesses and service providers achieve their individual goals while protecting mission-critical data. With its flexible solutions, fortified security, colocation offerings, and professional services, OTAVA empowers its clients with everything they need to thrive in the cloud and stay focused on what they do best.

Read More

Events