Security News > 2022 > November > Boosting telcos’ 5G cyber resilience

Boosting telcos’ 5G cyber resilience
2022-11-16 03:09

To that end, telecommunications companies, mobile network operators and other communication service providers are already taking advantage of the security controls inherited from 3G/4G. And they are now supplementing them with purpose built 5G security controls to enhance their network and service security processes, while simultaneously introducing best practices and policies to deliver the necessary resilience.

"Regarding security assurance, telcos have historically relied on a priori security certification of physical components and devices, such as through Common Criteria. The 'softwarization' of network components - central to the 5G service-oriented architecture - requires much more agile ways to test security."

In parallel, the 3rd Generation Partnership Project - the main standardization body for 5G networks and systems - has initiated work on several sets of Security Assurance Specification tests.

The CRA covers a broad scope of products with digital elements, including software, and has strong links to other important EU cyber security laws such as the Cyber Security Act, the NIS2 Directive on network and information systems security, the General Data Protection Regulation and the AI-Act.

In particular, the NIS2 Directive sets cybersecurity requirements for supply chain security measures and incident reporting obligations to increase the resilience of telco services.

When it comes to embedding adequate cyber security and regulatory compliance measures into their 5G infrastructure, European telcos and MNOs can be sure ZTE will be there to help.


News URL

https://go.theregister.com/feed/www.theregister.com/2022/11/16/boosting_telcos_5g_cyber_resilience/