Network Slicing Security Controls and Assurance for Verticals

Tomasz Wichary, Jordi Mongay Batalla, Constandinos X. Mavromoustakis, Jerzy Żurek, George Mastorakis

Research output: Contribution to journalArticlepeer-review

Abstract

This paper focuses on the security challenges of network slice implementation in 5G networks. We propose that network slice controllers support security by enabling security controls at different network layers. The slice controller orchestrates multilevel domains with resources at a very high level but needs to understand how to define the resources at lower levels. In this context, the main outstanding security challenge is the compromise of several resources in the presence of an attack due to weak resource isolation at different levels. We analysed the current standards and trends directed to mitigate the vulnerabilities mentioned above, and we propose security controls and classify them by efficiency and applicability (easiness to develop). Security controls are a common way to secure networks, but they enforce security policies only in respective areas. Therefore, the security domains allow for structuring the orchestration principles by considering the necessary security controls to be applied. This approach is common for both vendor-neutral and vendor-dependent security solutions. In our classification, we considered the controls in the following fields: (i) fair resource allocation with dynamic security assurance, (ii) isolation in a multilayer architecture and (iii) response to DDoS attacks without service and security degradation.

Original languageEnglish
Article number222
JournalElectronics (Switzerland)
Volume11
Issue number2
DOIs
Publication statusPublished - 1 Jan 2022

Keywords

  • 3GPP
  • 5G
  • Management and orchestration
  • Network resource model
  • Network slicing
  • Security attributes
  • Security controls
  • Slicing profile

Fingerprint

Dive into the research topics of 'Network Slicing Security Controls and Assurance for Verticals'. Together they form a unique fingerprint.

Cite this