5G and the Need for Platform Integrity

  • Alec Brusilovsky Interdigital Inc. (Manager, Security Standardization), Conshohocken, PA, USA
  • Ira McDonald High North Inc. (President), Grand Marais, MI, USA
Keywords: 3GPP, 5G, AKA, BSM, DSRC, IETF, ITS, ME, MNO, OTA, RATS, RIP, SACM, SAE, SBA, TCG, UAS, UAV, UE, UTM, V2V, V2X, WAVE

Abstract

Current cellular architecture will not be suitable for 5G because it will not scale to the anticipated number of connected endpoints and their rich diversity. The distribution of the previously centralized Core Network (CN) functionality, e.g., Access Authentication and Authorization, has to be decentralized, leading to the demise of the most utilized tool of network security engineering, Physical Security Perimeter. The asserted and attested Platform Integrity of the network nodes that comprise the edges of the network, the network cloud, “network fog”, and the endpoints will allow mobile network operators (MNOs) to create Virtual Network Perimeters and allow highly reliable, diverse, and flexible 5G networks. This article describes the reasons for such network transformation, provides references to applicable standardization activities, and uses the examples of support for Unmanned Aerial Vehicles (UAV) and connected automobiles by 5G networks to justify the need for Platform Integrity.

Downloads

Download data is not yet available.

Author Biographies

Alec Brusilovsky, Interdigital Inc. (Manager, Security Standardization), Conshohocken, PA, USA

Alec Brusilovsky is Manager, Security Standardization at Interdigital. He has extensive experience in security architecture, design, consulting, and applications development for wireline, wireless and IP networks for the key operator, as well as the major vendor. His interests include NFV security, platform integrity, security and privacy for 5GWireless Networks and associated standardization issues.

Ira McDonald, High North Inc. (President), Grand Marais, MI, USA

Ira McDonald is President of High North Inc. He has been a consulting cybersecurity architect at automotive OEMs, network equipment vendors, telecom operators, and printer manufacturers since 1973. He is co-founder of the IEEE-ISTO Uptane Alliance project for secure automotive firmware updates. He wrote Mitsubishi FOTA cybersecurity standards and also wrote FCA Internet Security, Ethernet Security, TLS Security, FOTA, and IDS cybersecurity standards. He has been an officer and editor in IEEE, IETF, ISO, DMTF, SAE, TCG, and Linux Foundation standards projects since 1994.

References

Trusted Computing Group (TCG) http://www.trustedcomputinggroup.org/

TS 22.125 Unmanned Aerial System (UAS) support in 3GPP.

TR 22.829 Enhancement for Unmanned Aerial Vehicles (UAVs).

TR 22.825 Study on Remote Identification of Unmanned Aerial Systems

(UAS).

TR 23.754 Study on supporting unmanned aerial systems connectivity,

Identification and tracking.

TR 23.755 Study on application layer support for Unmanned Aerial

Systems (UAS).

Global Platform (GP) http://www.globalplatform.org/

IETF Remote Attestation Procedures WG https://datatracker.ietf.org/wg/rats/about/

IETF Security Automation and Continuous Monitoring WG https://datatracker.ietf.org/wg/sacm/about/

RATS Network Device Attestation Workflow https://datatracker.ietf.org/doc/draft-fedorkow-rats-network-device-attestation/

RATS Architecture https://datatracker.ietf.org/doc/draft-birkholz-rats-architecture/

SACM Requirements https://tools.ietf.org/html/rfc8248

SACM Software Inventory Message and Attributes (SWIMA) for PATNC

https://tools.ietf.org/html/rfc8412

SACM Endpoint Posture Collection Profile https://datatracker.ietf.org/doc/draft-ietf-sacm-ecp/

SACM Concise Software Identification Tags https://datatracker.ietf.org/doc/draft-ietf-sacm-coswid/

IETF JSON Web Token (JWT) https://tools.ietf.org/html/rfc7519

IETF CBOR Web Token (CWT) https://tools.ietf.org/html/rfc8392

TCG Runtime Integrity Preservation in Mobile Devices https://trustedcomputinggroup.org/wp-content/uploads/TCG_MPWG_RIP_r105_pubrev.pdf

IEEE Wireless Access in Vehicular Environments (WAVE) https://standards.ieee.org/standard/1609_0-2019.html

SAE J2735 Dedicated Short Range Communication (DSRC) Message

Set Dictionary https://www.sae.org/standards/content/j2735_200911/

ITU-T Collaboration on ITS Communication Standards https://www.itu.int/en/ITU-T/extcoop/cits/Pages/default.aspx

ITU-T X.1373 Secure software update capability for intelligent transportation

system communication devices https://www.itu.int/rec/T-REC-X.1373/en

ISO 24089 Road vehicles—Software update engineering, work-inprogress

https://www.iso.org/standard/77796.html

Published
2020-01-01
Section
Special Issue on 3GPP 5G Security