5G: O-RAN Security Threats

The ORAN Alliance takes care of the security aspects from the design stage, giving guidelines issued by security experts (SFG, Security Focus Group), and consolidated by the most important standardization bodies (3GPP, ETSI, NIST, ENISA, GSMA). The open nature of this architecture allows the interoperability of different systems provided by various vendors and operators. The RIC, the intelligent part of the O-RAN architecture, hosts applications that implement the various uses cases of 5G networks. These applications can be developed either by a RIC vendor or by third parties, without a limit in theory, and the risk of introducing new threats and vulnerabilities easily increases. One of the basic cybersecurity concepts is that “no weak link must be in the chain”. A single component with a vulnerability can be the root cause of an entire system being compromised if an attacker exploits the vulnerability. HCLTech is part of the O-RAN ALLIANCE and is involved in several O-RAN Software Community (ORAN SC) projects and, among those, contributes widely in RIC Application (RICAPP) project with xApps development. ORAN SC projects are following the Core Infrastructure Initiative (CII) best practices program [14], which is an open-source secure development maturity model leading to secure products since their design, and those one having a CII badge showcase the project’s commitment to security. RICAPP project is among projects having the CII badge.

Download the Whitepaper

I acknowledge that I am not a U.S. Federal Government employee or agency, nor am I submitting information with respect to or on behalf of one.

Why are we asking you this?

HCL provides software and services to U.S. Federal Government customers through its partner ImmixGroup, Inc. Please contact ImmixGroup, Inc. at HCLFederal@immixgroup.com

I wish to be contacted by a HCL representative over phone*

Yes

Request a meeting

Preferred Communication Mode

Phone

Yes, I’d like HCL to provide my contact information to Cisco and NetApp so they can share the latest news and offers with me by email, post, or telephone. You may unsubscribe from receiving news and offers from Cisco and NetApp at any time by following the instruction in the communication received. Cisco and NetApp handle your information as described in Cisco privacy Statement and NetApp privacy policy respectively

Would you like to receive case studies, whitepapers, newsletters, announcements, and other relevant updates about products and services, events and webinars from HCLTech?

Yes

I have read HCLTech’s Privacy Policy and agree to the terms and conditions*

Select Preferences *

Case Studies

Whitepapers

Announcements

Events

Webinars