OpenRAN Security Based on Zero Trust Architecture - Mavenir

Blog

OpenRAN Security Based on Zero Trust Architecture

19 February 2021

AUTHORED BY: Tammy Mayeux

Rooted in the principle of “never trust, always verify,” Zero Trust is designed to protect modern digital environments by leveraging network segmentation, preventing lateral movement, providing Layer 7 threat prevention, and simplifying granular user-access control.  A “zero trust” (ZT) approach to cybersecurity, as described in NIST’s Special Publication 800-207: Zero Trust Architecture, is primarily focused on data and service protection but can and should be expanded to include all enterprise assets (devices, infrastructure components, applications, virtual and cloud components) and subjects (end users, applications and other nonhuman entities that request information from resources).

O-RAN Alliance Guiding Principles

In this new paradigm, an enterprise must assume no implicit trust and continually analyze and evaluate the risks to its assets and business functions and then enact protections to mitigate these risks. In zero trust, these protections usually involve minimizing access to resources (such as data and compute resources and applications/services) to only those subjects and assets identified as needing access as well as continually authenticating and authorizing the identity and security posture of each access request. Support of a zero-trust architecture requires each O-RAN component to comply with established functionalities and protections. O-RAN Alliance has identified several guiding principles for its ongoing work, including:

  1. Support integration with an external identity, credential, and access management system (ICAM) using industry standard protocols.
  2. Require authentication and authorization on all access.
  3. Support role-based access control (RBAC)
  4. Implement confidentiality on connections between O-RAN and external components.
  5. Implement integrity checking on connections between O-RAN and external components.
  6. Support encryption of data at rest.
  7. Support replay prevention
  8. Implement security log generation and collection to an external security information and event management (SIEM)

Read more about a zero trust architecture and other key security differentiators of Open RAN in the whitepaper Security in OpenRAN.

Ream more about Mavenir OpenRAN Solutions here.

Tammy Mayeux
Tammy Mayeux
Tammy Mayeux
Vice President, Global Marketing

In this role, she focuses on positioning the company as a disruptive Network Software Provider in the evolving telecoms/enterprise landscape. She has over 20 years of experience in the technology business and has led marketing, sales, and software delivery teams for several global system integrators such as EDS, HP and DXC Technology.

Tammy holds a bachelor's degree in Computer Science from the University of New Orleans.

Related Content

Mavenir is collaborating with NVIDIA to build an AI-on-5G solution that brings together a simplified infrastructure stackable to run 5G RAN, 5G Core, AI, and Graphical Edge computing applications.

Read more >

Massive MIMO, many agree, is one of OpenRAN's big obstacles. So, the news that Xilinx and Mavenir are touting a massive MIMO radio unit compatible with OpenRAN specifications, and that it will be in field trials later this year, is – ahem – a pretty massive deal, the equivalent of discovering your golf club's best player can outdrive Rory McIlroy.

Read more >

Mavenir is to market its own range of massive MIMO radio units in a bid to further unlock the OpenRAN and vRAN market.

Read more >

View All

Mavenir and Xilinx collaborate to bring to market a unified 4G/5G O-RAN massive MIMO (mMIMO) portfolio to enable Open RAN deployments

Read more >

Mavenir announce the launch of an AI-on-5G Hyper Converged Edge solution working in close collaboration with NVIDIA.

Read more >

Mavenir wins 2 awards for its innovation in the delivery of fully containerized, cloud-native IMS and Virtualized Open RAN at the 5G MENA Digital Symposium virtual awards.

Read more >

View All

Massive MIMO, many agree, is one of OpenRAN's big obstacles. So, the news that Xilinx and Mavenir are touting a massive MIMO radio unit compatible with OpenRAN specifications, and that it will be in field trials later this year, is – ahem – a pretty massive deal, the equivalent of discovering your golf club's best player can outdrive Rory McIlroy.

Read more >

Mavenir is to market its own range of massive MIMO radio units in a bid to further unlock the OpenRAN and vRAN market.

Read more >

Mavenir's AI-on-5G Hyperconverged Edge AI solution can be deployed by CSPs to enhance their Mobile Edge Cloud by providing differentiated services to their enterprise customers and their network service users with enhanced revenue-generating services.

Read more >

View All

Mavenir is collaborating with NVIDIA to build an AI-on-5G solution that brings together a simplified infrastructure stackable to run 5G RAN, 5G Core, AI, and Graphical Edge computing applications.

Read more >

For the telecom industry, the global pandemic presents challenges that have turned into opportunities to expand reach and enhance services.

Read more >

Mavenir highlights key findings from Heavy Reading’s Cloud-Native 5G Core Operator Survey.

Read more >

View All

Join Mavenir's John Baker, SVP of Business Development, at CableLabs Envision Vendor Forum 2021: Mobile and Convergence on April 21st, 2021.

Read more >

Open standards, open platforms and open source for cloud native 5G': This talk discusses the benefits and challenges for operators as they migrate towards “open” eco-systems for multi-vendor cloud-native 5G deployments.

Read more >

Join Mavenir's Susie Riley, GM, Monetization Business Unit, for the Transforming Customer Engagement for a New World with Business Messaging Webinar on April 22, 2021.

Read more >

View All

Need More Information?

Building the future of networks with cloud-native software that runs on any cloud and transforms the way the world connects.