Lead Machine Pink 160x1200

Lead Machine Pink 160x1200

iTWire TV 705x108

Wednesday, 22 September 2021 16:45

Radware shows how cloud native tech will impact 5G mobile networks

By Yaniv Hoffman, vice president technologies, Radware
Yaniv Hoffman, vice president technologies, Radware Yaniv Hoffman, vice president technologies, Radware

GUEST OPINION: While the rapid advance of 5G communications delivers comprehensive benefits for communication service providers (CSPs), the new technology also presents challenges in security and cost.

CSPs are entering a new phase of network cloudification to transform their network infrastructure. This technology transformation will capitalise on network function virtualisation, software defined networking and artificial intelligence.

Their strategy to capture new growth is shifting as well. Future growth is being driven by the move to virtualise mobile core networks in response to growth of user data, the increasing adoption of IoT devices, new 5G business and complex networks.

Business benefits

Network cloudification offers CSPs several major business benefits:

• Capital expenditure benefits from better aggregation and utilisation of solutions and services on general purpose hardware.

• Operating expenditure benefits from reduced labour and operational efficiencies gained through cloud automation, agility and scalability, which indirectly impact customer experience.

• Value-added services leverage cloud platforms to enable new services and revenue streams.

Business challenges

The original goals for cloud were to decouple growth from cost and rapidly deliver new services. CSPs did this in 4G environments by transitioning the network elements into big virtual network functions.

These functions were too big and not cost effective. In addition, their use of legacy operations made networks unwieldy to deploy, scale and maintain. These challenges will multiply in the 5G environment.

CSPs understand today they need to derive more from the cloud, which must be rebuilt as cloud-native to deliver business agility in rapidly onboarding new apps and deploying and operating new services. The scale of 5G opens the door to more devices and a diverse mix of services, making it difficult for legacy operations to keep up.

Cloud native benefits

We see more and more CSPs partnering with cloud providers in order to accelerate the 5G transformation journey, which offers benefits such as fully automated deployments, ease of management and orchestration of workload in the hybrid cloud. Essentially, the transformation delivers deployment flexibility and automated scaling of network functions for demand-driven network growth, reducing manual monitoring and operational complexity.

High profile cloud partnerships demonstrate some of the benefits of 5G. These include:

• Microsoft Azure – Microsoft acquired Affirmed Networks (network virtualisation provider specialising in vEPC and v5GC). The partnership allowed Microsoft to produce Azure for Operators, a suite of products with Azure networking and cloud infrastructure, network virtualisation and cloud applications, as well as Azure AI and an analytics engine.

• AT&T – At the end of June, AT&T announced that it is moving its 5G mobile network to Microsoft cloud. This strategic alliance provides a path for all AT&T mobile network traffic to be managed using Microsoft Azure technologies. Both companies will start with AT&T’s 5G core, which connects mobiles users and IoT devices to the Internet and other services.

• Nokia and Google – In January, Google Cloud and Nokia announced they would jointly develop cloud native 5G core solutions for CSPs and enterprise customers. The new partnership will deliver cloud capabilities to the network edge.

• Cisco and Altiostar – They partnered to create blueprints to accelerate deployments of 4G/5G OpenRAN solutions to service provider networks.

• Vodafone and Verizon – They partnered with AWS to explore edge computing opportunities.

• VMware has been moving into the telco sector with more updates to its telco cloud platform, including support for Open RAN.

Security challenges

Because of its distributed nature, the deployment of 5G networking infrastructure differs dramatically from previous generations of mobile networks. CSPs face new challenges in moving from a component-based topology to a service-based network.

For example, prior to 5G, mobile radio access and the core networks consisted of isolatable network elements with specific tasks. In 4G networks, a virtual evolved packet core (EPC) in the network emerged.

5G takes this a step further by transforming all network components into virtual, microservice elements that are software based, disaggregated and deployed in various locations.

The software-based microservices architecture enables network slicing. This includes the ability to isolate different services, each with its own parameters, setup and security policies - all on one hardware element.

The 5G network must be designed to support multiple security policies, segregated by slice on individual network components. The more slices, the more microservices and interface points in the network that are in turn exposed to the Internet.

Traditional security methods with predefined rules, thresholds and manual setup will not work in a 5G environment. Service providers need to automate operations and have a scalable infrastructure to manage policies, which requires DevOps capabilities. All security tools need to be automated for onboarding and deployment.

5G networks introduce new traffic patterns that run east/west towards applications. Therefore, there is a need to inspect egress traffic. The number of inspection points increases dramatically not only from peering points, but also from traffic at edge computing points.

CSPs need to consider the following unique security threats when planning protection for 5G networks:

• In network edge protection, multiple edge (breakouts) and mesh types significantly increase exposure.

• Outbound attacks include IoT botnets and attacks on the network edge.

• Inbound attacks, include floods from public cloud and from the Internet, and attacks on core network services.

• Network gateway attacks are based on burst attacks, IoT, BOT, API, DNS and SSL, raising complexity and impact on the infrastructure, application servers/telecommunication cloud and API gateways.

• Network slicing occurs when each slice has its own threat risk that requires per-slice security policies and a coherent defensive strategy across all slices. Mobile edge core security infrastructure and 5G availability assurance also require protection.

• Attacks on multi-access edge computing components include targeting service capability and mobility management entities. Defences need to prevent network resource failure.

• Outgoing attacks to external servers from IoT devices are also a risk. IT needs to prevent network reputation risk, while infections targeted towards narrow band IoT devices also require protection to prevent IoT device infection with botnets.

• The public/private cloud edge needs protection. The shift in some areas of workload to the public cloud introduces new security concerns to service provider networks with additional shifts in microservice environment and cloud-native network function.

To counter the many, varied and ever-evolving attacks by cyber criminals, it is essential that organisations include in their defensive armoury WAF/API protection for their cloud-native environments.


Subscribe to ITWIRE UPDATE Newsletter here

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinatrs and campaigns and assassistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments