• AccuKnox 5G and Edge Networks Security
  • Home > 4G/5G Telecom

    5G Control Plane - RIC Security

    Security Premise

  • Moving towards k8s orchestrated control plane (for e.g., RIC)

  • Allows much fast deployments cycles of xApps on RIC

  • Security is at risk where multiple vendors controlling different xapps are pushing their workloads to the RIC

    • Edge computing: 

  • Moving towards containerized/orchestrated deployments
  • Security is at risk where multiple edge workloads from different vendors are pushed to edge.

    • Security Requrements 

  • Contain blast radius: Possible that one of the workload might be susceptible. How to contain the blast radius?
  • Workload Isolation/Hardening

    • 5G SD-RAN RIC Proposal
    Sreps:

  • Deploy RiaB in a k8s cluster
  • Install KubeArmor on the RiaB k8s cluste
  • Show 5G control plane RIC app behavior
  • Show hardening policies for the workloads(policy)
  • Kpimon .. allow policies
  • Enforce hardening policies
  • Attack Vectors simulation (rogue xApp?)
  • Alerts/Telemetry on violation of rules

    • Deployment mode: ;

  • k3s + RiaB 1.2.0 + Ubuntu