The fifth generation (5G) telecommunication system delivers Enhanced Mobile Broadband (eMBB), massive machine type communications, and ultra-reliable and low latency communications to subscribers. 5G provides multi-network slicing, multi-tenancy, multi-level of services and multi-connectivity network capabilities thereby enabling various industries to join the operation and development of the 5G services.
Alongside the new capabilities in 5G, there are also changes in how networks are built, secured, and managed. These include virtualisation and containerisation, Network Function Virtualisation (NFV), Open-Source Software (OSS), SDN security monitoring, security assurance, security of Open RAN (O-RAN) interfaces and components, network slicing, network slicing security, programmable network, multi-access edge computing (MEC) and its security, and combined development and operations functions, so called DevOps.
These new technologies will give future networks flexibility and agility in developing and deploying services and network infrastructures. However, they also introduce new attack vectors in next generation telecommunications systems and the organisations that use them.
This document discusses different aspects of 5G security identified by GSMA as requiring attention within appropriate bodies (e.g. 3GPP, IETF, ETSI, and GSMA).