{"id":12180,"date":"2025-05-01T01:26:42","date_gmt":"2025-05-01T00:26:42","guid":{"rendered":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?p=12180"},"modified":"2025-05-01T01:27:50","modified_gmt":"2025-05-01T00:27:50","slug":"mobile-telecom-security-landscape-blog-may-25","status":"publish","type":"post","link":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/","title":{"rendered":"Mobile Telecom Security Landscape Blog: May 25"},"content":{"rendered":"\n<p>Welcome to our May blog. This month, we take a look at a couple of \u2018Secure-by\u2026\u2019 approaches to achieving higher security outcomes. Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-secure-by-design\">\u200bSecure-By-Design<\/h3>\n\n\n\n<p> A <a href=\"https:\/\/www.cisa.gov\/securebydesign\">secure-by-design<\/a> software development process is a systematic approach applied throughout the development lifecycle that places security at the centre of product development. \u00a0<a href=\"https:\/\/www.ncsc.gov.uk\/collection\/cyber-security-design-principles\">Secure-by-design applies the process<\/a> beyond just the design phase where security risks are considered at the requirements, design, implementation, testing, deployment, and maintenance stages. This source establishes five principles for the design of cyber-secure systems. <\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Establish the context before designing a system<\/li>\n\n\n\n<li>Make compromise difficult<\/li>\n\n\n\n<li>Make disruption difficult<\/li>\n\n\n\n<li>Make compromise detection easier<\/li>\n\n\n\n<li>Reduce the impact of compromise<\/li>\n<\/ul>\n\n\n\n<p>A foundational component of SBD is to actively undertake threat assessments informed by the <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma-mobile-telecommunications-security-landscape-2025\/\">operating security landscape<\/a>.\u00a0 In this way, robust security foundations can be established for both products and services.\u00a0 The <a href=\"https:\/\/www.cisa.gov\/sites\/default\/files\/2023-04\/principles_approaches_for_security-by-design-default_508_0.pdf\">concept is well established<\/a> and can form a fundamental part of any development lifecycle.\u00a0 From a supply chain perspective, mobile network operators may wish to consider the benefits of a robust secure-by-design process from their prospective suppliers.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-secure-by-default\">Secure-By-Default<\/h3>\n\n\n\n<p>Computing platforms and enabling software contain vulnerabilities that can be exploited for malicious purposes.\u00a0 <a href=\"https:\/\/www.ncsc.gov.uk\/information\/secure-default\">Secure by Default<\/a> means products are delivered in a resilient, \u2018hardened\u2019, configuration against likely exploitation techniques without additional steps to secure them.\u00a0 In this way, the initial deployments have a security baseline on which to layer additional controls.\u00a0 <a href=\"https:\/\/www.cisa.gov\/sites\/default\/files\/2023-04\/principles_approaches_for_security-by-design-default_508_0.pdf\">Examples of secure by default security measures<\/a> include:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Eliminate Default Passwords: Requiring administrators to set a strong password during installation and configuration<\/li>\n\n\n\n<li>Disabling known unused network ports: to reduce the attack surface<\/li>\n\n\n\n<li>Enabling secure connection protocols such as Secure Socket Layer (SSL) \/ TSL automatically: to protect data in transit from initial deployment<\/li>\n\n\n\n<li>The build and configuration include up to date patches and code updates without the need for additional provisioning<\/li>\n\n\n\n<li>Secure Logging: Provide high-quality audit logs to customers at no extra charge<\/li>\n\n\n\n<li>Software Authorisation Profile: Manufacturers should include a visible warning that notifies customers of an increased risk if they deviate from the recommended profile authorisation<\/li>\n\n\n\n<li>Track and reduce \u201chardening guide\u201d size: Reduce the size of \u201chardening guides\u201d produced for products and strive to ensure that the size shrinks over time as new versions of the software are released.<\/li>\n<\/ul>\n\n\n\n<p>Defining secure by design and by default requirements within the procurement and delivery phases can build an initial security baseline on which to build additional layered security measures. <strong>If you\u2019d like to discuss these topics or to get more closely involved, please email\u00a0<a href=\"mailto:security@gsma.com\">security@gsma.com<\/a>.<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Welcome to our May blog. This month, we take a look at a couple of \u2018Secure-by\u2026\u2019 approaches to achieving higher security outcomes. Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and [&hellip;]<\/p>\n","protected":false},"author":53,"featured_media":11165,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","footnotes":""},"categories":[1505],"tags":[],"algolia_discover_type":[1549],"class_list":["post-12180","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-latest-news","algolia_discover_type-article"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.3 (Yoast SEO v24.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Mobile Telecom Security Landscape Blog: May 25 - Security<\/title>\n<meta name=\"description\" content=\"Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Mobile Telecom Security Landscape Blog: May 25 - Security\" \/>\n<meta property=\"og:description\" content=\"Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/\" \/>\n<meta property=\"og:site_name\" content=\"Security\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-01T00:26:42+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-01T00:27:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png\" \/>\n\t<meta property=\"og:image:width\" content=\"352\" \/>\n\t<meta property=\"og:image:height\" content=\"190\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"sfishwick@gsma.com\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"sfishwick@gsma.com\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Mobile Telecom Security Landscape Blog: May 25 - Security","description":"Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/","og_locale":"en_GB","og_type":"article","og_title":"Mobile Telecom Security Landscape Blog: May 25 - Security","og_description":"Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.","og_url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/","og_site_name":"Security","article_published_time":"2025-05-01T00:26:42+00:00","article_modified_time":"2025-05-01T00:27:50+00:00","og_image":[{"width":352,"height":190,"url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png","type":"image\/png"}],"author":"sfishwick@gsma.com","twitter_card":"summary_large_image","twitter_misc":{"Written by":"sfishwick@gsma.com","Estimated reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/","name":"Mobile Telecom Security Landscape Blog: May 25 - Security","isPartOf":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/#primaryimage"},"image":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/#primaryimage"},"thumbnailUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png","datePublished":"2025-05-01T00:26:42+00:00","dateModified":"2025-05-01T00:27:50+00:00","author":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/779a7ff304b557a1b5fb9b7e5b34f150"},"description":"Secure-by-design is the concept of making the very earliest steps of product design such that security is built-in as a fundamental and holistic design criterion, rather than by just implementing the functionality and \u2018bolting on\u2019 security as a later design and development action. Secure-by-default aims to improve the starting security of a newly deployed product or service by establishing a default security \u2018hardening\u2019 requiring much less effort to establish a robust security baseline.","inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/mobile-telecom-security-landscape-blog-may-25\/#primaryimage","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png","contentUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png","width":352,"height":190,"caption":"A digital image of a padlock surrounded by concentric circles, set against a background of binary code. The padlock and circles are rendered in glowing blue hues, symbolizing cybersecurity and data protection. The binary code consists of numbers 0 and 1 in varying sequences on a dark backdrop."},{"@type":"WebSite","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/","name":"Security","description":"GSMA Security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Person","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/779a7ff304b557a1b5fb9b7e5b34f150","name":"sfishwick@gsma.com","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/053fecc6339b359a923239637a042baf?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/053fecc6339b359a923239637a042baf?s=96&d=mm&r=g","caption":"sfishwick@gsma.com"}}]}},"featured_image_url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/11\/FS34-blog-image--e1744681648199.png","_links":{"self":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/12180","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/users\/53"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/comments?post=12180"}],"version-history":[{"count":4,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/12180\/revisions"}],"predecessor-version":[{"id":12379,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/12180\/revisions\/12379"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media\/11165"}],"wp:attachment":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media?parent=12180"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/categories?post=12180"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/tags?post=12180"},{"taxonomy":"algolia_discover_type","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/algolia_discover_type?post=12180"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}