5G Cybersecurity

The NCCoE is addressing the 5G security challenge by collaborating with industry to create practical solutions that can strengthen the security of a system’s architectural components, provide a secure cloud-based supporting infrastructure, and enable the security features provided by the current 5G standards

Cybersecurity guidance to help consumers and operators of 5G networks securely adopt this technology as the development, deployment, and usage of 5G simultaneously evolves.

The 5G security project can help organizations understand the cybersecurity opportunities, challenges, and risks associated with 5G network deployment, operation, and use. It will also provide information that organizations can use to design, acquire, integrate, implement, and operate 5G networks taking into consideration security of the full hardware to software stack.
Status: Reviewing Comments

The National Cybersecurity Center of Excellence is following an agile process to make each volume for the 5G Cybersecurity project available as a preliminary draft  for public comment, as work continues on the system implementation and development of other sections of the publication. 

The comment period for SP 1800-33A (Executive Summary) is closed, and we are currently reviewing the feedback received.

Project Abstract

5G technology for broadband cellular networks will significantly improve how humans and machines communicate, operate, and interact in the physical and virtual world. 5G offers increased bandwidth, capacity, and low latency. These capabilities can benefit consumers and organizations of all sizes in all business sectors.  

As 5G rolls out more widely, cybersecurity professionals must safeguard this new technology as 5G development, deployment, and usage continuously evolves.  

The NCCoE at NIST has built a laboratory where cyber engineers are designing a solution that operators and users of 5G networks can use to lessen 5G cybersecurity risks. The example implementation is a holistic approach to 5G cybersecurity focusing on standards and defined cybersecurity features, as well as cloud technologies that can provide foundational cybersecurity features outside the scope of 3GPP’s 5G security architecture; resulting in a security reference architecture for 5G networks that bridges the gap between IT and telecommunications cybersecurity capabilities. The project will also show how 5G security features can address known security challenges found in previous generations of cellular networks. And it will demonstrate how commercial and open source products can leverage cybersecurity standards and recommended practices for each of the 5G use case scenarios the project will undertake.  

5G technology is transforming how people and machines operate in the physical and virtual world. Because of 5G, things that weren’t possible five years ago are today. Cybersecurity professionals must serve as guardians of 5G technology to ensure that as it is evolves, people and organizations can safely deploy it.   

Collaborating Vendors

Organizations participating in this project submitted their capabilities in response to an open call in the Federal Register for all sources of relevant security capabilities from academia and industry (vendors and integrators). The following respondents with relevant capabilities or product components (identified as “Technology Partners/Collaborators” herein) signed a Cooperative Research and Development Agreement to collaborate with NIST in a consortium to build this example solution.

Join the Community of Interest

The NCCoE hosts a 5G Forum, where a diverse group of stakeholders can exchange information, pose questions, and share their experiences with others to help advance their use of 5G to benefit their organizations.   

 

Request to Join
Employee speaking on video call with colleagues on online briefing with laptop at home