Open for Public Comment: NCCoE Applying 5G Cybersecurity and Privacy Capabilities Cybersecurity White Paper Series
5G technology for broadband cellular networks will significantly improve how humans and machines communicate, operate, and interact in the physical and virtual world. 5G provides increased bandwidth and capacity, and low latency. However, professionals in fields like technology, cybersecurity, and privacy are faced with safeguarding this technology while its development, deployment, and usage are still evolving.
To help, the NIST National Cybersecurity Center of Excellence (NCCoE) has launched the Applying 5G Cybersecurity and Privacy Capabilities white paper series. The series targets technology, cybersecurity, and privacy program managers within commercial mobile network operators, potential private 5G network operators, and organizations using and managing 5G-enabled technology who are concerned with how to identify, understand, assess, and mitigate risk for 5G networks. In the series we provide recommended practices and illustrate how to implement them. All of the capabilities featured in the white papers have been implemented in the NCCoE testbed on commercial-grade 5G equipment.
We are pleased to announce the following white paper which introduces the series:
Applying 5G Cybersecurity and Privacy Capabilities—Introduction to the White Paper Series
This publication explains what you can expect from each part of the series: information, guidance, recommended practices, and research findings for a specific technical cybersecurity or privacy-supporting capability available in 5G systems or their supporting infrastructures.
Simultaneously, we are also publishing the first technical white paper of the series:
Protecting Subscriber Identifiers with Subscription Concealed Identifier (SUCI)
This publication describes enabling SUCI protection, an optional capability new in 5G which provides important security and privacy protections for subscribers. 5G network operators are encouraged to enable SUCI on their 5G networks and subscriber SIMs and to configure SUCI to use a non-null encryption cipher scheme; this provides their customers with the advantages of SUCI’s protections.
Feedback Wanted
We welcome your input and look forward to your comments by September 16, 2024. We invite you to join the 5G Community of Interest (COI) and we’ll notify you when a paper in the series is being released.
Coming Soon: Using Hardware-Based Security to Ensure 5G System Platform Integrity Whitepaper!