Towards Micro-Segmentation in 5G Network Security

Olli Mämmelä, Jouni Hiltunen, Jani Suomalainen, Kimmo Ahola, Petteri Mannersalo, Janne Vehkaperä

Research output: Contribution to conferenceConference articleScientific

Abstract

5G mobile networks are currently designed with a vision of reshaping the mobile network architecture. 5G will be a completely new ecosystem with heterogeneous high-speed access technologies and built-in support for various applications and services. The amount of mobile traffic and number of users increases gradually each year as the demand for interactive multimedia, social networking, online gaming, Industrial Internet of Things (IIoT), and vehicle-to-vehicle communication grows. To enable operators to better support different applications, mobile networks will be software-defined and virtual in the future. Security of 5G is going to be crucial in those critical applications that must rely on the mobile network to provide strong authentication, confidentiality, availability and privacy guarantees. In the case of an attack the consequences could be dramatic. For example, an IIoT based factory may occur severe damages if faulty information by an IoT sensor is provided. The roles of isolation, virtualization and network management are going to be important. Applications or services requiring high level of security can be protected by isolating them from the rest of the network. Micro-segmentation is a concept, originating from data centres, for isolating different applications and parts of networks from each other. This paper contributes by describing how the concept of micro-segments can be adapted and utilized in 5G mobile networks. We present the key aspects of microsegmentation and provide a description of our initial proof-of-concept demonstration and ideas how micro-segmentation could be integrated into 5G network architecture. We also describe challenges for future research.
Original languageEnglish
Publication statusPublished - 2016
EventEuropean Conference on Networks and Communications: Workshop on Network Management, Quality of Service and Security for 5G Networks, 2016 EuCNC2016 - Athens, Greece
Duration: 27 Jun 201630 Jun 2016

Conference

ConferenceEuropean Conference on Networks and Communications
Abbreviated titleEUCNC 2016
CountryGreece
CityAthens
Period27/06/1630/06/16
OtherThis year the conference will mainly focus on 5G technologies.

Fingerprint

Network security
Wireless networks
Network architecture
Vehicle to vehicle communications
Network management
Ecosystems
Authentication
Industrial plants
Demonstrations
Availability
Sensors
Internet of things

Cite this

Mämmelä, O., Hiltunen, J., Suomalainen, J., Ahola, K., Mannersalo, P., & Vehkaperä, J. (2016). Towards Micro-Segmentation in 5G Network Security. Paper presented at European Conference on Networks and Communications, Athens, Greece.
Mämmelä, Olli ; Hiltunen, Jouni ; Suomalainen, Jani ; Ahola, Kimmo ; Mannersalo, Petteri ; Vehkaperä, Janne. / Towards Micro-Segmentation in 5G Network Security. Paper presented at European Conference on Networks and Communications, Athens, Greece.
@conference{b3dc47c2e40a43bb8750e151e081aa8b,
title = "Towards Micro-Segmentation in 5G Network Security",
abstract = "5G mobile networks are currently designed with a vision of reshaping the mobile network architecture. 5G will be a completely new ecosystem with heterogeneous high-speed access technologies and built-in support for various applications and services. The amount of mobile traffic and number of users increases gradually each year as the demand for interactive multimedia, social networking, online gaming, Industrial Internet of Things (IIoT), and vehicle-to-vehicle communication grows. To enable operators to better support different applications, mobile networks will be software-defined and virtual in the future. Security of 5G is going to be crucial in those critical applications that must rely on the mobile network to provide strong authentication, confidentiality, availability and privacy guarantees. In the case of an attack the consequences could be dramatic. For example, an IIoT based factory may occur severe damages if faulty information by an IoT sensor is provided. The roles of isolation, virtualization and network management are going to be important. Applications or services requiring high level of security can be protected by isolating them from the rest of the network. Micro-segmentation is a concept, originating from data centres, for isolating different applications and parts of networks from each other. This paper contributes by describing how the concept of micro-segments can be adapted and utilized in 5G mobile networks. We present the key aspects of microsegmentation and provide a description of our initial proof-of-concept demonstration and ideas how micro-segmentation could be integrated into 5G network architecture. We also describe challenges for future research.",
author = "Olli M{\"a}mmel{\"a} and Jouni Hiltunen and Jani Suomalainen and Kimmo Ahola and Petteri Mannersalo and Janne Vehkaper{\"a}",
note = "Project code: 101719 ; European Conference on Networks and Communications : Workshop on Network Management, Quality of Service and Security for 5G Networks, 2016 EuCNC2016, EUCNC 2016 ; Conference date: 27-06-2016 Through 30-06-2016",
year = "2016",
language = "English",

}

Mämmelä, O, Hiltunen, J, Suomalainen, J, Ahola, K, Mannersalo, P & Vehkaperä, J 2016, 'Towards Micro-Segmentation in 5G Network Security' Paper presented at European Conference on Networks and Communications, Athens, Greece, 27/06/16 - 30/06/16, .

Towards Micro-Segmentation in 5G Network Security. / Mämmelä, Olli; Hiltunen, Jouni; Suomalainen, Jani; Ahola, Kimmo; Mannersalo, Petteri; Vehkaperä, Janne.

2016. Paper presented at European Conference on Networks and Communications, Athens, Greece.

Research output: Contribution to conferenceConference articleScientific

TY - CONF

T1 - Towards Micro-Segmentation in 5G Network Security

AU - Mämmelä, Olli

AU - Hiltunen, Jouni

AU - Suomalainen, Jani

AU - Ahola, Kimmo

AU - Mannersalo, Petteri

AU - Vehkaperä, Janne

N1 - Project code: 101719

PY - 2016

Y1 - 2016

N2 - 5G mobile networks are currently designed with a vision of reshaping the mobile network architecture. 5G will be a completely new ecosystem with heterogeneous high-speed access technologies and built-in support for various applications and services. The amount of mobile traffic and number of users increases gradually each year as the demand for interactive multimedia, social networking, online gaming, Industrial Internet of Things (IIoT), and vehicle-to-vehicle communication grows. To enable operators to better support different applications, mobile networks will be software-defined and virtual in the future. Security of 5G is going to be crucial in those critical applications that must rely on the mobile network to provide strong authentication, confidentiality, availability and privacy guarantees. In the case of an attack the consequences could be dramatic. For example, an IIoT based factory may occur severe damages if faulty information by an IoT sensor is provided. The roles of isolation, virtualization and network management are going to be important. Applications or services requiring high level of security can be protected by isolating them from the rest of the network. Micro-segmentation is a concept, originating from data centres, for isolating different applications and parts of networks from each other. This paper contributes by describing how the concept of micro-segments can be adapted and utilized in 5G mobile networks. We present the key aspects of microsegmentation and provide a description of our initial proof-of-concept demonstration and ideas how micro-segmentation could be integrated into 5G network architecture. We also describe challenges for future research.

AB - 5G mobile networks are currently designed with a vision of reshaping the mobile network architecture. 5G will be a completely new ecosystem with heterogeneous high-speed access technologies and built-in support for various applications and services. The amount of mobile traffic and number of users increases gradually each year as the demand for interactive multimedia, social networking, online gaming, Industrial Internet of Things (IIoT), and vehicle-to-vehicle communication grows. To enable operators to better support different applications, mobile networks will be software-defined and virtual in the future. Security of 5G is going to be crucial in those critical applications that must rely on the mobile network to provide strong authentication, confidentiality, availability and privacy guarantees. In the case of an attack the consequences could be dramatic. For example, an IIoT based factory may occur severe damages if faulty information by an IoT sensor is provided. The roles of isolation, virtualization and network management are going to be important. Applications or services requiring high level of security can be protected by isolating them from the rest of the network. Micro-segmentation is a concept, originating from data centres, for isolating different applications and parts of networks from each other. This paper contributes by describing how the concept of micro-segments can be adapted and utilized in 5G mobile networks. We present the key aspects of microsegmentation and provide a description of our initial proof-of-concept demonstration and ideas how micro-segmentation could be integrated into 5G network architecture. We also describe challenges for future research.

M3 - Conference article

ER -

Mämmelä O, Hiltunen J, Suomalainen J, Ahola K, Mannersalo P, Vehkaperä J. Towards Micro-Segmentation in 5G Network Security. 2016. Paper presented at European Conference on Networks and Communications, Athens, Greece.