UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ITU-T - X.1047

Security requirements and architecture for network slice management and orchestration

active, Most Current
Organization: ITU-T
Publication Date: 1 October 2021
Status: active
Page Count: 56
scope:

This Recommendation specifies:

• security requirements for network slice management and orchestration;

• security requirements for network slice subnet (NSS) management and orchestration;

• security requirements for service-based interfaces for the logical management functions

• security requirements for the interface between the network slice subnet (NSS) management and orchestration and the network function virtualization-management and orchestration (NFV-MANO) / network function management (NFM) / transport network controller (TNC) logical functions;

• a security reference architecture for network slice management and orchestration (MANO);

• how to apply the security reference architecture to the automatic creation of end-to-end (E2E) network slice with customized security capabilities, such as being isolated with fine-grained isolation policy and preventing network attacks at the edge of NSS domains;

• how to evaluate tamper-proof and access control mechanisms for network slice management data in order to make network slice management data traceable, verifiable and immutable, as well as guaranteeing that only authorized data consumers can access network slice management data based on fine-grained access control policy.

This is done in order to deploy a full-scale E2E network slicing securely for consumers, businesses and government segments.

Document History

X.1047
October 1, 2021
Security requirements and architecture for network slice management and orchestration
This Recommendation specifies: • security requirements for network slice management and orchestration; • security requirements for network slice subnet (NSS) management and orchestration; •...

References

This document references:
GR NFV-SEC 009 - Network Functions Virtualisation (NFV); NFV Security; Report on use cases and technical approaches for multi-layer host administration
Published by ETSI on January 1, 2017
The present document addresses multi-layer administration use cases and technical approaches, an issue identified in the Security Problem Statement, ETSI GS NFV-SEC 001 [i.1]. Multi-layer...
This document references:
GS NFV-IFA 011 - Network Functions Virtualisation (NFV) Release 4; Management and Orchestration; VNF Descriptor and Packaging Specification
Published by ETSI on September 1, 2023
The present document provides requirements for the structure and format of a VNF Package to describe the VNF properties and associated resource requirements in an interoperable template. The focus is...
This document references:
GS NFV-IFA 014 - Network Functions Virtualisation (NFV) Release 4; Management and Orchestration; Network Service Templates Specification
Published by ETSI on September 1, 2023
The present document specifies the functional requirements for network service descriptors and physical network function descriptors, their logical structure and contents, as well as functional...
This document references:
GS NFV-MAN 001 - Network Functions Virtualisation (NFV); Management and Orchestration
Published by ETSI on December 1, 2014
The present document describes the management and orchestration framework required for the provisioning of virtualised network functions (VNF), and the related operations, such as the configuration...
This document references:
GS NFV-SEC 013 - Network Functions Virtualisation (NFV) Release 3; Security; Security Management and Monitoring specification
Published by ETSI on February 1, 2017
In NFV network, network services and network functions can be deployed dynamically. The present document specifies functional and security requirements for automated, dynamic security policy...
This document is referenced by:
Q.5003 - Signalling requirements and architecture for federated multiaccess edge computing
Published by ITU-T on February 1, 2022
This Recommendation describes the application layer architecture and architectural requirements for the federated multiaccess edge computing (MEC). The scope of this Recommendation covers: –...
This document is referenced by:
Q.5024 - Protocol for providing intelligent analysis services in IMT-2020 networks
Published by ITU-T on February 1, 2022
This Recommendation specifies signalling architecture and protocol for providing intelligent analysis services in IMT-2020 networks. It specifies an architecture concept, signalling flows between the...
This document is referenced by:
X.1814 - Security guidelines for IMT-2020 communication systems
Published by ITU-T on September 1, 2022
This Recommendation provides security guidelines for the development of IMT-2020 communication systems. It identifies all components related to the security of an IMT-2020 communication system, i.e.,...
This document is referenced by:
X.1816 - Guidelines and requirements for classifying security capabilities in IMT-2020 network slice
Published by ITU-T on March 1, 2023
The objective of this Recommendation is to provide guideline and requirements for classifying IMT-2020 network slice security. This Recommendation specifies: • Definition of the differentiated...
This document is referenced by:
Q.5007 - (Pre-Published) Signalling architecture for microservices based intelligent edge computing
Published by ITU-T on December 1, 2023
This Recommendation specifies signalling architecture for microservices based intelligent edge computing to provide intelligence to the edge network for efficient data processing within the network....
View Less
View All
Advertisement