Back to All
OnQ Blog

How 5G is enabling resilient communication for the connected intelligent edge

Written by
Soo Bum Lee
Written by
Gavin Horn
Jan 12, 2023
Qualcomm-image

As 5G powers the enablement of the connected intelligent edge and accelerates the cloud economy, the number of connected smart devices continues to multiply and diversify. While that growth drives digital transformation across many diverse industries, it also increases the attack surface of end-to-end systems. 

That’s why we need an agile and robust platform that can provide security and privacy, at scale, across different use cases and deployments. 5G with the connected intelligent edge is a such platform. While 5G is already meeting today’s demanding requirements, we look forward to evolving security and privacy features in 5G Advanced, bringing new levels of data protection for a growing set of connected devices and services through the rest of this decade.

 

Qualcomm-image
Figure 2- Communication Resiliency

Resilient communication requires an end-to-end approach to system security

As mobile technology expands its usefulness and benefits to a variety of vertical segments, the end-to-end system — from cloud, to network, to device — requires greater resiliency in areas like security, privacy, trust, identity, and robustness. 

The original 5G vision of supporting a wide range of devices, services, and deployment scenarios, also included the support of a robust and secure system. Building on the proven LTE security framework and deployment experiences, 5G introduced a wide range of security enhancements. Key features included identity privacy protection, enhanced and flexible authentication mechanisms, user-plane integrity protection, slice-specific authentication and authorization, and service-based interface security. All of these aimed to deliver an end-to-end security approach to the system design. 

In addition, these features were designed in alignment with functional enhancements developed for different verticals, providing a flexible framework that enables the protection of diverse deployments beyond mobile broadband, such as sidelink, V2X, multi-access edge computing, mobile broadcast, private networks, IoT, and more.

 

Qualcomm-image
Figure 3 - Zero Trust Security Model

Zero-trust security is at the core of a resilient system

The 5G system is designed to be compatible with cybersecurity zero-trust principles. A zero-trust security model is built on the principle that no user or network function can be trusted. Verification is always needed for access to the system resources on an ongoing basis, whether internal or external to the network. This principle shifts the focus away from network perimeter security, to restricting access by internal and external users and software components, using strong authentication and fine-grained authorization. It focuses on protecting resources — such as data, compute resources, applications, and services — instead of safeguarding network segments.

5G introduced a service-based architecture (SBA) to the core network that facilitates zero-trust security with fine-grained service authentication and authorization. Other end-to-end security functionalities included:

  • Mutual authentication and authorization
  • Encryption and integrity check in both signaling and user plane 
  • Subscription Permanent Identifier (SUPI) encryption
  • Secured radio to core network communications with Internet Protocol Security (IPSec)
  • Secured roaming interconnect with a Security Edge Protection Proxy (SEPP)

Efficiently addressing the growing demand for data and 5G services will entail disaggregating and distributing cloud processing across the connected intelligent edge, closer to the user. At the same time, initiatives like the open RAN (O-RAN) have moved mobile network architectures toward new topologies featuring disaggregation and virtualization for scalability, cost-effectiveness, and performance. 

The disaggregated RAN architecture defined in O-RAN brings many benefits from a security perspective, such as improved security agility, adaptability, and resiliency. The transparency provided by O-RAN, among other properties, will strengthen the cellular system security in various aspects, including interface and software security and the adoption of zero-trust security.

 

Qualcomm-image
Figure 4 - Continued evolution to strengthen the mobile security foundation

5G already delivers strong security today with focused enhancements coming in 5G Advanced and beyond

3GPP Release 15 established the 5G security foundation focusing on end-to-end system security for enhanced mobile broadband use cases. It introduced security functionalities, such as improved subscriber authentication and privacy, secure service-based architecture, and secure roaming interconnections.

Both Releases 16 and 17 have improved 5G system resiliency for a broader selection of devices, use cases, and verticals. For instance, Release 16 drove enhanced security for V2X, non-public networks (NPN), ultra-reliable and low-latency communication (URLLC), integrate access and backhaul (IAB), as well as cellular and industrial IoT, while Release 17 further improved security for the edge, sidelink, drone communication, and multicast and broadcast systems.

Release 18 — the first set of 5G Advanced specifications — will further extend the zero-trust principles and is investigating improvements of end-to-end security for features such as AI/ML security for 5G, and additional enhancements in identity privacy. While it continues to provide enhancements for new use cases and deployments, it also starts to establish the security foundation for the next-generation mobile platform.

In addition to AI/ML, key security technology enablers for the next-generation mobile era should include native security mechanisms, hardware-embedded anchors of trust, privacy-preserving technologies, options to be prepared for the post-quantum era, and more.

 

Qualcomm-image
Figure 5 - Our research focus on 6G communications resiliency across all layers

Our research is already driving advanced cryptography standards for the quantum computing era. For example, FALCON — a quantum-resistant digital signature algorithm that Qualcomm Technologies drove — can deliver next-generation data security.

5G is a robust and flexible system platform that continues to evolve into 5G Advanced, bringing new security and privacy features and enhancements to realize the full potential of a resilient 5G system. We are excited to see our research materializing in chipset system security functions that enable the mass deployment of protected 5G experiences, as well as other new and exciting use cases in the future.

 

5GNetworkingNetworks

Opinions expressed in the content posted here are the personal opinions of the original authors, and do not necessarily reflect those of Qualcomm Incorporated or its subsidiaries ("Qualcomm"). The content is provided for informational purposes only and is not meant to be an endorsement or representation by Qualcomm or any other party. This site may also provide links or references to non-Qualcomm sites and resources. Qualcomm makes no representations, warranties, or other commitments whatsoever about any non-Qualcomm sites or third-party resources that may be referenced, accessible from, or linked to this site.

About the Authors
Soo Bum Lee
Soo Bum LeePrincipal Engineer, Qualcomm Technologies, Inc.
Read More
Gavin Horn
Gavin HornSr. Director, Engineering, Qualcomm Technologies, Inc.
Read More
Related Articles
Qualcomm relentlessly innovates to deliver intelligent computing everywhere, helping the world tackle some of its most important challenges. Our leading-edge AI, high performance, low-power computing, and unrivaled connectivity deliver proven solutions that transform major industries. At Qualcomm, we are engineering human progress.

Stay connected

Get the latest Qualcomm and industry information delivered to your inbox.

Subscribe
Manage your subscription
Also of Interest

© Qualcomm Technologies, Inc. and/or its affiliated companies.

Snapdragon and Qualcomm branded products are products of Qualcomm Technologies, Inc. and/or its subsidiaries. Qualcomm patented technologies are licensed by Qualcomm Incorporated.

Note: Certain services and materials may require you to accept additional terms and conditions before accessing or using those items.

References to "Qualcomm" may mean Qualcomm Incorporated, or subsidiaries or business units within the Qualcomm corporate structure, as applicable.

Qualcomm Incorporated includes our licensing business, QTL, and the vast majority of our patent portfolio. Qualcomm Technologies, Inc., a subsidiary of Qualcomm Incorporated, operates, along with its subsidiaries, substantially all of our engineering, research and development functions, and substantially all of our products and services businesses, including our QCT semiconductor business.

Materials that are as of a specific date, including but not limited to press releases, presentations, blog posts and webcasts, may have been superseded by subsequent events or disclosures.

Nothing in these materials is an offer to sell or license any of the services or materials referenced herein.