Home Blog Page 252

Hacking 5G is too easy – Security Research Labs

Nick Booth
-
0
Hacking 5G is too easy – Security Research Labs

Telcos are novices at this pace of change

Hacking 5G networks is far too easy German security researcher Karsten Nohl has told IEEE Spectrum, the publication of the Institute of Electrical and Electronics Engineers.

Nohl, founder of Berlin-based Security Research Labs, recently breached live 5G networks in a series of “red teaming” exercises for companies and in most cases his researchers took control of the network and could have stolen customer data or shut operations. Recently MCH2022 hackers breezed through poorly configured clouds, which comprise much of today’s 5G networks. Nohl said operators failed to apply basic cloud security techniques that could help mitigate hacks.

Open RAN has created an open season for hackers and the first benefactor is the potential hacker. The first parties to unlock value from the telco cloud are likely to be criminals and the treasure will be some 5G operators’ data, according to Nohl. The race for operators to ‘upscale’ has thrust them into too many unfamiliar roles, such as system integrator, and the entire supply chain is vulnerable, Eric Hanselman, chief analyst at 451 Research, has said. “Telcos have never had to deal with these levels of software development or infrastructure management before.” 

Mobile operators have always relied on proprietary hardware from vendors like Ericsson, Nokia and Huawei to build their networks. But they’ve been pushed to virtualise network functions and replicate key software components on generic hardware or even in the cloud. While virtualisation has many virtues, such as speed and cheapness, the benefits of dynamic reconfiguration aren’t much compensation when the risks can prove to be fatal.

The decoupling of hardware and software may have prevented vendor lock-in but they have obviated hacker lock outs. The new attributes make 5G networks more complex to secure, said Nohl, which means automation is needed to manage networks. Mixing and matching software and services from different companies involves far more people. “The more stuff you have and the more moving parts, the more opportunities for mistakes, little misconfigurations,” said Nohl.

Among the entry points that Nohl’s team discovered were a backdoor-revealing API that had been posted publicly to the Internet and an old development site that had accidentally been left online. But the increased ease of penetration is not even the main problem. “The really critical question is how difficult it is to break through from your initial foothold to something actually valuable within the network,” said Nohl.

Containers have made that movement easier in many cases. Sometimes these self-contained packages of software ‘bungles’ actually exacerbate any problems in code, software libraries or configuration files. Containers are a critical part of the cloud, but that swings both ways. Different applications from different companies or departments can run alongside one another on the same servers and the one thing they having common is a fatal mistake. 

Containers are supposed to be isolated from one another, but if they are poorly configured it’s possible to break out and gain access to other containers or even to take control of the host system. In multiple instances Nohl and his team found misconfigured containers that allowed them to do just this. The problem is that security officers are often left out until the last minute. Security teams are often invited in when the projects are almost finished and have a very short time slot in order to fine-tune it, if they even allowed to intervene. 

Some of the above difficulties could be attributed to the fact that telcos are inexperienced when it comes to cloud security, said Nohl. But they may also be taking dangerous shortcuts. Often operators are “lifting and shifting” pre-existing software components into containers, Nohl said, but many of the settings designed to isolate containers from one another prevent the software from working as it should. Rather than rewriting code, developers often simply remove these protections, said Nohl. 

“5G has swept over telcos and nobody seems well prepared,” said Nohl. “We are introducing new technology into mobile networks and they can destroy any hacking resistance we’ve built up over the years.”

Mavenir-NEC find MIMO – run peak Open RAN for Orange

Nick Booth
-
0
Mavenir-NEC find MIMO – run peak Open RAN for Orange

Multiple inputs, multiple outputs, magical outcome

Mavenir and NEC have shown how multiples of network equipment through can be managed by the millisecond to bring out the best of all the elements of a network. The network software and hardware vendors collaborated successfully on a live installation of Orange’s 5G standalone (SA) experimental Open Radio Access Network (RAN) in Catillon, near Paris. Their breakthrough came through cracking the mMIMO challenge involving massive Multiple Inputs and Multiple Outputs. 

With Mavenir cloud-native Open virtualised RAN (Open vRAN) software embedded within Orange’s cloud infrastructure engineers found that NEC’s 32T32R mMIMO active antenna unit (AAU) could be fine-tuned to constantly maximise capacity and coverage. Network software specialist Mavenir says that interoperability between radios and virtualised Distributed Units (vDUs) is the critical factor that determines Open RAN’s ability to handle multi-vendor networks. The battle to eliminate vendor lock-in is won and lost within the narrow confines of the O-RAN Alliance Open Fronthaul Interface.

The technologies have been successfully deployed at the Orange Gardens campus in Chatillon near Paris. They are part of the extension of Project Pikeo, Orange’s cloud-based and fully automated 5G SA experimental network, also known to participants as Pikeo.

There are two ways to use Multiple Input Multiple Output (MIMO) to transmit and receive of electro-magnetic waves and they both involve complex data symbols. Whether you use STBC (Space Time Block Coding) or SM (Spatial Multiplexing), getting the best out of the network is like re-spinning thousands of plates every millisecond. The role of software controllers is crucial in this virtual plate spinning and it has been a challenge that confounded many vendors.

“The successful deployment of mMIMO on any network is a major stepping stone,” said Arnaud Vamparys, SVP Radio Access Networks and Microwaves at Orange. Achieving this within an experimental 5G network takes the industry a long way down the road towards Open RAN, Vamparys said. “Our Open RAN Integration Centre, open to our partners worldwide, contributes to the development of a strong Open RAN ecosystem in Europe,” said Vamparys.

Deploying 5G SA mMIMO is a significant milestone in transitioning from virtualised to cloudified networks too, according to Hubert de Pesquidoux, executive chairman of Mavenir. “We are very proud of our continuing collaboration with Orange, NEC and other companies that are proving the potential of the multi-vendor, cloud-native, standards-based approach.” 

Naohisa Matsuda, general manager of NEC’s 5G Strategy and Business said this is the right time for the mobile industry to follow the blueprint set by industry-leading operators. “Move to the new era of Open RAN-powered connectivity,” said Matsuda.

UK risks missing out on full benefits of 5G – report

Annie Turner
-
0
UK risks missing out on full benefits of 5G – report

The report is from the Digital Connectivity Forum which advises the government

According to a report published by the Digital Connectivity Forum, “the government’s advisory body on connectivity”, the UK is at risk of failing to reap the full benefits of 5G. It is worth noting that the Forum’s industry members include the BBC, BT, CityFibre, Cornerstone, Ericsson, Gigaclear, Giganet, Huawei, Hyperoptic, Openreach, Sky, TalkTalk, TechUK, Three, Virgin Media O2, Vodafone, and the Wireless Infrastructure Group.

The Digital Connectivity Forum collaborated on the report with Frontier Economics, and it examines network operators’ capacity to invest in 5G services.

It finds that the industry has the capacity to invest about £9 billion in new network infrastructure by 2030, but that this falls short of the cost of delivering full 5G which it estimates would cost an additional £23 billion to £25 billion.

The report reckons that only this greater level of investment can deliver transformative services dependent on 5G, such as autonomous vehicles, automated logistics and telemedicine. It recommends direct government support for operators, and regulatory and structural reform to help close the predicted investment gap.

Alex Mather, Head of the Digital Connectivity Forum urged,“To make a reality of the Government’s levelling up agenda, to boost productivity, growth and competitiveness requires action. We therefore encourage the Government and industry to work together to ensure that intensive and timely investment is delivered.”

The Forum’s pleas are likely to fall on deaf ears, for example, the UK’s new Prime Minister, Liz Truss, has already said she will scrap smart motorways. In the current economic crisis investment in things which perhaps are seen as nice to have rather than fundamental are unlikely to get much of a hearing.

The business case?

Frontier Economics estimates the costs of 5G roll-out in three scenarios:  

• Basic 5G capacity that focuses on upgrading existing networks to deliver additional capacity to satisfy Ofcom’s base case growth in traffic of 40% per year for which the estimated cost is £5 billion to £7 billion.

• Basic 5G coverage that meets future traffic demand and covers 95% of the population without necessarily providing significantly increased capabilities in more rural areas, at an estimated cost of an additional £7 billion.

• Advanced or full 5G deployment to provide better 5G quality and coverage over a greater area and that enables ultra-low latency 5G use cases (like driverless cars or other autonomous technologies) in urban locations which the report estimates would bring economic benefit of £20 million.

The report can be found here.

BICS-Lynk to offer satellite-direct service for resale by mobile network operators

Nick Booth
-
0
BICS-Lynk to offer satellite-direct service for resale by mobile network operators

African MNOs will be a key channel for the B2B service

Connectivity specialist BICS and satellites-to-phone telecoms pioneer Lynk Global have set up a satellite-to-phone service with a difference. The technology is largely the same and the virgin territory – the remote corners of the world – is similar but the major difference is the structure of the business – a two tier sales channel in which their satellite phone connections are resold by mobile network operators.

Lynk claims it is a different proposition from other direct satellite-to-mobile arrangements, because the partners are not seeking to sell directly to consumers themselves but to become a supply partner for MNOs. “With Lynk we saw the chance to create something meaningful and special for our mobile network operator partners and their subscribers,” said Mikael Schachne, VP of Telco Markets at BICS.

The service from the BICS-Lynk pact will target the towerless terrain of several rural areas in Africa, and also offer comms coverage to ‘off grid’ people in the Americas, Caribbean and South-East Asia.

By partnering with MNOs at the beginning, BICS and Lynk aim to use the mobile operators’ marketing skills to help them sign up a bigger share of society’s ‘off grids’, or OGs as they call them. Mobile data services company BICS will use its global network to pair Lynk’s satellite constellation and the world’s mobile operators. Lynk’s technology allows standard roaming partner integration without any hardware or software changes to the mobile operators’ networks, bringing coverage to remote areas, islands and offshore.

Roughly 6% of the world’s population is on the wrong side of the “digital divide”, says a BICs release, with at least 450 million people excluded from all the educational, social and economic advantages that a connected world can offer. The cost of bringing them into the fold has been too prohibitive when the only method for inclusion involved cable laying and building a tower, because some terrain is too difficult to cross. With the cost of satellites falling Lynk’s ‘cell tower in space’ technology fixes that, it claims, by providing a satellite-direct-to-mobile-phone service. It has many competitors who have had the same idea, including a joint effort by SpaceX and T-Mobile and an imminent launch by AST SpaceMobile.

“Being left out of the digital world traps hundreds of millions in the deepest poverty and eliminates access to basic emergency services,” said Charles Miller, Lynk CEO and co-founder. “Our partnership with BICS will allow MNOs to affordably expand their coverage and connect more people.”

Telecom Italia future hinges on election result

Nick Booth
-
0
Telecom Italia future hinges on election result

New government could halt recovery

Italy’s national bank may postpone its bailout and put its offer for Telecom Italia’s (TIM’s) network on ice after the election on Sept 25, according to sources at Reuters.

Cassa Depositi e Prestiti (CDP) was expected to make its bid for the network next week with preparatory work for the offer expected to be complete by the middle of September. However political uncertainty has affected the move and an election could shift the balance of power. After an internal vote it was suggested that a delay is appropriate, the source said.

Italian premier Mario Draghi’s government has spent months deliberating over the merits of a potential merging of networks belonging to former state monopolist TIM and the smaller, state-backed rival Open Fiber. The result could be a stronger backbone of pooled fibre resources and savings made by avoiding duplicated effort and investment. 

The direction of electoral campaigning by competing political parties has threatened to derail the scheme. The government’s decision to go ahead with the sale of a prestigious national asset, the country’s flagship phone company, has emotional resonance for many and its perceived loss to a group of international investors has become a became a political hot potato. Giorgia Meloni, the favourite to succeed Draghi according to the latest polls, may propose a different deal once in office.

Telecom Italia’s largest investor Vivendi, which as 10% of TIM’s shares and a controlling interest in Open Fiber, has complained about a potential conflict of interest involving CDP’s role in the sale and claimed that TIM’s assets are being sold off too cheaply.  

Vivendi wrote a letter to TIM stakeholders alleging that CDP chairman Giovanni Gorno Tempini should leave the board, say Reuters’ sources. TIM has scheduled a board meeting at the end of September to review Vivendi’s governance request and a number of matters of urgency, the sources said.

Speakers for Vivendi, Cassa Depositi and Telecom Italia have declined to comment on both the postponement of the offer and Vivendi’s letter.

Since his promotion to the top job in March TIM CEO Pietro Labriola has been attempting to expedite the restructure of the telco. The plan is to disaggregate the hardware (i.e. the network) and services aspects of the business. Ceding ownership of the infrastructure could cut its debt by €30 billion ($29.8 billion). The complex details of apportioning the new units and choice of partners are a matter of contention.

Labriola was originally planning to sell a controlling stake in the phone company’s grid to a group of investors led by CDP, New York based private equity firm KKR and Macquarie Group, another private equity player. In March, it appeared that KKR intended to take over TIM. By June 2022 the battle of TIM’s future had taken several turns, with rival bids being made by other fund holders. The only consistent thread has been a plan to merge with Open Fiber. 

A major sticking point is TIM’s most valuable asset, the landline network, which the French company values at up to €34 billion. TIM’s advisers initially estimated it at around €20 billion. The deadline for the agreement was set for October 31.    

Google Cloud joins TM Forum to speed cloud-native automation

Annie Turner
-
0
Google Cloud joins TM Forum to speed cloud-native automation

Operators and hyperscalers edge ever closer

“Google Cloud will work with TM Forum and its members to help communication service providers (CSPs) realise the true value of cloud-native automation to support network evolution, the application of advanced artificial intelligence (AI) and machine learning (ML) to improve the customer experience, and the power of cloud computing in unlocking new paths of growth and monetization for CSPs,” according to the Forum.

Apparently, this will help CSPs better access a single source of truth around their data through better data management, automation and data governance in multi-hybrid cloud environments. The two organisations and operators are “to showcase several use cases that demonstrate how AI can dramatically optimise and modernise networks and help develop a set of closed-loop application programming interfaces (APIs)”.

According to Amol Phadke, MD & GM: Global Telecom Industry at Google Cloud, “As a reflection of the trust and value we have built with our global telecommunication customers and partners – from our work with BT Group, Telenor Group, and more – we are thrilled to join the community at TM Forum.” 

Nik Willetts, President & CEO, said: “Google Cloud has chosen TM Forum as the place to help the world of telecoms unlock the full value cloud-native automation, data and AI at scale. This is a crucial pillar of our mission to accelerate the growth and potential of our industry to meet the needs of the digital economy over the next decade.”

TM Forum Board of Trustees Vice-Chair and Chief Digital Innovation Officer at BT Group, Harmeen Mehta, is also enthusiastic: “The hyperscaler world is an exciting and fast-moving one, which is already working in close lockstep with the telecoms industry as we together build a more digital future for our customers, colleagues and stakeholders. Google Cloud will be a brilliant catalyst for innovation in our community”.

Google Cloud will cut its teeth as a Forum member participating in TM Forum’s Digital Transformation World in Copenhagen, 20-22nd September 2022. Execs will take to the stage to demonstrate how operators benefit from data driven decisions, cloud native tech and hyperscaler partnerships. For more information about their sessions, visit the event agenda here

Vodafone satellite tech precisely locates IoT devices, supports V2X

Annie Turner
-
0
Vodafone satellite tech precisely locates IoT devices, supports V2X

Operator partners Topcon Positioning Group, which designs and manufactures highly accurate positioning systems

Vodafone and Topcon Positioning Group are developing a mass-market, precise positioning system to locate Internet of Things (IoT) devices, machinery and vehicles with a greater degree of accuracy than using individual global navigation satellites systems (GNSS). 

Vodafone claims that vehicles, scooters and even robot lawn mowers can be securely monitored in real-time to within a few centimetres when connected to Vodafone’s global IoT network and using technology from Topcon – instead of within a few metres with navigation satellite signals.

They can offer this GNSS correction service because of their respective terrestrial footprints across Europe. Vodafone intends to offer a singular module configuration that can extend across national borders.

The companies are to embark on trials with customers trials in Germany, Spain and the UK, starting this month. The companies aim to test the service, called Vodafone GNSS Corrections, using various devices connected to Vodafone’s global IoT network, which has more than 150 million connections. Its pan-European network covers 12 countries.  

The Topcon Positioning System provides cloud-based corrections which are sent to vehicles and devices. In turn, they derive accurate locations in open sky conditions, that is, when receivers on the ground are not close to obstructions such as trees or reflections from a GNSS signal.

To provide pinpoint locations, a GNSS module needs to compensate for inaccuracies caused by satellite constellations, receiver hardware and atmospheric conditions. Topcon’s dense network of fixed reference stations run the calculations to overcome these distortion based on the constant flow of GNSS data.

Vodafone says great accuracy is critical to the mass adoption of vehicle to anything (V2X) technology whereby driverless vehicles communicate with other vehicles, road users, and infrastructure and for autonomous machinery and robots. 

Vodafone’s new precise positioning will complement to its Safer Transport for Europe Platform (STEP), which was announced in March and allows entities to communicate without line of sight. Apparently STEP has been successfully tested in Germany and the UK and will be made available via Vodafone Automotive and third-party apps later this year. 

A Precise Positioning Service also complements the existing asset tracking and fleet telematics solutions already provided by Vodafone Business for enterprise customers across 54 countries.

Nokia rolls out Eurofiber, lends Nuage to SK C&C 

Nick Booth
-
0
Nokia rolls out Eurofiber, lends Nuage to SK C&C 

From wavelength division to software definition

Equipment vendor Nokia has announced two major contract wins from the opposite ends of its product range and different sides of the globe. In Western Europe it has signed a frame agreement with Eurofiber Group while in North Asia it is working with one of ‘big three” IT services companies in South Korea, where SK C&C will use its cloud managed software defined network service, Nuage Networks. 

Eurofiber is an open network infrastructure builder for the Netherlands, Belgium, France and Germany. The new agreement, covering all Eurofiber affiliates, involves optical networks in France and a Dense Wavelength Division Multiplexing (DWDM) city network in Germany in a joint venture with Vattenfall. In Belgium, both companies have agreed to renew the nationwide DWDM network. Meanwhile, the Eurofiber Cloud Infra unit has selected SR Linux from Nokia as its switching platform.

“Eurofiber has an ambitious growth agenda in Western Europe. A fully integrated high capacity DWDM network and future-proof, secure datacenter equipment are the main technological enablers to realise these ambitions,” said Eric Kuisch, Eurofiber Group’s chief operating officer. 

On the software side of the business Nokia has announced that SK C&C has deployed its managed Nuage Networks solution, Nokia Cloud Managed SD-WAN Service. Nokia said the network connectivity between branches and the cloud will benefit from better security, network visibility and cost efficiencies. The cloud service promises to define the network for advanced networking services, including application aware routing, multiple WAN uplinks per site and a full gamut of centrally managed network and security policies. 

Nokia has promised to cut both the start-up and running costs with its cloud hosted, multi-tenancy SD-WAN as-a-Service. The deployment and maintenance services are provided by Nokia Cloud Managed SD-WAN Service distributor, Dongkuk Systems.

The security is better than a traditional WAN because of the multiple uplinks, said Jangsoo Shin, Head of Hybrid Cloud1 Group at SK C&C: “That means more network availability at less cost.” 

All digital transformation projects will need strong network foundations, according to Saurabh Sandhir, the General Manager of Nuage Networks at Nokia. We link the business application users in the branches to the business applications in the private and public cloud,” said Sandhir.

Virtue signalling EcoAttivi app accused of tyranny titration

Nick Booth
-
0
Virtue signalling EcoAttivi app accused of tyranny titration

Earn a pat on the back, if you don’t mind being tracked

The 16,000 cittadino of Codogno, in northern Italy, are making history because their local authority is introducing a social credit style app, the consiglio has announced. However, the good intentions of the scheme have been neutralised by the manner of its execution. Now it is perceived as an intrusive information gathering regime that forces citizens to surrender their privacy to unknown people at the local council in the hope of winning prizes.

Critics are likening it to a Chinese state surveillance operation. Critics are saying the sinistro development is merely shrouded in the name of ecology, namely through the EcoAttivi app. Suddenly, the promise to “certify virtuous behaviour”, via geo-localisation and QR codes, sounds ominous.

The level of conditioning is relatively minor in this Italian app, according to digital dystopia opponent Reclaim the Net. The tool is being used on a community of roughly 16,000 people and it isn’t the first in Italy. However its critics say this is how all monstrous regimes build, by increments, and this could be the first exercise in a process of tyranny titration. For example, the lessons of this app’s acceptance could be useful to politicians elsewhere to test the waters and see not only the uptake, but also the reaction to this particular way of monitoring people’s behaviour by “grading it.”

The app’s users will be given “points” if they behave a certain, proscribed way in their environmental, cultural and social activities. In exchange for the virtuous behaviour they can be rewarded with discount coupons. Businesses offer these discounts and the municipality will refund the money to those companies.

Social credit system were pioneered in the name of the People’s Republic of China but not by the people, by the state administrators. The free speech movement Reclaim the Net will point out that social credit systems are always marketed with the phrase “there’s nothing to fear if you haven’t done anything wrong” but they are essentially another technology tool for population control, with the levers of power being the ability to condition responses to various rules with awards and punishment.

The EcoAttivi app sounds like an innocuous way to kill two municipal problems with one stone – get people to recycle their tin cans rather than litter the streets and stimulate the local economy. However, it is the surveillance of civilians and automatic ‘social conditioning’ that Reclaim the Net finds dystopian.

“The idea is to train people to adopt certain habits they otherwise may have no interest in or are incompatible with their lifestyles and thus in the long run allow the authorities to benefit from the system,” said Didi Rankovic.

Rankovic admitted that the virtuous behaviour appears be designed to tackle the economic crisis and help people at the same time. The Codogno app seems particularly keen to get people to bike, instead of drive to work. The lesson for European mobile operators aiming to help communities is that people don’t trust authorities that want to put them under surveillance. The reward in this case is not worth the risk. “The intrusiveness of the schemes into personal life used to be considered completely incompatible with those societies,” said Rankovic. Developer’s note: maybe, people could be rewarded without gathering personal information or tracking their movements.

Rhode & Schwarz On-demand Webinar – Interference Hunting in a 5G world

Annie Turner
-
0
Rhode & Schwarz On-demand Webinar – Interference Hunting in a 5G world

Interference Hunting continues to play a critical role in ensuring the quality and performance of mobile networks. But different from 4G/LTE, the emergence of TDD in the C-Band/band n78 and the general complexity of 5G deployments have created some new challenges when it comes to identifying and removing network interference. In addition, the emergence of private 5G networks for manufacturing, warehouses, ports, etc. brings forth new stakeholders with more demanding performance and quality requirements.

Join us for this 40 minute On-demand webinar, in which our Interference Hunting expert Peter Busch discusses these issues in addition to answering your specific questions on Interference Hunting in 5G networks.

www.rohde-schwarz.com/MNT

blog.mobile-network-testing.com

1...251252253...1,637Page 252 of 1,637
- Advertisement -

Subscribe to Our Daily Newsletter

It takes just one minute to register for the leading daily B2B newsletter for the telecoms industry, and it's free.

SIGN UP

Subscribe to Our Daily Newsletter

It takes just one minute to register for the leading daily B2B newsletter for the telecoms industry, and it's free.

SIGN UP
DOWNLOAD OUR NEW REPORT

5G Advanced

Will 5G’s second wave deliver value?

DOWNLOAD REPORT