SECURITY

Security Capabilities are a Critical Element to 5G Success

5G Americas | December 10, 2021

5G networks
5G networks based on standard technical specifications from the Third Generation Partnership Project continue to be the most widely adopted and secure wireless cellular technology in existence. 5G Americas, the voice of 5G and LTE for the Americas announced the publication of a new white paper entitled ‘Security for 5G’ which details features and recommendations for securing 5G networks and provides an update on the security enhancements introduced by 3GPP in Releases 15 and 16.

The increased speeds and lower latency of 5G networks are beginning to impact nearly every facet of life for consumers and enterprises. Fortunately, security has been the built into 5G right from its inception and has been required throughout its development, planning and deployment.”

Chris Pearson, President of 5G Americas

As increased bandwidth, higher data rates, and a surge of new devices and connections have made managing network security more complex, 5G Americas has provided nearly annual updates around the topic of security in wireless cellular networks. ‘Security for 5G’ is the latest update, building on prior work and focuses on evolving 5G security considerations.

This white paper addresses emerging challenges and opportunities, making recommendations for securing 5G networks in the context of the evolution to cloud-based and distributed networks:

  • 3GPP security enhancements in 5G
  • 5G security considerations
  • Zero-trust networks
  • 3GPP Release 16 security enhancements
  • Security for 5G vertical segments, such as transportation, manufacturing, and critical infrastructure
  • Supply chain security
  • Open RAN security

Additionally, the white paper provides insight into securing 5G in private, public, and hybrid cloud deployment models. Topics such as orchestration, automation, cloud-native security, and application programming interface (API) security are addressed. The transition from perimeter-based security to a zero-trust architecture to protect assets and data from external and internal threats is also discussed.

Pramod Nair, Technical Solutions Architect - Security, Cisco and 5G Americas group co-leader on the paper commented, “5G will allow operators to evolve toward new business models. For 5G to achieve its potential, organizations must embrace multi-layered security that goes far beyond 3GPP specifications by using a pragmatic, multi-layered approach. End-to-End Security should cater to RAN, SDN, MEC, and hybrid, multi-cloud deployments based on a cloud native architecture, secure CI/CD, and zero trust security for 5G.”

Scott Poretsky, Director of Security, North America, Network Product Solutions at Ericsson and 5G Americas group co-leader further added, “5G continues to integrate with other key technology enablers. In the cloud’s multi-stakeholder environment, cloud-native function software vendors, platform vendors, mobile network operators, hyperscale cloud providers, and system integrators must collaborate to clearly define requirements, roles and responsibilities for implementing security architecture and controls.”

About 5G Americas: The Voice of 5G and LTE for the Americas
5G Americas is an industry trade organization composed of leading telecommunications service providers and manufacturers. The organization’s mission is to facilitate and advocate for the advancement and transformation of LTE, 5G and beyond throughout the Americas. 5G Americas is invested in developing a connected wireless community while leading 5G development for all the Americas. 5G Americas is headquartered in Bellevue, Washington.

5G Americas’ Board of Governors Members include Airspan Networks Inc., Antel, AT&T, Ciena, Cisco, Crown Castle, Ericsson, Intel, Liberty Latin America, Mavenir, Nokia, Qualcomm Incorporated, Samsung, Shaw Communications Inc., T-Mobile US, Inc., Telefónica, VMware, and WOM.

Spotlight

How to Install VMware Workstation 15 Pro With Serial Key on Windows 10 How to download and install VMWare Workstation 15 Pro Full Version Lifetime License with serial key VMware Workstation provides a powerful user-friendly GUI( graphical user interface) VMware Player provides a simplified GUI Shared folders allow you to conveniently exchange files between a host OS and a guest OS, via the network. You can easily create a shared folder in the host OS with a virtualization application, and then transfer files from a host system to a guest system or vice versa.

Spotlight

How to Install VMware Workstation 15 Pro With Serial Key on Windows 10 How to download and install VMWare Workstation 15 Pro Full Version Lifetime License with serial key VMware Workstation provides a powerful user-friendly GUI( graphical user interface) VMware Player provides a simplified GUI Shared folders allow you to conveniently exchange files between a host OS and a guest OS, via the network. You can easily create a shared folder in the host OS with a virtualization application, and then transfer files from a host system to a guest system or vice versa.

Related News

VIRTUAL DESKTOP TOOLS

Dell Technologies Strengthens Cyber Resiliency with Multicloud Data Protection and Security Innovations

Dell Technologies | November 18, 2022

Dell Technologies is expanding its industry leadership in data protection appliances and software1 to help customers protect their data on premises, in public clouds and at the edge. The Dell PowerProtect Data Manager Appliance leads a series of advancements for multicloud data protection that are simple to use and easy to consume. Dell innovation in AI-powered resilience and operational security accelerates the adoption of Zero Trust architectures, helping protect organizations from the increasing threat of cyberattacks. The new solutions help address rising data protection challenges facing organizations. According to the 2022 Dell Global Data Protection Index (GDPI) survey, organizations have experienced higher levels of natural and modern disasters than in previous years, resulting in more data loss, downtime and recovery costs. In the past year, cyberattacks accounted for 48% of all disasters (up from 37% in 2021), leading all other causes of data disruption. The survey also revealed 85% of organizations using multiple data protection vendors see a benefit in reducing their number of vendors. Furthermore, it revealed that organizations using a single data protection vendor incurred 34% less cost recovering from cyberattacks or other cyber incidents than those who used multiple vendors. "With virtually everything connected to the internet in today's digital world, the need to protect valuable data is more important than ever, This digital landscape requires a modern data protection and security strategy to address cyber threats. Point solutions don't go deep or wide enough to help protect organizations. Dell helps customers strengthen cyber resiliency by offering integrated data protection software, systems and services to help ensure data and applications are protected and resilient wherever they live." Jeff Boudreau, president and general manager, Infrastructure Solutions Group, Dell Technologies The GDPI survey found that 91% of organizations are either aware of or planning to deploy a Zero Trust architecture – a cybersecurity model that shifts how organizations approach security from relying solely on perimeter defenses to a proactive strategy that only allows known, authorized traffic across system boundaries and data pipelines. However, only 23% are deploying a Zero Trust model and 12% are fully deployed. With embedded security features designed into the hardware, firmware and security control points, Dell's holistic approach helps organizations achieve Zero Trust architectures to strengthen cyber resiliency and help reduce security complexity. The simplest path to modern data protection Dell continues to deliver innovation for its data protection software, Dell PowerProtect Data Manager, to help organizations simplify their IT operations and reduce risk. PowerProtect Data Manager software addresses the increasing need for cyber resiliency and supports Zero Trust principles with new built-in operational security capabilities, such as multifactor authentication, dual authorization, and role-based access controls. The Dell PowerProtect Data Manager Appliance offers a simple path to adopt modern data protection. The debut system is ideal for small and mid-sized use cases with support that scales from 12 to 96 terabytes of data. The appliance offers customers a: Modern, software-defined architecture: Allows automated discovery and protection of assets and delivers unique VMware protection with Transparent Snapshots to ensure the availability of all VMs without business disruption. Secure, cyber resilient solution: Provides more secure access to restricted functions with Identity and Access Management to strengthen cyber resiliency. Simple, unified user experience: Delivers software-defined data protection, making it easy to deploy and use. "Dell PowerProtect Data Manager simplifies our backup environment, giving us the business agility needed to protect our data as we digitally transform," said James McNair, vice president, distributed systems manager, Trustmark Bank. "With the new PowerProtect Data Manager Appliance, we can more simply deploy Data Manager across our infrastructure, helping us be more efficient and strengthening our cyber resiliency." Dell expands cyber recovery for fast, easy-to-deploy public cloud vaults PowerProtect Cyber Recovery for Google Cloud enables customers to deploy an isolated cyber vault in Google Cloud to more securely separate and protect data from a cyberattack. Unlike standard cloud-based backup solutions, access to management interfaces is locked down by networking controls and can require separate security credentials and multi-factor authentication for access. Organizations can use their existing Google Cloud subscription for purchasing PowerProtect Cyber Recovery through the Google Cloud Marketplace, and the service can be acquired directly from Dell and its channel partners. The new offering marks the latest expansion of Dell's cyber recovery capabilities for public clouds, following this year's introduction of Dell PowerProtect for Microsoft Azure and CyberSense for Dell PowerProtect Cyber Recovery for AWS. Dell APEX simplifies backup storage with flexible consumption options Dell APEX Data Storage Services is expanding to offer a Backup Target option to provide more secure backup storage in a pay-per-use, flexible consumption model. The Backup Target service is easy for customers to adopt and streamlines the process of purchasing, deploying and maintaining backup storage. Building on Dell's leadership in data protection appliances and software1, the Backup Target helps reduce a customer's storage footprint and can increase data availability. The new Dell APEX Data Storage Services Backup Target offer will support the increasing reliance on as-a-Service offerings to help overcome data protection challenges. Nearly every GDPI respondent (99%) identified at least one as-a-Service offering as a high priority to help overcome challenges for their organization. Storage as-a-Service (44%), Cyber Recovery as-a-Service (41%), and Backup as-a-Service (40%) ranked as the top three as-a-Service priorities. Dell expands Future-Proof Program with new Cyber Recovery Guarantee With cyber threats increasing and data becoming more valuable than ever, Dell plans to introduce in January a new Cyber Recovery Guarantee2 to provide assurance to customers that their data will be recoverable following a cyberattack. Dell will provide customers up to $10 million in reimbursement for qualifying expenses to assist in the recovery of data from ransomware and other cyber incidents in the event restoring data is not possible with Dell solutions. The guarantee is designed to increase customer comfort and confidence in choosing Dell Data Protection Solutions, whether for data in production or, more securely, in a cyber vault. This new cyber recovery guarantee expands the Dell Technologies Future-Proof Program, which also includes a Data Protection Deduplication Guarantee3. Additional quote Seife Teklu, senior solutions architect, Arrow Electronics "The integrated Dell PowerProtect Data Manager Appliance is easy to use and quick to deploy. This system will be a compelling option for our small to medium-sized customers needing to modernize data protection to help reduce risk and ensure business continuity." Availability Dell PowerProtect Data Manager Appliance is globally available this month in more than 30 countries across North America, Latin America, Europe and Asia Pacific. Dell PowerProtect Data Manager software is globally available today. Dell PowerProtect Cyber Recovery for Google Cloud Platform is globally available today. Dell APEX Data Storage Services Backup Target will be globally available in the first quarter of 2023 in 16 countries across North America, Europe and Asia Pacific. Dell's new Cyber Recovery Guarantee will be available in the US starting in January 2023. About Dell Technologies Dell Technologies helps organizations and individuals build their digital future and transform how they work, live and play. The company provides customers with the industry's broadest and most innovative technology and services portfolio for the data era.

Read More

VIRTUAL DESKTOP TOOLS

Andes Announces the N25F-SE Processor, the World First RISC-V CPU IP with ISO 26262 Full Compliance

Andes Technology | October 31, 2022

Andes Technology, a leading supplier of high efficiency, low-power 32/64-bit RISC-V processor cores and founding premier member of RISC-V International, today announces its safety-enhanced AndesCore N25F-SE is the first RISC-V CPU IP certified to be fully compliant with ISO 26262 functional safety standards for the development of automotive applications. SGS-TÜV Saar GmbH, an independent functional safety certification body, has assessed and completed product audit process for N25F-SE with achieved functional safety for ASIL B (Automotive Safety Integrity Level B) applications, according to all applicable ISO 26262 series of standards including Parts 2, 4, 5, 8 and 9. AndesCore N25F-SE. The N25F-SE is a 32-bit RISC-V CPU core that supports standard IMACFD extensions, including efficient integer instructions and single/double precision floating point instructions. It incorporates the Andes V5 extension instructions to further boost performance and reduce code size. The efficient 5-stage pipeline of the N25F-SE provides a good balance of high operating frequency and compact design. Its flexible interfaces greatly simplify SoC designs. Like its sought-after cousin the N25F, the N25F-SE comes with rich configurable options, all of which are fully certified, and thus SoC design teams are not limited by one fixed CPU configuration when offering automotive solutions. ISO 26262 and ASIL-B Applications. ISO 26262 defines functional safety as the “absence of unreasonable risk due to hazards caused by malfunctioning behavior of electrical/electronic systems”. To enforce functional safety with a reasonable cost structure, proper safety measures for desired ASIL levels should be applied, from the least stringent ASIL A to the most stringent ASIL D. Examples of electronic systems where ASIL B is sufficient are dashboard, in-car monitoring, keyless entry, lighting control, tire pressure monitoring, vision ADAS, and window control. Either to incorporate new electronic systems on board, or to upgrade existing ones without ISO 26262 compliance, the N25F-SE is well suited for the wide range of applications requiring ASIL B compliance. Leader of RISC-V Functional Safety. “Andes is the first RISC-V CPU vendor certified, for the development process of automotive processor cores, to be compliant with ISO 26262 standards up to ASIL D in 2020. With the certified development process in place, we formally started our functional safety roadmap to deliver at least one ISO 26262 compliant core every year to cover all segments of performance and features,” said Dr. Charlie Su, President and CTO of Andes Technology. “Andes has developed a wide range of AndesCore processors, from driving cost sensitive MCUs to accelerating datacenter AI/ML computations. We are excited to announce our first safety-enhanced AndesCore the N25F-SE based on the most popular and mature CPU IP family, the 25-series." ISO 26262 Full Compliance. The ASIL B fully compliant N25F-SE was developed under considerations on all applicable requirements of ISO 26262 standards by defining tailored safety activities with solid rationales, from the fundamental specification, analysis, and design to verification and many more. It comes with the Safety Package which includes Safety manual, Safety analysis report (FMEDA and more), and Development Interface Outline. Together, the N25F-SE and its Safety Package offer an effective, efficient, and flexible automotive solution. It greatly reduces the time for SoC design teams to certify their ISO 26262 compliant SoCs. In comparison, an ASIL B “ready” solution is without certifying all required ISO 26262 Parts (2, 4, 5, 8 and 9) and thus provides incomplete support for the SoC’s certification; as a result, SoC design teams must go through all the work the CPU IP vendors are supposed to do. In addition, the N25F-SE helps reduce the cost and power consumption for SoCs requiring only an ASIL B processor IP without forcing them to use a double-sized dual-core lock-step solution with ASIL D. “As the only public RISC-V CPU IP company and a leader in the RISC-V ecosystem, we want to raise the awareness of the importance of ISO 26262 full compliance.” Dr. Su stressed. Cidana. “Consumer experience is shaping expectations for In-Vehicle Infotainment (IVI) systems. It is one of the segments evolving rapidly in the automotive industry. Cidana offers the optimized LC3+ codec and makes it available on Andes ISO 26262 compliance platform. Other mainstream audio codecs can be supported based on the required performance,” said Chinn Chin, the Chief Executive Officer of Cidana. “We are looking forward to collaborating with Andes and bringing the Cidana solutions to automotive SoCs powered by the N25F-SE.” Green Hills Software. “We are pleased to expand our production-ready automotive safety solutions to support the safety-certified AndesCore 25-Series RISC-V IP core family from the technology leader, Andes Technology,” said Dan Mender, Vice President, Business Development, Green Hills Software. “This combined hardware-software solution for the AndesCore N25F-SE gives SoC providers a valuable head-start in offering integrated and optimized production-proven platforms for next-generation vehicle ECUs that require the highest performance and lowest power, with advanced tools that reduce their customers’ time to market and development costs.” IAR Systems. “RISC-V is being adopted at a remarkable speed in applications from the edge to the cloud and now it is entering the automotive market. IAR Systems support the mature and popular Andes RISC-V 25-series processors since its release a few years back in the IAR Embedded Workbench for RISC-V, Functional Safety edition. We are glad to learn that Andes N25F-SE has been certified for full ISO 26262 compliance,” said Rafael Taubinger, Sr. Product Marketing Manager at IAR Systems. “We are looking forward to extending our collaboration with Andes to support its Safety Enhanced processors starting from the N25F-SE enabling our mutual customers to speed up the path to using RISC-V in automotive safety-critical applications.” Parasoft. “We would sincerely congrats on Andes Technology's N25F-SE been certified to the ISO 26262 functional safety standard,” said Yue Liu, the President of Parasoft Greater China. "Andes is a leading provider of RISC-V processors, and PARASOFT, a solution provider that helps enterprises deliver defect-free software, is pleased to partner with Andes to further deliver RISC-V ecosystem solutions to our customers. I am confident that we will be able to provide a complete suite of testing solutions for the automotive safety lifecycle in the near future, helping customers improve their ability to develop and deliver high quality software.” Virtual Open Systems. “At Virtual Open Systems we are working with Andes to enable hypervisor-less mixed criticality virtualization supporting concurrent execution of a certified real time operating system (OS) with a general purpose OS using our VOSySmonitoRV, a low level firmware developed with ASIL certification in mind," said Daniel Raho, Virtual Open Systems SAS CEO. "We are excited to extend VOSySmonitoRV with support for Andes Safety Enhanced processors starting from the N25F-SE.” The AndesCore N25F-SE is available for licensing now. Over half of a dozen leading SoC companies are already developing in-vehicle applications with the N25F-SE. Following the N25F-SE, the D25F-SE with DSP/SIMD extension and Bit Manipulation extension is expected to be available in early 2023. About Andes Technology Seventeen years in business and a Founding Premier member of RISC-V International, Andes is publicly-listed company and a leading supplier of high-performance/low-power 32/64-bit embedded processor IP solutions, and the driving force in taking RISC-V mainstream. Andes’ fifth-generation AndeStar™ architecture adopted the RISC-V as the base. Its V5 RISC-V CPU families range from tiny 32-bit cores to advanced 64-bit cores with DSP, FPU, Vector, Linux, superscalar, and/or multicore capabilities. The annual volume of Andes-Embedded SoCs has exceeded 3 billion in 2021 and continues to rise. By the end of 2021, the cumulative volume of Andes-Embedded™ SoCs has surpassed 10 billion

Read More

VIRTUAL DESKTOP STRATEGIES

RealVNC Acquires RPort Remote Management Software

RealVNC | October 28, 2022

RealVNC, the most secure remote access solution on the market, acquired RPort, a remote management software that immediately boosts the efficiency of IT teams and managed service providers (MSPs). The acquisition will enable RealVNC to branch out beyond graphical screen sharing and into remote management. RPort enables users to manage their entire infrastructure via a web browser, the command line, or programmatically through a REST API. This includes inventory management, dynamic device grouping, remote and scheduled script execution, device telemetry and flexible connectivity management. For example, a bulk update task targeted at 20 Windows devices could take up to 2 hours when executed individually in interactive screen sharing sessions. The same task could be achieved with RPort technology in less than 2 minutes. The technology is highly complementary to RealVNC’s VNC Connect and will be integrated as an add-on for existing RealVNC subscribers in early 2023. It will also be provided as a standalone subscription under RealVNC's brand. RealVNC will support flexible deployment options, similar to its current offering with VNC Connect, launching with both on-premise and fully-managed/hosted offerings. With this acquisition, RealVNC will soon offer a comprehensive IoT device management platform to their customers. One of the largest challenges IT and field service professionals face is managing large fleets of devices deployed across the globe. When combined with RPort technology, RealVNC will help them master the unique challenges that arise in these environments — for example, when a user managing thousands of devices needs to execute a remote script on all of them programmatically without logging into each device. “We are excited about the immense opportunities that RPort brings to RealVNC and its customers, There are some really exciting plans in the works thanks to RPort’s technology and we cannot wait to bring them to market in the early part of 2023.” Adam Greenwood-Byrne, CEO of RealVNC RealVNC also announced that RPort's creator & innovator, Thorsten Kramm, will be joining the team full-time as VP Software Incubator and will be responsible for leading the company’s IoT program. “I am thrilled to be joining a team so focused on the future of efficient remote management of all kinds of devices. The exponentially increasing numbers of connected devices demand new methods of management beyond access via interactive, one-to-one screen sharing,” said Thorsten Kramm. RPort is currently open source, and RealVNC is committing to continue to pursue an open-core approach. RealVNC will offer more advanced features as paid "plugins” added to the foundational RPort engine, which will remain open source. Current RPort users can expect updates to the open source core along with options to extend it into a commercial product, all with the level of professional technical support that RealVNC has become known for. ABOUT REALVNC RealVNC’s secure remote access and management software is used by hundreds of millions of people worldwide. Their software helps organizations to cut costs and improve the experience when supporting remote devices and applications, as well as enabling a generation of remote workers. RealVNC is the UK-based, original inventor of VNC remote access software and the associated RFB protocol, and they support an unrivaled mix of desktop, mobile, and embedded platforms. ABOUT RPORT RPort is an open-source remote access and remote management solution that facilitates the management of remote servers without the hassle of VPNs, chained SSH connections, jump-hosts, or the use of commercial tools like TeamViewer and its clones. RPort is a server/client architecture that establishes permanent or on-demand secure tunnels to devices inside protected intranets behind a strong firewall. All operating systems provide well-established mechanisms for remote management – the most widely used being SSH and Remote Desktop. RPort secures them and makes them more easily accessible from the outside. The technology also provides efficient remote management through command execution, task scheduling, scripting and device monitoring. All actions can be performed from a web browser, and on many machines in parallel without any interactive logins.

Read More