20.5k unique visitors in the last 3 days

Could Telcos Securely Run Their Networks in Public Clouds?

ETSI standard TS 103 457 could be used to limit access to sensitive network functions running on public clouds.

The recently published European Telecommunications Standards Institute (ETSI) TS 103 457 standard promises to define how to secure sensitive functions in a virtualized environment. ETSI’s announcement says they have standardized…

…an interface between a “secure vault” that is trusted and a cloud that could be anywhere, where such sensitive data is stored in the vault. This allows a sensitive function to exist in a lower security environment, with data held securely.

Combining public clouds with network virtualization gives rise to intriguing possibilities, some of which are further elaborated by ETSI:

For instance, this interface can be used with new network function virtualization (NFV) technology to allow secure authentication of users for billing purposes. Virtualization means that processing can happen anywhere and might be untrusted, therefore these secure vaults are needed to protect sensitive functions and data. This is more common than ever as NFV technology becomes widespread.

But does this mean that telcos could seriously consider running network functions using the cloud computing services provided by Amazon’s AWS or Google’s GCP? Telecoms security analyst Patrick Donegan believes so.

Running public telecom network services out of a public cloud might not be at the top of
the agenda but for some telcos, that could emerge as one of the many partnership
models they are continuing to explore with cloud providers. Recent public examples, still
focused very much on business services, include the following:

  • Vodafone and Telefonica are among those telcos that have latched onto AWS’ new
    Outpost product line. This runs AWS services on AWS-designed hardware that sits
    in the enterprise premises to support hybrid cloud models.
  • One of Oracle’s key messages at the recent Mobile World Congress in Barcelona was
    pitched at building its own 5G core network elements; layering their market-leading
    analytics portfolio on top of them; and selling ‘slices’ of these 5G cloud networking
    resources wholesale to telco partners.

Donegan has written a short briefing to explain the implications of the new ETSI standard; find his analysis here.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email