Organised this month by the European Union Agency for Cybersecurity (ENISA) webinars explored the security challenges of mobile networks.
The series of educational webinars on mobile networks security topics was organised in collaboration with OTE Academy. These webinars, scheduled over the month of June covered the three generations of mobile networks, namely 3G, 4G and 5G and also addressed the migration from these generations to 5G.
Why a webinar series on mobile network security?
Further development of specialised knowledge on mobile networks security is considered even more necessary and relevant today in light of the wider 5G rollout in Europe. Besides, investigating the related challenges and addressing the capabilities in this area has become increasingly pressing now that the European Electronic and Communications Code (known as the EECC) needs to be implemented and transposed into national laws.
What did the webinars focus on?
The webinars focused on four different topics, as follows:
- Basic security concepts for 3G, 4G and 5G
The participants received focused training sessions on architecture, interfaces and a high-level security framework for all three generations of mobile networks.
- Signalling Security
Topics covered included the protection of signalling over the air interface, the transport network and signalling interconnection security.
- Security considerations for migrations from 3G/4G to 5G
The participants examined scenarios of migration from 3G/4G to 5G, security vulnerabilities and mitigation controls in 3G, 4G and 5G.
- Security risks and mitigation controls for Non-Standalone (NSA) 5G deployment
In addition, the training encompassed 5G core network and virtualisation techniques, as well as cloud security risks and mitigation controls.
Topics extensively explored included the security vulnerabilities of Non-Standalone (NSA) 5G deployments and the relevant security framework and procedures.
Target audience
More than 70 experts from the 5G cybersecurity work stream of the NIS Cooperation Group and those of the European Competent Authorities for Secure Electronic Communications Expert Group (ECASEC EG, former Article 13a EG) formed the participants who engaged in the webinars. ENISA plans further knowledge building activities for its stakeholders foreseen to take place during the 3rd quarter of 2021.
About ENISA’s knowledge building webinars
These webinars are part of a broader series of knowledge building seminars that ENISA organises for national authorities in the EU on new technologies and the cybersecurity opportunities and risks associated with them. Previous seminars for national authorities covered topics such as cloud security, internet backbone security and applications of cryptography. The overarching goal of this initiative is continuous knowledge building on technology topics and related security challenges meant to implement the Cybersecurity Strategy for the Digital Decade of the EU.
Further Information
ENISA Incident Reporting webpage
EU Electronic Communications Security Authorities Discussion on Incident reports and Policy
New Guidelines for Telecom and 5G Security
Technical Guideline on Incident Reporting under the EECC
Contact
For press questions and interviews, please contact press (at) enisa.europa.eu