Securing National Communications Infrastructure

Uploaded on 2023-11-27 in TECHNOLOGY--Resilience, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Data security and protection are of utmost importance, particularly for governments and telecommunication companies that are responsible for safeguarding this valuable asset. 

As the world becomes increasingly interconnected through advanced technologies like 5G and fixed broadband networks, robust security measures are more critical today than ever before.

The recent formation of the Global Coalition on Telecommunications (GCOT) by the UK and four international partners signals a collaborative effort to strengthen national infrastructure against state-sponsored threat actors. However, it is essential to acknowledge that the challenges go beyond simply investigating external networks.

Huawei & The State-Sponsored Threat

The controversy surrounding Huawei, the Chinese telecommunications giant, has been a focal point in discussing state-sponsored threats these past years. Allegations of espionage and network shutdowns have heightened concerns about protecting data and the UK’s critical infrastructure. At the height of its controversial coverage, a reported 47% of Britons believed in a threat posed by the Chinese company and called for sanctions against the firm. In response, a designated vendor direction document was issued to 35 telecom companies, calling for Huawei technology to be removed from the UK’s 5G public networks by the end of 2027.

Despite mounting concerns, smaller companies often turn to Huawei due to its competitive pricing. This reliance on Huawei's technology, even with its known risks, has led to the proliferation of their equipment in 5G and fixed networks, raising questions about the overall security posture of the UK telecommunications industry.

Telecoms Under ‘siege’

Despite the UK Government’s global initiatives to crack down on state-sponsored threats, a recent Google Cloud report highlights a surge in cyberattacks on telecom companies during Q1 2023. The global telecoms sector has experienced a staggering 85% of the top 1,000 distributed denial of service (DDoS) attacks during this period, and this raises the question as to where these attacks are coming from. Despite state-sponsored threat actors being linked to numerous incidents, an often-overlooked aspect is the ability to scrutinise our own networks and re-direct the security focus there. These findings underscore the urgency for a comprehensive approach to cybersecurity that extends beyond merely investigating external, international threats. 

Technology from various sources continues to find its way into UK networks, which means constructing a new approach that enhances security first while providing the flexibility to adapt to evolving threats without a complete overhaul of physical equipment. This includes upgrading legacy tech infrastructure to meet modern security requirements and fostering international security information sharing. By doing so, both public and private security teams can better anticipate and respond to emerging threats, creating a more resilient telecommunications ecosystem. 

Introducing A New Approach - Network Disaggregation

It’s also essential to address the fact that operators need to balance security and cost efficiency. This challenging task requires careful consideration of various factors, including network architecture, security protocols, and operational costs. So, how can they build secure networks without compromising on costs? 

One promising way to enhance telecom security is through network disaggregation. This involves decoupling hardware and software, allowing for the combination of open components to form a complete switching and routing device.

Telcos can purchase white-box hardware from anywhere globally and run independent software from a trusted source, minimising security risks. As foreign threats often lie in the software aspect of the network, not the hardware, telcos can purchase cheaper hardware and couple it with trusted software to create a cost-effective network with little security risk. Should a security concern arise, the ability to switch software without vendor lock-in adds a layer of adaptability and flexibility.

The decoupling of hardware and software provides network characteristics that enhance security as network disaggregation: enables quick software updates and patches, facilitates the selection of best-of-breed security tools from different vendors, reduces risks associated with vendor lock-in, provides granular security controls for precise configuration, enables isolation and segmentation to contain breaches, supports custom security implementations, allows scalable security architecture independent of hardware, offers centralised management for enhanced visibility and control, and ensures secure boot and hardware verification to only run trusted components on routing devices.

Securing The Future Of Our Networks

Overall, network disaggregation addresses key security concerns and offers scalability, allowing telco operators to expand their networks by adding and removing white boxes as needed. This flexibility aligns with the dynamic nature of cyber threats, ensuring that telecommunications networks can evolve without compromising security.

As the telecommunications industry grapples with the challenges posed by state-sponsored threat actors, it is important to adopt a comprehensive strategy beyond investigating external networks.

Going forward, the UK government has demonstrated its commitment through a £70 million round of funding for Future Telecoms Research Hubs, which is a step in the right direction. However, embracing network disaggregation is a natural step in protecting the UK’s critical national infrastructure against external threats ensuring a resilient and secure digital future for all.

Richard Brandon is VP of Strategy at RtBrick

Image: Diana den Held

You Might Also Read: 

Smartphones Are More Vulnerable Than You Think:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Intelligent Automation & AI Can Improve Business Resilience
Creating A Top-Notch Financial App With Advanced Cybersecurity »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Acunetix

Acunetix

Acunetix is a leading web vulnerability scanner, widely acclaimed to include the most advanced SQL injection and XSS black box scanning technology.

Fasoo

Fasoo

Fasoo provides data-centric security to protect data within the organizational perimeter and beyond by limiting access to sensitive data according to policies that cover both users and activities.

Center for Cyber Safety and Education

Center for Cyber Safety and Education

The Center for Cyber Safety and Education works to ensure that people across the globe have a positive and safe experience online through our educational programs, scholarships, and research.

CodeSealer

CodeSealer

CodeSealer provide invisible end-to-end user interface protection with a unique web security solution to eliminate Man-in-the-Middle and Man-in-the-Browser vulnerabilties.

DeuZert

DeuZert

DeuZert is an accredited German certification body in accordance with ISO/IEC 27001 (Information Security Management).

Gradcracker

Gradcracker

Gradcracker is THE careers website for Science, Technology (including Cybersecurity), Engineering and Maths university students in the UK.

Hubraum

Hubraum

Hubraum is Deutsche Telekom’s tech incubator, helping startups to create new business opportunities in areas including data analytics, AI, robot process automation and cyber security.

Asia Center of Excellence for Smart Technologies (ACES)

Asia Center of Excellence for Smart Technologies (ACES)

ACES is a one-stop competency center and incubator for the development of Industry 4.0 and associated technologies including cybersecurity, robotics, IoT and Big Data.

Australian Cyber Collaboration Centre (Aus3C)

Australian Cyber Collaboration Centre (Aus3C)

The Australian Cyber Collaboration Centre (Aus3C) is committed to building cyber capacity and securing Australia's digital landscape.

Jacobs

Jacobs

Jacobs is at the forefront of the most important security issues today. We are inspired to be the best and deliver innovative, mission-focused outcomes that matter to our clients.

Patriot Cyber Defense

Patriot Cyber Defense

Patriot Cyber Defense is a Cyber Security and Management Consulting professional services firm.

Orbus Software

Orbus Software

Orbus develops, markets and sells enterprise software which helps large, blue chip and government organisations across the globe to achieve digital transformation outcomes.

Appalachia Technologies

Appalachia Technologies

Appalachia is a full service Managed Services Provider with a focus on cybersecurity, backed by the best engineers.

OpsHelm

OpsHelm

OpsHelm provides a Software-as-a-Service solution to help businesses ensure that all of their cloud environments have their security bases covered.

Transatlantic Cyber Security Business Network

Transatlantic Cyber Security Business Network

The Transatlantic Cyber Security Business Network is a coalition of UK and US cyber security companies which facilitates collaboration to help address critical cyber security challenges.

Excite Cyber

Excite Cyber

Excite Technology Services (formerly Cipherpoint) is focused on improving the security posture of our customers.