TY - GEN
T1 - Blockchain Based Methodology for Zero Trust Modeling and Quantification for 5G Networks
AU - Elmadani, Safwan
AU - Hariri, Salim
AU - Shao, Sicong
N1 - Funding Information:
ACKNOWLEDGMENT This work is partly supported by National Science Foundation (NSF) research projects NSF-1624668 and NSF-1849113, (NSF) DUE-1303362 (Scholarship-for-Service), and Department of Energy/National Nuclear Security Administration under Award Number(s) DE-NA0003946.
Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - The 5th generation mobile network (5G) is designed with a new core architecture that makes it quite extensible. The components of the 5G core architecture are no longer physical standalone devices, but rather software processes run on commercial off-the-shelf (COTS) servers. The backbone of 5G is software-defined networking (SDN) and network function virtualization (NFV), and they both bring unprecedented flexibility to network and resource management. In this context, 5G logical networks can be created by partitioning a shared physical infrastructure, and each network can be customized and optimized for specific entity. This concept is known as 5G network slicing. Despite the tremendous benefits of network slicing, it also brings many unprecedented security challenges because of the dynamism and diversity of slice's structure. Therefore, establishing trust in the 5G ecosystem is a cornerstone for global adaptation and tackling security and privacy risks. In this paper, we focus on the trust aspect between the network slice stakeholders (i.e slice owners, users, slice resource providers, and service providers), and we propose a blockchain-based zero trust model that addresses threat models that are based on the lack of trust between the entities in a network slice. Our approach for zero trust modeling and quantification is based on direct evidence and indirect evidence and the use of smart contracts with blockchain to maintain the required trust values at runtime. We provide details on how to model and quantify the trust of all the stakeholders of a given network slice and how the blockchain smart contract can enforce the zero-trust requirements for all network slice stakeholders.
AB - The 5th generation mobile network (5G) is designed with a new core architecture that makes it quite extensible. The components of the 5G core architecture are no longer physical standalone devices, but rather software processes run on commercial off-the-shelf (COTS) servers. The backbone of 5G is software-defined networking (SDN) and network function virtualization (NFV), and they both bring unprecedented flexibility to network and resource management. In this context, 5G logical networks can be created by partitioning a shared physical infrastructure, and each network can be customized and optimized for specific entity. This concept is known as 5G network slicing. Despite the tremendous benefits of network slicing, it also brings many unprecedented security challenges because of the dynamism and diversity of slice's structure. Therefore, establishing trust in the 5G ecosystem is a cornerstone for global adaptation and tackling security and privacy risks. In this paper, we focus on the trust aspect between the network slice stakeholders (i.e slice owners, users, slice resource providers, and service providers), and we propose a blockchain-based zero trust model that addresses threat models that are based on the lack of trust between the entities in a network slice. Our approach for zero trust modeling and quantification is based on direct evidence and indirect evidence and the use of smart contracts with blockchain to maintain the required trust values at runtime. We provide details on how to model and quantify the trust of all the stakeholders of a given network slice and how the blockchain smart contract can enforce the zero-trust requirements for all network slice stakeholders.
KW - 5G
KW - Blockchain
KW - Network Slice
KW - NFV
KW - SDN
KW - Smart-contracts
KW - Zero-Trust
UR - http://www.scopus.com/inward/record.url?scp=85147037076&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85147037076&partnerID=8YFLogxK
U2 - 10.1109/AICCSA56895.2022.10017914
DO - 10.1109/AICCSA56895.2022.10017914
M3 - Conference contribution
AN - SCOPUS:85147037076
T3 - Proceedings of IEEE/ACS International Conference on Computer Systems and Applications, AICCSA
BT - 2022 IEEE/ACS 19th International Conference on Computer Systems and Applications, AICCSA 2022 - Proceedings
PB - IEEE Computer Society
T2 - 19th IEEE/ACS International Conference on Computer Systems and Applications, AICCSA 2022
Y2 - 5 December 2022 through 7 December 2022
ER -