Friday 22 June 2018

5G and IoT Security Update from ETSI Security Week 2018

ETSI Security Week 2018 (link) was held at ETSI's Headquarters in Sophia Antipolis, South of France last week. It covered wide variety of topics including 5G, IoT, Cybersecurity, Middlebox, Distributed Ledger Technology (DLT), etc. As 5G and IoT is of interest to the readers of this blog, I am providing links to the presentations so anyone interested can check them out at leisure.


Before we look at the presentations, what exactly was the point of looking at 5G Security? Here is an explanation from ETSI:

5G phase 1 specifications are now done, and the world is preparing for the arrival of 5G networks. A major design goal of 5G is a high degree of flexibility to better cater for specific needs of actors from outside the telecom sector (e.g. automotive industry, mission-critical organisations). During this workshop, we will review how well 5G networks can provide security for different trust models, security policies, and deployment scenarios – not least for ongoing threats in the IoT world. 5G provides higher flexibility than legacy networks by network slicing and virtualization of functions. The workshop aims to discuss how network slicing could help in fulfilling needs for different users of 5G networks.

5G will allow the use of different authentication methods. This raises many interesting questions. How are these authentication methods supported in devices via the new secure element defined in ETSI SCP, or vendor-specific concepts? How can mission-critical and low-cost IoT use cases coexist side-by-side on the same network?

The 5G promise of higher flexibility is also delivered via its Service-Based Architecture (SBA). SBA provides open 3rd party interfaces to support new business models which allow direct impact on network functions. Another consequence of SBA is a paradigm shift for inter-operator networks: modern APIs will replace legacy signaling protocols between networks. What are the relevant security measures to protect the SBA and all parties involved? What is the role of international carrier networks like IPX in 5G?

Event Objectives
The workshop intends to:

  • Gather different actors involved in the development of 5G, not only telecom, and discuss together how all their views have shaped phase 1 of 5G, to understand how security requirements were met, and what challenges remain;
  • Discuss slicing as a means to implement separate security policies and compartments for independent tenants on the same infrastructure;
  • Give an update of what is happening in 3GPP 5G security;
  • Explain to IoT players what 5G security can (and cannot) do for them, including risks and opportunities related to alternative access credentials;
  • Understand stakeholders' (PMNs, carriers, GSMA, vendors) needs to make SBA both secure and successful. How can SBA tackle existing issues in interconnect networks like fraud, tracking, privacy breaches;
  • Allow vendors to present interesting proposals for open security questions in 5G: secure credential store, firewalling SBA's RESTful APIs;
  • Debate about hot topics such as: IoT security, Slicing security, Privacy, Secure storage and processing and Security of the interconnection network.


So here are the relevant presentations:

Session 1: Input to 5G: Views from Different Stakeholders
Session Chair: Bengt Sahlin, Ericsson

Hardening a Mission Critical Service Using 5G, Peter Haigh, NCSC

Security in the Automotive Electronics Area, Alexios Lekidis, SecurityMatters

Integrating the SIM (iUICC), Adrian Escott, QUALCOMM

Smart Secure Platform, Klaus Vedder, Giesecke & Devrient, ETSI SCP Chairman

Network Slicing, Anne-Marie Praden, Gemalto

Don't build on Sand: Validating the Security Requirements of NFV Infrastructure to Confidently Run Slices, Nicolas Thomas, Fortinet

5G Enhancements to Non-3GPP Access Security, Andreas Kunz, Lenovo

Security and Privacy of IoT in 5G, Marcus Wong, Huawei Technologies

ITU-T activities and Action Plan on 5G Security, Yang Xiaoya, ITU-T SG17

Wrap up: 5G Overview from 3GPP SA3 Perspective and What is There to Be Done for Phase 2, Sander Kievit, TNO


Session 2: Security in 5G Inter-Network Signalling
Session Chair: Stefan Schroeder, T-Systems

Presentation on SBA: Introduction of the Topic and Current Status in SA3, Stefan Schroeder, T-Systems

5G Inter-PLMN Security: The Trade-off Between Security and the Existing IPX Business Model, Ewout Pronk, KPN on behalf of GSMA Diameter End to End Security Subgroup

Secure Interworking Between Networks in 5G Service Based Architecture, Silke Holtmanns, Nokia Bell Labs

Security Best Practises using RESTful APIs, Sven Walther, CA Technologies

Identifying and Managing the Issues around 5G Interconnect Security, Stephen Buck, Evolved Intelligence

Zero Trust Security Posture in 5G Architecture, Galina Pildush, Palo Alto Networks (Missing)


Session 1 & 2 Workshop Wrap up: 5G Phase 1 Conclusions and Outlook Towards Phase 2 - Stefan Schroeder, T-Systems and Bengt Sahlin, Ericsson


Session 5: Benefits and Challenges of 5G and IoT From a Security Perspective
Session Chair: Arthur van der Wees, Arthur's Legal

Setting the Scene, Franck Boissière, European Commission

ENISA's View on Security Implications of IoT and 5G, Apostolos Malatras, ENISA

Smart City Aspects, Bram Reinders, Institute for Future of Living

The Network Operators Perspective on IoT Security, Ian Smith, GSMA


Related Links:

Saturday 16 June 2018

Summary and Analysis of Ericsson Mobility Report 2018

Ericsson Mobility reports always make a fantastic reading. Its been a while since I wrote anything on this topic so I thought lets summarize it and also provide my personal analysis. Please feel free to disagree as this is just a blog post.

Before we start, the official site for the report is here. You can jump directly to the PDF here. Ericsson will also be holding a webinar on this topic on 19 June, you can register here.

A short summary of some of the highlights are in the table above but lets look at more in detail.

Mobile subscriptions 



  • The total number of mobile subscriptions was around 7.9 billion in Q1 2018.
  • There are now 5.5 billion mobile broadband subscriptions.
  • Global subscription penetration in Q1 2018 was 104 percent.
  • The number of LTE subscriptions increased by 210 million during the quarter to reach a total of 2.9 billion.
  • Over the same period, GSM/EDGE-only subscriptions declined by 90 million. Other technologies declined by around 32 million.
  • Subscriptions associated with smartphones now account for around 60 percent of all mobile phone subscriptions.

Many things to note above. There is still a big part of the world which is unconnected and most of the connectivity being talked about is population based coverage. While GSM/EDGE-only subscriptions are declining, many smartphone users are still camped on to GSM/EDGE for significant time.

While smartphones are growing, feature phones are not far behind. Surprisingly, Reliance Jio has become a leader of 4G feature phones.

My analysis from the developing world shows that many users are getting a GSM feature phone as a backup for when smartphone runs out of power.


Mobile subscriptions worldwide outlook


  • 1 billion 5G subscriptions for enhanced mobile broadband by the end of 2023, accounting for 12 percent of all mobile subscriptions.
  • LTE subscriptions continues to grow strongly and is forecast to reach 5.5 billion by the end of 2023
  • In 2023, there will be 8.9 billion mobile subscriptions, 8.3 billion mobile broadband subscriptions and 6.1 billion unique mobile subscribers.
  • The number of smartphone subscriptions is forecast to reach 7.2 billion in 2023.

The report describes "A 5G subscription is counted as such when associated with a device that supports NR as specified in 3GPP Release 15, connected to a 5G-enabled network." which is a good approach but does not talk about 5G availability. My old question (tweet below) on "How many 5G sites does an operator have to deploy so that they can say they have 5G?" is still waiting for an answer.


5G device outlook



  • First 5G data-only devices are expected from the second half of 2018.
  • The first 3GPP smartphones supporting 5G are expected in early 2019.
  • From 2020, when third-generation chipsets will be introduced, large numbers of 5G devices are forecast.
  • By 2023, 1 billion 5G devices for enhanced mobile broadband are expected to be connected worldwide.

Qualcomm has made a good progress (video) on this front and there are already test modems available for 5G. I wont be surprised with the launch. It would remain to be seen what will be the price point and demand for these 5G data-only devices. The Register put it quite bluntly about guinea pigs here. I am also worried about the misleading 5G claims (see here).


Voice over LTE (VoLTE) outlook



  • At the end of 2017, VoLTE subscriptions exceeded 610 million.
  • The number of VoLTE subscriptions is projected to reach 5.4 billion by the end of 2023.
  • VoLTE technology will be the foundation for enabling 5G voice calls.
  • New use cases in a 5G context are being explored, such as augmented reality (AR) and virtual reality (VR).

Back in 2011, I suggested the following (tweet below)
Looks like things haven't changed significantly. There are still many low end devices that do not support VoLTE and many operators dont support VoLTE on BYOD. VoLTE has been much harder than everyone imagined it to be.


Mobile subscriptions worldwide by region



  • Globally, mobile broadband subscriptions now make up 68 percent of all mobile subscriptions.
  • 5G subscriptions will be available in all regions in 2023.
  • In 2023, 48 percent of subscriptions in North America and 34 percent in North East Asia are expected to be for 5G.

I think that for some regions these predictions may be a bit optimistic. Many operators are struggling with finance and revenue, especially as the pricing going down due to intense competition. It would be interesting to see how these numbers hold up next year.

While China has been added to North-East Asia, it may be a useful exercise to separate it. Similarly Middle East should be separated from Africa as the speed of change is going to be significantly different.


Mobile data Traffic Growth and Outlook

  • In Q1 2018, mobile data traffic grew around 54 percent year-on-year.
  • The quarter-on-quarter growth was around 11 percent.
  • In 2023, 20 percent of mobile data traffic will be carried by 5G networks.
  • North America has the highest monthly usage of mobile data per smartphone at 7.2 gigabytes (GB), anticipated to increase to 49GB in 2023.
  • Total mobile data traffic is expected to increase by nearly eight times by the end of 2023.
  • In 2023, 95 percent of total mobile data traffic is expected to be generated by smartphones, increasing from 85 percent today.
  • North East Asia has the largest share of mobile data traffic – set to reach 25EB per month in 2023.

This is one of the toughest areas of prediction as there are a large number of factors affecting this from pricing to devices and applications.

Quiz question: Do you remember which year did data traffic overtake voice traffic? Answer here (external link to avoid spoilers)


Mobile traffic by application category



  • In 2023, video will account for around 73 percent of mobile data traffic.
  • Traffic from social networking is also expected to rise – increasing by 31 percent annually over the next 6 years.
  • The relative share of social networking traffic will decline over the same period, due to the stronger growth of video.
  • Streaming videos in different resolutions can impact data traffic consumption to a high degree. Watching HD video (720p) rather than standard resolution video (480p) typically doubles the data traffic volume, while moving to full HD (1080p) doubles it yet again.
  • Increased streaming of immersive video formats would also impact data traffic consumption.

It would have been interesting if games were a separate category. Not sure if it has been lumped with Video/Audio or in Other segments.


IoT connections outlook


  • The number of cellular IoT connections is expected to reach 3.5 billion in 2023. This is almost double our last forecast, due to ongoing large-scale deployments in China.
  • Of the 3.5 billion cellular IoT connections forecast for 2023, North East Asia is anticipated to account for 2.2 billion.
  • New massive cellular IoT technologies, such as NB-IoT and Cat-M1, are taking off and driving growth in the number of cellular IoT connections.
  • Mobile operators have commercially launched more than 60 cellular IoT networks worldwide using Cat-M1 and NB-IoT.

It is important to look at the following 2 definitions though.

Short-range IoT: Segment that largely consists of devices connected by unlicensed radio technologies, with a typical range of up to 100 meters, such as Wi-Fi, Bluetooth and Zigbee. This category also includes devices connected over fixed-line local area networks and powerline technologies

Wide-area IoT: Segment consisting of devices using cellular connections, as well as unlicensed low-power technologies, such as Sigfox and LoRa

The Wide-area IoT in the table above includes cellular IoT. If you are a regular reader of this blog, you will know that I think LoRa has a bright future and my belief is that this report ignores some of the reasons behind the popularity of LoRa and its growth story. 


Network coverage

  • In 2023, more than 20 percent of the world’s population will be covered by 5G.
  • 5G is expected to be deployed first in dense urban areas to support enhanced mobile broadband.
  • Another early use case for 5G will be fixed wireless access.
  • Today, 3GPP cellular networks cover around 95 percent of the world’s population.

A lot of work needs to be done in this area to improve coverage in rural and remote locations.

I will leave this post at this point. The report also contains details on Network Evolution, Network Performance, Smart Manufacturing, etc. You can read it from the report.

Monday 11 June 2018

An Introduction to ONF and CORD (Central Office Re-architected as a Datacenter)


Continuing on the theme of Open Source from last week's post from Telefonica, lets look at the CORD by ONF.

The CORD (Central Office Re-architected as a Datacenter) platform leverages SDN, NFV and Cloud technologies to build agile datacenters for the network edge. Integrating multiple open source projects, CORD delivers a cloud-native, open, programmable, agile platform for network operators to create innovative services.

CORD provides a complete integrated platform, integrating everything needed to create a complete operational edge datacenter with built-in service capabilities, all built on commodity hardware using the latest in cloud-native design principles.



The video above from MWC 2018 is a very short summary of what ONF and CORD is. The video below from OCP Telecom Workshop at the Big Communications Event (BCE) on May 14th, 2018 in Austin, Texas looks at CORD in detail.



Related Post:

Thursday 7 June 2018

Telefonica and open source


An interesting presentation by Patrick Lopez, VP Networks Innovation, Telefónica at NFV & Zero Touch World Congress 2018 about how and why Telefónica is moving to open source. Slides and video embedded below





Friday 1 June 2018

An Alternative 5G for Rural Communities


I recently presented my personal vision of an alternative 5G for rural communities on behalf of Parallel Wireless at the IEEE 5G Summit in Glasgow. I believe that the next few years are going to be crucial for MNOs to decide if they want to cover the rural areas or just continue to focus on built-up areas.

In some cases it may not really be worthwhile for example for a smaller operator to build a cellular IoT network as the returns may not be worth the effort and investment.

I should mention that the caveat is that a lot of alternative 5G approach in my presentation depends on at least one of the satellite megaconstellations being successfully deployed and being fully operational. I am assuming a sensible pricing would be in place anyway as the satellite operators cant keep charging whatever they want for ever.

So here is my alternative 5G vision


Slides (and pictures) are available here for anyone interested. For my slides, jump to page 244. Quite a few other good presentations on 5G too.

An article in EE times summarises this IEEE 5G conference quite well. Available here.



Let me know your thoughts.

Sunday 27 May 2018

enhanced Public Warning System (ePWS) in 3GPP Release-16

I wrote about PWS 9 years back here. Since then there has been little chance to PWS until recently. According to 3GPP News:

Additional requirements for an enhanced Public Warning System (ePWS) have been agreed at the recent 3GPP TSG SA#79 meeting, as an update to Technical Specification (TS) 22.268.

3GPP Public Warning Systems were first specified in Release 8, allowing for direct warnings to be sent to mobile users on conventional User Equipment (PWS-UE), capable of displaying a text-based and language-dependent Warning Notification.

Since that time, there has been a growth in the number of mobile devices with little or no user interface - including wrist bands, sensors and cameras – many of which are not able to display Warning Notifications. The recent growth in the number of IoT devices - not used by human users – also highlights the need for an alternative to text based Warning Notifications. If those devices can be made aware of the type of incident (e.g. a fire or flood) in some other way than with a text message, then they may take preventive actions (e.g. lift go to ground floor automatically).

3GPP SA1 delegates also considered how graphical symbols or images can now be used to better disseminate Warning Notifications, specifically aimed at the following categories of users:

  • Users with disabilities who have UEs supporting assistive technologies beyond text assistive technologies; and
  • Users who are not fluent in the language of the Warning Notifications.

Much of the work on enhancing the Public Warning System is set out in the ePWS requirements specification: TS 22.268 (SA1). You should also keep an eye on the 3GPP protocol specifications (CT1, Stage 3 work) in Release 16, covering:

  • Specifying Message Identifiers for ePWS-UE, especially IoT devices that are intended for machine type communications
  • Enabling language-independent content to be included in Warning Notifications

The work on ePWS in TS 22.268 (Release 16) is expected to help manufacturers of User Equipment meet any future regulatory requirements dedicated to such products.


Related Specs:

  • 3GPP TR 22.869: Feasibility study on enhancements of Public Warning System; Stage 1
  • 3GPP TS 22.268: Public Warning System (PWS) requirements - Stage 1 for Public Warning System
  • 3GPP TS 23.041: Technical realization of Cell Broadcast Service (CBS) - CT1 aspects of Stage 3 for Public Warning System 
  • 3GPP TS 29.168: Cell Broadcast Centre interfaces with the Evolved Packet Core; Stage 3 - CT4 aspects of Stage 3 for Public Warning System


Further reading:

Wednesday 16 May 2018

100 Gbps wireless transmission using Orbital Angular Momentum (OAM) multiplexing


From a press release by NTT Group:

Nippon Telegraph and Telephone Corporation (NTT, Head Office: Chiyoda-ku, Tokyo, President and CEO: Hiroo Unoura) has successfully demonstrated for the first time in the world 100 Gbps wireless transmission using a new principle — Orbital Angular Momentum (OAM) multiplexing — with the aim of achieving terabit-class wireless transmission to support demand for wireless communications in the 2030s. It was shown in a laboratory environment that dramatic leaps in transmission capacity could be achieved by an NTT devised system that mounts data signals on the electromagnetic waves generated by this new principle of OAM multiplexing in combination with widely used Multiple-Input Multiple-Output (MIMO) technology. The results of this experiment revealed the possibility of applying this principle to large-capacity wireless transmission at a level about 100 times that of LTE and Wi-Fi and about 5 times that of 5G scheduled for launch. They are expected to contribute to the development of innovative wireless communications technologies for next-generation of 5G systems such as connected cars, virtual-reality/augmented-reality (VR/AR), high-definition video transmission, and remote medicine.


NTT is to present these results at Wireless Technology Park 2018 (WTP2018) to be held on May 23 – 25 and at the 2018 IEEE 87th Vehicular Technology Conference: VTC2018-Spring, an international conference sponsored by the Institute of Electrical and Electronics Engineers (IEEE) to be held on June 3 – 6.


For more technical details look at the bottom of this link.

Related Post:

Tuesday 1 May 2018

MAMS (Multi Access Management Services) at MEC integrating LTE and Wi-Fi networks

Came across Multi Access Management Services (MAMS) a few times recently so here is a quick short post on the topic. At present MAMS is under review in IETF and is being supported by Nokia, Intel, Broadcom, Huawei, AT&T, KT.

I heard about MAMS for the first time at a Small Cell Forum event in Mumbai, slides are here for this particular presentation from Nokia.

As you can see from the slide above, MAMS can optimise inter-working of different access domains, particularly at the Edge. A recent presentation from Nokia (here) on this topic provides much more detailed insight.

From the presentation:

        MAMS (Multi Access Management Services) is a framework for

-            Integrating different access network domains based on user plane (e.g. IP layer) interworking,

-            with ability to select access and core network paths independently

-            and user plane treatment based on traffic types

-            that can dynamically adapt to changing network conditions

-            based on negotiation between client and network
        The technical content is available as the following drafts*



-            MAMS User Plane Specification: https://tools.ietf.org/html/draft-zhu-intarea-mams-user-protocol-02




*Currently under review, Co-authors: Nokia, Intel, Broadcom, Huawei, AT&T, KT,

The slides provide much more details, including the different use cases (pic below) for integrating LTE and Wi-Fi at the Edge.


Here are the references for anyone wishing to look at this in more detail:

Sunday 22 April 2018

Short summary of #CWFDT event 'Smart Devices of 2025'


Last month, just before the Easter break, I along with some other SIG champions of the Future Devices & Technologies group at CW (Cambridge Wireless) organised an event titled 'Smart Devices of 2025'. Technologies are moving at such an amazing speed that it is not easy to foresee anything beyond 6-8 years. Hence 2025, 7 years from now.



As this was the inaugural event for the revamped SIG, the slides above are my quick introduction to the SIG. We not only talked about the future but we had some nice futuristic devices too. The nuFood 3D Food Printer by Dovetailed printed out some fancy toppings that could go on cheesecake and on other food, making it more appetising. Here is the video on how it works.



All the talks were very informative and very well explained. Its amazing how all of them came together to form a complete picture. The talks are all available here (limited time for non-CW members)

The starting talk by David Wood (@dw2), chair of London Futurists was not only informative and relevant to the subject being discussed but equally entertaining, especially for those who have been in the mobile industry for a long time. He has kindly agreed for me to share his slides which are embedded below.



David talks about NBIC (slide 18) and how it could be combined with Social-tech and Planetary-tech in future to do a lot more than what we can do with it today. While David explains NBIC in his slides, I found this short video on this topic that I think is worth embedding.



It was also good to hear Dr Jenny Tillotson again after a long time. I blogged about smell transmission some 6 years back here. This is something that is still work in progress and probably will be ready by 2025. In the meantime 'Context-Driven Fragrances' can be used for variety of purposes from entertainment to health.


Finally, here is another small presentation (with embedded video) on Telepresence Robots that I did.



Related posts: