Ericsson: Multi-User MIMO with T-Mobile US; 5G with Telefónica; Open RAN Security WARNING

Author’s Note:

This post is actually three separate articles concerning “Ericsson in the news” today. Rather, than read all three parts, simply scroll down to the story that interests you. Let me (and others) know what you think by commenting in the box below the article.

1. Multi-User MIMO demo with T-Mobile US

T-Mobile US and Ericsson demonstrated a 16-layer multi-user multi-input multi-output (MU-MIMO) [1.] on one channel of 2.5 GHz spectrum. The peak cellular data rate was more than 5.6 Gbps.

During the test, engineers connected eight separate smartphones to the same 5G radio and resources using MU-MIMO and beamforming in a specific direction to achieve more than 700 Mbps data rate on each device.

Note 1. Multi-user MIMO (MU-MIMO) is a set of multiple-input and multiple-output (MIMO) technologies for wireless communication, in which a set of users or wireless terminals, each with one or more antennas, communicate with each other.

In contrast, single-user MIMO considers a single multi-antenna transmitter communicating with a single multi-antenna receiver. In a similar way that OFDMA adds multiple access (multi-user) capabilities to OFDM, MU-MIMO adds multiple access (multi-user) capabilities to MIMO. MU-MIMO has been investigated since the beginning of research into multi-antenna communication.

…………………………………………………………………………………….

Using MU-MIMO, T-Mobile US could potentially connect many more devices to the same cell infrastructure and still deliver very fast speeds to all of them. Using that set of technologies, wireless telcos might be able to deliver even better 5G performance to more people than was expected.

Using a commercially available massive MIMO radio with 64 antennas from Ericsson and OnePlus 8 5G smartphones T-Mobile sells today, 16 unique data streams were transmitted. Each stream was capable of transmitting/receiving at more than 350 Mbps. With two data streams for each device, that’s 700+ Mbps for each smartphone, all using the same radio resources at the same time.

With 100 MHz of total 5G spectrum used in the demonstration, T-Mobile US was able to achieve a 50+ bps/Hz in spectral efficiency. That is much higher than the single digit efficiency typically experienced today.

“This is what you get when you pair T-Mobile’s unmatched spectrum portfolio with the best damn team in wireless — innovation that changes the game for the entire industry,” said Neville Ray, President of Technology at T-Mobile. “We have a 5G network that’s second to none, and it’s getting better by the day thanks to our amazing engineers and partners. Just wait until you see what they do next for our customers!”

T-Mobile US expects to begin deploying this technology in 2021 as they continue the goal of building America’s best 5G network.

References:

https://www.t-mobile.com/news/network/t-mobile-achieves-mind-blowing-5g-speeds-with-mu-mimo

For more information about T-Mobile’s 5G vision, visit: www.t-mobile.com/5g. To see all the places you’ll get T-Mobile’s current 5G down to a neighborhood level, check out the map at www.t-mobile.com/coverage/5g-coverage-map.

https://www.telecompaper.com/news/t-mobile-us-achieves-5g-speeds-with-mu-mimo–1353491

…………………………………………………………………………………………………..

2. Ericsson partners with Telefónica on Spain 5G launch

Ericsson has confirmed that it’s helping Telefónica’s planned launch of 5G services to cover 75 percent of the Spanish population by the end of 2020, including the major cities of Madrid and Barcelona.

In a statement, Ericsson said its field professionals have been working alongside Telefónica’s engineers to ensure that 5G base station sites across the network will be fully operational when the operator makes the service available for its subscribers.

Thousands of Ericsson cell sites are expected to be activated by year end, said the Swedish wireless telecom equipment vendor. Ericsson said that Spectrum Sharing will enable Telefónica Spain to simultaneously share 5G and 4G spectrum, for a quick and efficient 5G network roll-out.

Ericsson is providing new 3.5Ghz radio equipment and software upgrades to 5G-ready Ericsson radios in Telefónica’s network. With Ericsson Radio System products already deployed in parts of Telefónica Spain’s network, fast, flexible, and cost-efficient 5G activation is made easier.

Joaquín Mata, CTO, Telefónica Spain, says: “The launch of our 5G network constitutes a leap forward towards the hyper connectivity that will change the future of Spain. We are very pleased with the collaboration with Ericsson to build one of the best 5G networks in Europe.”

Arun Bansal, President of Ericsson Europe and Latin America, says: “With our leading technology, Telefónica will offer its customers 5G faster and support them to reach 75 percent coverage of the population by the end of the year. With our swift 5G roll-out, Spain is ready for the next digital revolution and Ericsson is proud to be powering it together with Telefónica.”

References:

https://www.ericsson.com/en/press-releases/2020/9/ericsson-to-support-telefonica-spain-5g-launch

…………………………………………………………………………………………………..

3. Ericsson Warning on Security Risks of Open RAN

In a clarion call for caution, an Ericsson blog post today raised a huge concern that Open RAN might open the door for new security risks in 5G. The company also posted a 14 page whitepaper on “Security Considerations of Open RAN.”

Jason S. Boswell, Head of Security at Ericsson’s Network Product Solutions wrote on the company website:

As the industry evolves towards RAN virtualization, with virtual RAN or Open RAN (O-RAN), it is important that a risk-based approach is taken to adequately address security.Virtualization throughout the network and a service-based architecture means that security needs to be handled in a new way.

5G will accelerate innovation and provide transformative use cases across multiple global sectors. However, it will also bring new security challenges for the mobile ecosystem, with broader attack surfaces, more devices and increased traffic loads. We must have networks that are trustworthy, resilient, and secure at every phase of the system lifecycle. These new security challenges are addressed by 3GPP’s SA3 security work group.

Expanded threat surface

The introduction of new and additional touch points in O-RAN architecture, along with the decoupling of hardware and software, has the potential to expand the threat and attack surface of the network in numerous ways, including:

New interfaces increase threat surface – for example, open fronthaul, A1, E2, etc.

Near-Real-Time (RT) RIC and 3PP xApps introduces new threats that could be exploited

Decoupling of hardware increases threat to Trust Chain

Management interfaces may not be secured to industry best practices

(not exclusive to O-RAN): adherence to Open Source best practices

These and other areas are explored in greater depth in Ericsson’s report, Security considerations of Open RAN. Many of these items are being studied in several O-RAN Alliance working groups, including the Security Task Group, a consensus-based standards group that will ensure that O-RAN implementations meet the levels of security expected by the industry.

Ericsson is committed to providing leadership and guidance in the O-RAN Alliance on these emerging areas of study. In the meantime, let’s take an in-depth look at just one of these new areas of risk:

Weakened Links in the Trust Chain

Virtualization and the use of cloud platforms give the possibility to utilize hardware resources better between different applications, but it will also introduce security risks as isolation between applications are only “logical” in software without physical isolation across hardware resources. Recently discovered vulnerabilities like Meltdown and Spectre reveal that there can be increased security risks when sharing hardware resources.

To establish a secure and trusted communication channel between two endpoints, one needs first to authenticate each side before a secure (confidentiality and integrity-protected) channel can be established. To authenticate each endpoint, a unique identifier and one or more credentials that shall be kept secret are needed. To protect the credentials in a computer environment, hardware security functionality such as Trusted Platform Module (TPM), Hardware Security Module (HSM), and secure enclaves, are used to establish a hardware root of trust.

In the case of virtualization and cloud environments, there are many layers that need to be considered to ensure the trust chain is maintained between applications and the underlying hardware. The authentication process is the base for establishing a secure communication channel, but it must trust the layers underneath to attest that the node, layer or data set has not been compromised. For example, a node could request a valid service, authenticate correctly to the system and be authorized to use that service yet still represent a malicious threat if it is running on compromised firmware.

As there are different layers between the hardware and its security functions and the application, one needs standardized interfaces and APIs to use the hardware security functions and allow those to attest to and validate the layers above. Together with standardized and interoperable APIs, there must also be a transparency to how the different layers use and provide the security functions in the chain, especially as different hardware vendors may have different security functions, capabilities or implementation variances.

Figure 1. O-RAN: Additional functions, interfaces and a modified architecture (Source: Ericsson)

Ericsson will continue its leadership role within the O-RAN Alliance and its Security Task Group to incorporate security best practices, ensuring that new deployments are ready to meet the level of security, resilience and performance expected by service providers and their customers.

……………………………………………………………………………………………….

The Open RAN Policy Coalition, a U.S. special interest (i.e. lobbying) group looking for U.S. government funding for Open RAN technology, today announced several new members (American Tower, Broadcom, GigaTera Communications, Inseego, Ligado Networks, Nvidia, RIFT, Texas Instruments and Xilinx). Ericsson is not a member, but arch rival Nokia is. Cloud giants AWS, Google and Facebook are members. Obviously, Chinese vendors aren’t welcome to join the Coalition. The complete Coalition membership list is here.

……………………………………………………………………………………………..

Coalition members believe that by standardizing or “opening” the protocols and interfaces between the various subcomponents (radios, hardware and software) in the RAN, we move to an environment where networks can be deployed with a more modular design without being dependent upon a single vendor. The Coalition will promote policies that:

Support global development of open and interoperable wireless technologies;
Signal government support for open and interoperable solutions;
Use government procurement to support vendor diversity;
Fund research and development;
Remove barriers to 5G deployment; and
Avoid heavy-handed or prescriptive solutions

…………………………………………………………………………………………

The FCC is scheduled to host an open RAN forum on September 14th. FCC Chairman Pai will host experts at the forefront of the development and deployment of open, interoperable, standards-based, virtualized radio access networks to discuss this innovative new approach to 5G network architecture.

Panelists include representatives from Nokia, Parallel Wireless, Mavenir, Altiostar, HP Enterprise, Dell, VM Ware, and other would be Open RAN hardware/software vendors. But Ericsson will not be among them.

“Open and virtualized radio access networks may help operators deploy more secure, cost-effective 5G networks,” said Chairman Pai. “As part of the FCC’s 5G FAST Plan, the agency has taken many actions to promote American leadership in next generation wireless services. To that end, we want the United States to lead the way in researching and developing innovative approaches to mobile network deployment. I am pleased the FCC will convene these experts for a productive discussion about the current state of ORAN-related technologies and the path ahead.”

You can watch the live FCC forum webcast here.

References:

https://www.ericsson.com/en/blog/2020/9/open-ran-security-5g

https://www.ericsson.com/4a4b77/assets/local/security/security-considerations-open-ran.pdf

https://www.lightreading.com/open-ran/ericsson-issues-warning-on-open-ran-security/d/d-id/763821?

https://techblog.comsoc.org/2020/05/05/open-ran-policy-coalition-u-s-attempt-to-exclude-chinese-5g-network-equipment-vendors/

https://www.fcc.gov/news-events/events/forum-5g-virtual-radio-access-networks