Author
Listed:
- Rodrigo Asensio-Garriga
(Department of Information and Communications Engineering, University of Murcia, 30100 Murcia, Spain)
- Alejandro Molina Zarca
(Spanish Air Force Academy, University Center of Defense, 30729 San Javier, Spain)
- Jordi Ortiz
(Spanish Air Force Academy, University Center of Defense, 30729 San Javier, Spain)
- Ana Hermosilla
(Department of Information and Communications Engineering, University of Murcia, 30100 Murcia, Spain)
- Hugo Ramón Pascual
(Telefónica I + D, 28013 Madrid, Spain)
- Antonio Pastor
(Telefónica I + D, 28013 Madrid, Spain)
- Antonio Skarmeta
(Department of Information and Communications Engineering, University of Murcia, 30100 Murcia, Spain)
Abstract
In the rapidly evolving landscape of telecommunications, the integration of commercial 5G solutions and the rise of edge computing have reshaped service delivery, emphasizing the customization of requirements through network slices. However, the heterogeneity of devices and technologies in 5G and beyond networks poses significant challenges, particularly in terms of security management. Addressing this complexity, our work adopts the Zero-touch network and Service Management (ZSM) reference architecture to enable end-to-end automation of security and service management in Beyond 5G networks. This paper introduces the ZSM-based framework, which harnesses software-defined networking, network function virtualization, end-to-end slicing, and orchestration paradigms to autonomously enforce and preserve security service level agreements (SSLAs) across multiple domains that make up a 5G network. The framework autonomously manages end-to-end security slices through intent-driven closed loops at various logical levels, ensuring compliance with ETSI end-to-end network slice management standards for 5G communication services. The paper elaborates with an SSLA-triggered use case comprising two phases: proactive, wherein the framework deploys and configures an end-to-end security slice tailored to the security service level agreement specifications, and reactive, where machine learning-trained security mechanisms autonomously detect and mitigate novel beyond 5G attacks exploiting open-sourced 5G core threat vectors. Finally, the results of the implementation and validation are presented, demonstrating the practical application of this research. Interestingly, these research results have been integrated into the ETSI ZSM Proof of Concept #6: ’Security SLA Assurance in 5G Network Slices’, highlighting the relevance and impact of the study in the real world.
Suggested Citation
Rodrigo Asensio-Garriga & Alejandro Molina Zarca & Jordi Ortiz & Ana Hermosilla & Hugo Ramón Pascual & Antonio Pastor & Antonio Skarmeta, 2025.
"ZSM Framework for Autonomous Security Service Level Agreement Life-Cycle Management in B5G Networks,"
Future Internet, MDPI, vol. 17(2), pages 1-28, February.
Handle:
RePEc:gam:jftint:v:17:y:2025:i:2:p:86-:d:1589613
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:17:y:2025:i:2:p:86-:d:1589613. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.