7 Layers: Open RAN Security Stance a Sensitive Situation

The open radio access network (RAN) market recently gained significant U.S. government support when Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel touted open RAN as a way for operators to circumvent network equipment from China-based vendors like Huawei and ZTE. Specifically, Rosenworcel noted the ability for open RAN technology to provide operators with greater access to more secure networking equipment. “In the long run, these systems can help diversify the technology in our networks and grow the market for more secure 5G equipment,” she stated during a speech at a Center for Strategic and International Studies event earlier this year. The U.S. has earmarked billions of dollars to be used to help rip-and-replace existing network infrastructure from China-based vendors, including RAN equipment. The FCC had previously reported America’s wireless network infrastructure included at least 24,000 pieces of Huawei or ZTE equipment spanning about 8,400 locations. Most of this work toward open RAN has been under the guidance of the O-RAN Alliance, which is an industry trade group working on technical specifications that foster greater adoption of open RAN equipment. However, that organization has been questioned for its inclusion of some members linked to organizations included on the U.S. Entity List that tracks organizations and individuals considered to support “activities contrary to U.S. national security and/or foreign policy interests.” This issue at one point resulted in Nokia pausing activities with the O-RAN Alliance over concerns about Chinese members’ blacklisted status with the U.S. government. The O-RAN Alliance quickly adopted changes to its participation documents and procedures that brought Nokia back into the fold. John Strand, CEO of Strand Consult, stated that this connection should raise concerns over the security structure of open RAN equipment. “What I dislike is that open RAN has been marketed as an alternative to Chinese infrastructure,” Strand said. “Open RAN is just as Chinese as anything else. There’s 11 or 12 working committees in [O-RAN Alliance] and China Mobile is either the chair or the vice-chair of nine or 10 of them. China Mobile and 43 other Chinese companies on the U.S. Entity List are key stake holders in [O-RAN Alliance]. … That’s an issue.” On this episode of the SDxCentral 7 Layers podcast, Strand provides more insight into those potential concerns and areas where other security challenges could impact the adoption of open RAN architectures. Learn more about your ad choices. Visit megaphone.fm/adchoices