30m, David Armbrust SCDRs for enhanced security visibility and operational transparency in the enterprise network slice |
Abstract
Network Slicing (NS) will be a key enabler for companies and enterprise verticals. Therefore, Network Slice enterprise Consumers (NSC) will demand security visibility and operational transparency for every NS instantiation. This can be achieved by combining data from network slices and knowledge from the enterprise. Since MNOs cannot access internal enterprise knowledge about 5G assets, resources, and admitted associates to their network slice instances, network slice data must be made available to the NSC. Security Call Data Record (SCDR) is a framework to make this data available and make possible the detection of nuanced and advanced persistent threats. In our presentation of SCDR, we will describe the framework and demonstrate a use case for detection of stolen or maliciously used credentials from authorized connections but anomalous locations.
DTF 22 - MITRE SCDR - uploaded.pdf