ETSI recently announced the release of three major specifications and report developed by its Zero-touch network and Service Management (ZSM) group.
ETSI GS ZSM 003, defines end-to-end network slicing management and orchestration architecture blueprint and solutions, and ETSI GS ZSM 009-1 specifies the enablers for closed-loop automation. The general security aspects related to the ZSM framework and solutions, and potential mitigation options are introduced in the ETSI GR ZSM 010.
The ETSI ZSM group was formed with the goal to define a future-proof, end-to-end operable framework, solutions and core technologies which would enable zero-touch automation of emerging and future networks and services/slices.
ETSI GS ZSM 003 defines an architecture blueprint and solutions for zero-touch management and orchestration of end-to-end, cross-domain network slicing – supporting both fulfilment and assurance processes. Network slicing spans different technological domains, from the User Equipment (UE) through, for example, the access network, transport network, core network, to the application. The specification leverages existing industry specifications, stitches them together and provides a federated solution. The alignment and leverage of synergies across ETSI ZSM, 3GPP, O-RAN, IETF, BBF, TMF, GSMA NEST, etc. is essential to enable the delivery of end-to-end network slicing that can satisfy the requirements from vertical industries and the demands of network operators.
ETSI GS ZSM 009-1 specified “Governance” services that allow the creation, execution and life-cycle management of a closed loop, as well as the steering of its behaviour. A closed loop enables the continuous optimization and adaption of network and resource utilization as well as automated service assurance and fulfilment. Advanced machine learning and artificial intelligence can empower the closed-loop operation. The specification provides capabilities to support coordination, delegation and escalation between closed loops to ensure intelligent, consistent and coherent operation. Alignment and leverage of this document horizontally and vertically by 3GPP and O-RAN is essential to ensure cross-use cases, cross-domains, cross-planes, interoperable, unified and consistent closed-loops and cognitive operation. The threat surface in the ZSM environment is extensive due to the openness of the ZSM framework and the nature of the related emerging technologies (e.g. AI/ML, data lake, cloud native applications).
ETSI GR ZSM 010 identifies potential security threats related to the ZSM framework and solutions, and proposes mitigation options that should be considered by the ZSM specifications to ensure that the automated processes are secured and deliver the intended business outcomes.
