The Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), through the Enduring Security Framework (ESF), have published a paper about the security considerations in regards to the implementation of Open RAN (O-RAN) architecture.
The ESF’s Open RAN Working Panel focused on security considerations for multiple technical aspects of O-RAN: Multi-vendor management, open fronthaul that connects radios to base stations, a new RAN application framework comprising rApps and xApps, the use of artificial intelligence/machine learning (AI/ML) for RAN optimization, and other general network considerations including open-source software, virtualization and a cloud-based 5G core network.