An official website of the United States government
A .gov website belongs to an official government organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Press Release | Dec. 2, 2021

NSA and CISA publish third installment of 5G cybersecurity guidance

FORT MEADE, Md. — Today, Enduring Security Framework (ESF) experts from the National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) published their third installment of guidance to protect the confidentiality, integrity, and availability of data within a 5G core cloud infrastructure. 

Devices and services connected through 5G networks transmit, use, and store an exponentially increasing amount of data. This third installment of the Security Guidance for 5G Cloud Infrastructures four part series explains how to protect sensitive data from unauthorized access.

“Data protection is critical because our adversaries are constantly attempting to steal our sensitive data,” says Natalie Pittore, Chief of ESF in NSA’s Cybersecurity Collaboration Center. “As the amount of data increases, it is even more important that we all prioritize securing data in all stages of its lifecycle.  This guidance can help us do that.”

Data traversing 5G networks must remain confidential.  This latest guidance for 5G cloud infrastructures explains how to protect data in transit, at rest, or in use through the use of encryption, cryptographic keys, and secure protocols.

“Data in a network as vast as 5G cloud infrastructures cannot be secured by a solitary entity,” said Morgan Adamski, the Chief of NSA’s Cybersecurity Collaboration Center. “It takes the collaboration of government agencies and our industry partners. When we combine our unique perspectives, we can fit together the pieces of the puzzle and solve critical cybersecurity issues.”

"Data is an incredibly valuable resource driving every industry in the modern world," noted Bob Kolasky, CISA Assistant Director for the National Risk Management Center. "This makes it an especially attractive target for adversaries. This paper highlights the importance of government and industry coordination in addressing the complex task of protecting our critical data. As with the previous two parts of this series, CISA encourages the 5G community to review this guidance and take actionable steps to help strengthen the Nation's 5G cloud infrastructure."

This recent release from the Enduring Security Framework, a public-private cross-sector working group led by NSA and CISA, provides best practices to secure data in 5G cloud environments. Visit the NSA cybersecurity guidance page for other documents in the 5G Cloud Infrastructure series.

Related White Papers: