© 2017 TM Forum | 1
Future Cognitive
Security of OSS/BSS
Dr. Ian Oliver
Senior Security Researcher
Nokia Bell Labs, Finland
© 2017 TM Forum | 2
OSS/BSS
The “forgotten” NFV layer
The first point of contact to customers
Security Critical
© 2017 TM Forum | 3
Security in/of/around OSS/BSS
Security services provided by OSS/BSS
Security of the implementation
Security of the platform
Security ::= Security, Privacy, Trust, Integrity, Belief, Identity, Authentication, Authorisation …
Real-Time Security ::= Security x Time
{B,C,O,X,IoE}2{B,C,O,X,IoE}n
© 2017 TM Forum | 4
Interfacing to OSS/BSS & Complexity
Data vs API
Security Actions, Reponse and Effect
Strong vs Weak Signals
Deep and Temporal Signals
BigData vs Quality Data
Semantics: What does the data mean? Is it translatable/understandable?
Feedback loops → Critical to learning
Security is a service optimisation problem
© 2017 TM Forum | 5
Interfacing to OSS/BSS & Complexity
But before we can talk about OSS/BSS security, please answer this question:
© 2017 TM Forum | 6
Interfacing to OSS/BSS & Complexity
But before we can talk about OSS/BSS security, please answer this question:
What does your OSS/BSS need to do?
© 2017 TM Forum | 7
OSS/BSS Data Sources – Current State
BSS OSSLogfile monitoring
© 2017 TM Forum | 8
OSS/BSS Data Sources - Future
BSS OSS
MANO
VNF
NFVI
Logfile monitoring
Implicit knowledge
Machine Learning
AI
Cognition
© 2017 TM Forum | 9
The Most Important Piece of Mathematics...
© 2017 TM Forum | 10
OSS/BSS Knowledge Extraction
BSS OSS
MANO
VNF
NFVI
Cognition Platform
© 2017 TM Forum | 11
Detection, Classification, Action, Feedback, Learning
BSS/OSS
NFVI
VNF
Cognition Platform
© 2017 TM Forum | 12
System (In-)Stability Detection and Response
Cognition Platform
BSS
NFVI
VNFVNF
NFVI
OSS
Orch
OSS
...
© 2017 TM Forum | 13
Final Messages Data not APIs
Classification
Vendor, Domain, Context Specific
Understand your OSS/BSS requirements
Ontology, Semantics → Knowledge
Actions, Action Feedback
Unexpected Consequences & System Instability
Deep, weak & temporal signals
Quality Data NOT Big Data
OSS/BSS Sec
not just OSS/BSS
Transcends: Firmware, O/S, VNF, Edge, Service etc…
Agility & Automation have costs
Privacy & Trust
Knowledge Plane/Cognition Platform