TM Forum Community

Expand all | Collapse all

How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

  • 1.  How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    Posted Dec 05, 2018 11:20

    Virtualisation has brought agility in the network infrastructure place but obligations to the government regulators around data retention remains the same. Do you clearly understand the impact of NFV/SDN/Virtualisation on compliance and are planning your lawful interception (LI) investments accordingly? We are inviting CSPs and network vendors to participate in a joint study and help form new guidance and interoperability standards, in partnership with ONAP. Our objective is to build an orchestration and security model that would usher CSPs into the era of NFV/SDN/Virtualisation while ensuring regulatory compliance and reduce business risks.

     Please share your thoughts and reply if you would like to be involved in this work.


    #BusinessAssurance
    #OpenDigitalArchitecture
    #TMForumGeneral

    ------------------------------
    Neena Sharma
    BAE Systems Applied Intelligence
    ------------------------------
    DT Asia


  • 2.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    TM Forum Member
    Posted Dec 05, 2018 19:13
    Sounds interesting - can you say a bit more about what potentially breaks with virtualization?

    ------------------------------
    Andy Tiller
    TM Forum
    ------------------------------

    DT Asia


  • 3.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    Posted Dec 06, 2018 10:56

    It is less about what breaks and more about how to keep up with the changing environment. NFV/SDN/Virtualisation is about increasing versatility and agility into the network – moving resources to the places they are needed and bring new services to life quicker. And the Lawful Interception solutions have to embed this agility and versatility to aligh with the new technology. 



    ------------------------------
    Neena Sharma
    Product Marketing Manager
    BAE Systems Applied Intelligence
    ------------------------------

    DT Asia


  • 4.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    TM Forum Member
    Posted Dec 15, 2018 07:06
    Hi Neena,

    This is a very important point.  I know that 3GPP this week in their plenary approved (yet another) work item on studying how virtualization impacts security however this is something which should be baked in and not an afterthought.  SDN could be an option for solving this given the complexity of an edge computing topology where elements of the network are distributed.

    I believe that TM Forum has an important role to play here and that some of your peers will be very keen to work towards some standard solutions.

    Kind Regards,
    Paul

    ------------------------------
    Paul Bradley
    TM Forum
    ------------------------------

    DT Asia


  • 5.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    Posted Dec 10, 2018 07:37
    Neena,

    It may also be interesting to consider this topic this from a global distributed CSP perspective, i.e a provider operating in many jurisdictions, servicing organizations operating globally. If you consider cloud computing, and the global and opaque nature of infrastructure.  And to complicate thing s further, mobile CPE, moving through different countries, for example a ship or aircraft, with heterogeneous NFV's.  That along with the automation ONAP bring raises new challenges for the CSP. How does the CSP maintain compliance, and to what?

    I would be interested to hear more about your plans.

    ------------------------------
    Denis Sutherland
    VT Idirect, Inc.
    ------------------------------

    DT Asia


  • 6.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    Posted Jan 29, 2019 06:19
    The following alignment for the conspiracy which will be going to manage it in such way to  firefox couldn't load xpcom  ensure the compliance and business risk reduction in the era of NF to handle this part which will be going to proceed it.

    ------------------------------
    Wade paine
    TO BE VERIFIED
    ------------------------------

    DT Asia


  • 7.  RE: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation

    TM Forum Member
    Posted Jan 30, 2019 11:45
    We did look at the implication of moving from traditional network appliance purchasing to use of Virtualised network  applications in the ZOOM project now merged with ODA Production
    Specifically IG1141 Procurement and Onboarding Suite R18.0.1 .
    The key message from this work and the associated catalyst PoCs on which it is based is that one needs to use a model driven metadata approach   which keeps track of dependencies from commercial operational and technical viewpoints . This implies linking the CD/CI environments of Suppliers and CSPs as described in IG1137 Joint Agile Delivery (JAD) Service Assurance R17.5.1
    The IG1141 work looked a procurement and   licensing ( which has security and resilience aspects ) and metrics used operationally.
    One of the catalysts showed how it was important to transfer from the supplier to the SP the configuration information which could include results of security scans on the software / VNF (shown by Symantec) . We also developed a proposal on run time security based on the CSA Software Defined Perimeter thinking in  TR263D Platform Security and Policy Management R17.0.1 which also applies to component based solutions.

    ------------------------------
    Dave Milham
    TM Forum Chief Architect, TM Forum
    ------------------------------

    DT Asia