We did look at the implication of moving from traditional network appliance purchasing to use of Virtualised network applications in the ZOOM project now merged with ODA Production
Specifically IG1141 Procurement and Onboarding Suite R18.0.1 .
The key message from this work and the associated catalyst PoCs on which it is based is that one needs to use a model driven metadata approach which keeps track of dependencies from commercial operational and technical viewpoints . This implies linking the CD/CI environments of Suppliers and CSPs as described in IG1137 Joint Agile Delivery (JAD) Service Assurance R17.5.1
The IG1141 work looked a procurement and licensing ( which has security and resilience aspects ) and metrics used operationally.
One of the catalysts showed how it was important to transfer from the supplier to the SP the configuration information which could include results of security scans on the software / VNF (shown by Symantec) . We also developed a proposal on run time security based on the CSA Software Defined Perimeter thinking in TR263D Platform Security and Policy Management R17.0.1 which also applies to component based solutions.
------------------------------
Dave Milham
TM Forum Chief Architect, TM Forum
------------------------------
Original Message:
Sent: Dec 05, 2018 05:56
From: Neena Sharma
Subject: How do you ensure compliance and business risk reduction in the era of NFV/SDN/Virtualisation
Virtualisation has brought agility in the network infrastructure place but obligations to the government regulators around data retention remains the same. Do you clearly understand the impact of NFV/SDN/Virtualisation on compliance and are planning your lawful interception (LI) investments accordingly? We are inviting CSPs and network vendors to participate in a joint study and help form new guidance and interoperability standards, in partnership with ONAP. Our objective is to build an orchestration and security model that would usher CSPs into the era of NFV/SDN/Virtualisation while ensuring regulatory compliance and reduce business risks.
Please share your thoughts and reply if you would like to be involved in this work.
#BusinessAssurance
#OpenDigitalArchitecture
#TMForumGeneral
------------------------------
Neena Sharma
BAE Systems Applied Intelligence
------------------------------