Track: Programmable Real-Time Networks and Applications |
| Unlocking Automated Certificate Management for 5G Core Networks with ACME |
| The evolution of 5G Core Networks through virtualization and modularization has enabled remarkable advancements but also introduced new complexities. In today’s multi-vendor ecosystems, Network Functions (NFs) are often sourced from different vendors, operate on cloud-native platforms provided by others, and must interact with an operator’s Certificate Authority (CA) to secure communications. Manual certificate validation in such environments is inefficient, error-prone, and unsustainable. Any automation has traditionally been constrained to single-vendor systems. This session delves into how the Automatic Certificate Management Environment (ACME) protocol (RFC 8555) and the ACME Authority Token Challenge type (RFC 9447) can be leveraged to overcome these challenges. By automating certificate signing request (CSR) validation, this solution allows 5G Core NFs to programmatically obtain and renew certificates, seamlessly and continuously securing communication within the 5G Service-Based Architecture (SBA). The session highlights how this approach scales to handle the complexity of managing a large number of SBA components and NFs, enabling secure and efficient operations across multi-vendor environments. Takeaways for the Audience: - Gain a deeper understanding of how ACME and its extensions can address the unique challenges of certificate management in 5G Core Networks. - Learn how to enhance interoperability and reduce operational burden in multi-vendor deployments. - Discover how automation improves security while minimizing manual effort and operator errors. |
|
| Presentation Video |
| Presentation Notes |
|
ECKEL-UNLOCK-CERT-MGMT-5G-CORE-ACME.pdf |
Real Time Communications Conference & Expo at Illinois Tech
IEEE International Conference
Follow Us
Share This
