NF Software Engineering — Building 5G Core Network Functions · Pro

Authentication and TLS for SBI

TLS Between NFs

TS 33.501 (5G security architecture) mandates TLS 1.2 or higher for all SBI traffic between NFs. In practice TLS 1.3 is the modern default. Mutual TLS (mTLS) — where both client and server authenticate each other using X.509 certificates — is recommended for production deployments and required when NFs span security domains. The certificate management problem at 5GC scale is real: an operator running hundreds of NF instances needs automated issuance, rotation, and revocation. cert-manager on Kubernetes plus an internal CA is one common solution; service mesh sidecars (Istio, Linkerd) handle…

Continue reading with Pro

Your free trial has ended. Subscribe to unlock the full lesson plus all 32 advanced levels, 900 lessons, labs, and 17 TELCOMA certification exams.

$19/month or $199/year·7-day money-back guarantee·Cancel anytime