Join the Open RAN Summit @Taipei, 17-18 June 2024
img
img
img
img

69 New or Updated O-RAN Technical Documents Released since November 2023

O-RAN specifications set the foundation for open, intelligent, virtualized, and interoperable Radio Access Networks (RAN). They describe different functions and interfaces of the O-RAN Architecture (Figure 1). O-RAN Work Groups (WG) or Focus Groups (FG), each covering different part of the solution, keep strong momentum in specification development.

Since November 2023, O-RAN WGs and FGs published 69 technical documents, bringing the total to 112 titles in current version and 561 documents overall.

11 documents represent new titles:

  • O-RAN SMO Intent Management TR v1.00 - This Technical Report (TR) outlines use cases, the relevant best-in-class industry work done on intents management and identifies the next steps for the normative work after the study. 
  • O-RAN Type Definitions for R1 Services v1.00 - This document specifies the Type Definitions for R1 Services. It is part of a Technical Specification (TS) family covering the R1 interface specifications.
  • O-RAN Y1 interface: General Aspects and Principles v1.00 - The document specifies the general aspects and principles (incl. services, supported information types, protocol structure) of the Y1 interface, which connects the Near-RT RIC with an authorized Y1 consumer. This version of the document supports exposure of Radio Analytics Information (RAI).
  • O-RAN Y1 interface: Application Protocol v1.00 - The document specifies the application protocols (API definition, solution sets) of the Y1 services. This version of the document supports exposure of Radio Analytics Information (RAI).
  • O-RAN Y1 interface: Type Definitions v1.00 - The document specifies data types that are applicable on the Y1 interface. This version of the document supports exposure of Radio Analytics Information (RAI).
  • O-RAN O2 IMS K8s Technical Report v1.00 - This new Technical Report provides a study of the applicability of a K8s declarative interface for O-RAN O2 IMS interface, with proposals for IMS future work to support a K8s-oriented API.
  • O-RAN Application Service Descriptor specification v1.00 - This new TS defines an O-RAN Application Services Descriptor (ASD) for potential use in application package.
  • O-RAN O-Cloud Interoperability Test (IOT) Specification v1.00 - This document provides the initial O-Cloud IoT specification, and includes definition of the interoperability testing methodology and a set of tests for the O-Cloud Notification API.
  • O-RAN Study on O-RU Centralized User Management v1.00 - This technical report is the result of a study on the use of centralized user management on the O-RU. The report contains identified key issues, threats and proposed mitigations.
  • O-RAN OAuth2.0 Security v1.00 - This technical report defines the authorization framework for O-RAN elements using O-Auth2.0 and applies to the HTTP-based APIs used in the R1, O2, A1 and Y1 interfaces. The study has identified the security threats and key issues for OAuth2.0 framework.
  • O-RAN Study on Certificate Management Framework v1.00 - This technical report studies a comprehensive framework for certificate management across the O-RAN environment.

Figure 1: O-RAN Logical Architecture

WG1: Use Cases and Overall Architecture Work Group

O-RAN Slicing Architecture v12.00

This document describes O-RAN slicing related use cases, requirements and architecture. Along with requirements and a reference slicing architecture, slicing related impact to O-RAN functions and interfaces is also captured. This version has further updates related to O-RAN Drafting Rules (ODR) compliance, ETSI Publicly Available Specification (PAS) review readiness, and also addresses review comments related to O-RAN architecture terminology alignment.

O-RAN Use Cases Analysis Report v13.00

This document describes potential O-RAN use cases at a very high level, emphasizing how the use case is enabled by the O-RAN architecture along with basic input data expectations and resulting actions. This version includes a new use case (“Interference Optimization”) and some minor editorial corrections.

O-RAN Use Cases Detailed Specification v13.00

This document describes selected O-RAN use cases in further details to facilitate relevant O-RAN Work Groups to define requirements for associated O-RAN functions and interfaces. This version includes new sub use case additions to Shared O-RU use case and some minor editorial corrections.

O-RAN Architecture Description v11.00

The O-RAN Architecture Description document specifies the overall architecture of O-RAN. It describes all O-RAN architecture elements and relevant interfaces that connect them. This version clarifies that O-RAN Network Function (NF) has “O-RAN defined behaviors and interfaces” but “can also inherit and/or extend” a 3GPP NF. The “Cloudified NF” definition addressing deployment aspects is removed to keep the focus of this document on logical network view. The R1 interface and Near-RT RIC APIs are added to “Relevant Interfaces in O-RAN Architecture” clause. New text and figure are introduced to describe Service Based Architecture of Near-RT RIC. The Security Architecture clause is simplified by removing informative text and referring to relevant WG11 specifications. Finally, relevant clauses are updated to add testability, clarify that O-RAN does not conflict with 3GPP, and align with WG10 OAM architecture by representing O1 interface as an MnS (Management Service).

O-RAN Decoupled SMO TR v2.00

The objective of this Technical Report was to propose a decoupled SMO architecture to enable standardized interoperability in multi-vendor SMO deployments. Decoupled SMO TR analyzed and identified the set of capabilities that the SMO has to offer and structured them in SMO Services (SMOSs) in a Service Based Architecture approach. A set of SMOSs have been defined and the analysis pointed towards next normative steps to be pursued after the study. The Decoupled SMO architecture TR was initiated to address the original problem statements (per Introduction section in the TR) and hence enables SMO deployments that are suitable for brownfield, greenfield, and bluefield scenarios.

O-RAN SMO Intent Management TR v1.00

The SMO Intent Management TR introduces the exposure of the SMO services in a simplified form, RAN management via intents, to address the wide range of their applicability. This includes the various interactions within SMO management loops (closed, open), serving as a simplified method for management exposure of RAN services both externally and internally to other management or business systems.
The external exposure allows external management and business entities to interact with the SMO by expressing their requirements and goals for RAN instances in a simplified manner, without needing to be aware of all the details of the RAN models and the various types of management and orchestration interfaces design. An example of such external management service can be an E2E Service Management (SM) system that is tasked to create and maintain a 5G service that includes access/RAN, core, transport and cloud services needed.
Internally, different SMOS producers (in the SMO framework, or rApps) can use intents to interact with each other for different RAN management related tasks.
Using intents would simplify the interactions and minimize dependencies between the consuming and producing entities of the management service, e.g., E2E SM entity, or a BSS, and the O-RAN SMO. The simplified approach of the SMO NBI, SMOS exposure and R1 using intent-based management is beneficial to address these needs. The TR outlines use cases, the relevant best-in-class industry work done on intents management and identifies the next steps for the normative work after the study.

WG2: The Non-real-time RAN Intelligent Controller and A1 Interface Work Group

O-RAN A1 interface: General Aspects and Principles v3.02

This document specifies the general aspects and principles of the A1 interface. This version brings ETSI PAS related editorial enhancements and applying latest template.

O-RAN A1 interface: Use Cases and Requirements v1.02

This document describes use cases for the O-RAN A1 interface. This version brings editorial enhancement and applying latest template.

O-RAN A1 interface: Transport Protocol v3.01

This document describes the transport protocol of the O-RAN A1 interface. This version brings ETSI PAS related editorial enhancements of references in clause 7.

O-RAN A1 interface: Application Protocol v4.01

This document specifies the application protocol of the A1 interface. This version brings ETSI PAS related editorial enhancement and applying latest template.

O-RAN A1 interface specification: Type Definitions v7.00

This specification defines the data types for A1 Policies and A1 Enrichment Information in a reusable and extensible way. It allows new policy types to be created independently of the generic application protocol parts. This version brings ETSI PAS related editorial enhancements and extended description of packet delay and packet loss attributes and UE identifier options for ScopeIdentifier. It also updates to the latest JSON schema draft.

O-RAN A1 interface: Test Specification v4.00

This document specifies test cases for conformance testing and interoperability testing of the Non-RT RIC and the Near-RT RIC over the A1 interface. This version brings ETSI PAS related editorial enhancements, applying latest template and updating test cases applicability.

O-RAN Non-RT RIC Architecture v5.00

This document provides the technical specification for the Non-Real-Time RAN Intelligent Controller (Non-RT RIC) architecture. The main updates for this version spec include:

  • Add ML model related terms and AI/ML deployment services
  • Add rApp definitions and update rApp registration from SME to rApp management services
  • Align the DME type terminology with R1 specs
  • Align to the latest ODR template

O-RAN Non-RT RIC & A1 interface: Use Cases and Requirements v9.00

This document describes use cases for the O-RAN A1 interface. The main updates for this version spec includes:

  • Align to the latest ODR template
  • Addition of NES use cases:
    • MDT/Trace measurement metrics for Cell&Carrier switched Off/On
    • Advanced sleep mode
    • Policy-based RF channel reconfiguration

O-RAN R1 interface: General Aspects and Principles v7.00

The O-RAN R1GAP Specification summarizes the R1 interface specification objectives and specifies the principles and procedures related to the O-RAN R1 interface. This version brings:

  • Procedures for AI/ML workflow services.
  • Definition of the rApp instance and the AI/ML model.
  • Specifications of the AI/ML model identifier and the LCM of Model identifier.
  • DME type specification and the data type update to DME type
  • Updates of the Data type registration procedure, Query data type procedure, and A1 policy status change procedure.

O-RAN R1 interface: Use Cases and Requirements v6.00

This document describes use cases and requirements for the O-RAN R1 interface. This version brings:

  • AI/ML workflow services use cases and requirements
  • Additional A1 related services (A1 policy management services) use cases and requirements.
  • Update of the specification with “DME” type.
  • Update  of the data type registration use case and requirement.

O-RAN Transport Protocols for R1 Services v4.01

This document describes transport protocols for the O-RAN R1 interface services. Updated the specification to include minimum version of Kafka required on the Application layer.

O-RAN R1 interface: Application Protocols for R1 Services v4.00

This document contains a realization for the procedures identified in O-RAN R1 interface: General Aspects and Principles. This version brings:

  • Service events subscription API in SME services.
  • Data registration, Data discovery and Data access API in DME services.
  • Pre-release version of Configuration management API with read CM data operation.
  • Specifications of the Open API for Data registration, data discovery and Data access APIs.
  • Open API attributes profile for Service discovery and Service events subscription APIs from CAPIF 29.222 Specifications.

O-RAN Type Definitions for R1 Services v1.00

This document specifies the Type Definitions for R1 Services. It is part of a TS-family covering the R1 interface specifications.

WG3: The Near-real-time RAN Intelligent Controller and E2 Interface Workgroup

O-RAN Use Cases and Requirements v5.00

This document details the functional and non-functional requirements on Near-RT RIC and E2 interface from the O-RAN use cases under study in O-RAN WG3. This version of the specification adds the advanced sleep mode (ASM) use case as part of the energy saving WI and several ODR-related editorial changes.

O-RAN E2 General Aspects and Principles (E2GAP) v5.00

This document (E2GAP) together with (E2AP) describes the general architecture of Near-RT RIC and the main functions and procedures supported over the E2 interface, and the E2 application protocol of Near-RT RIC. This version of the specification adds Subscription audit procedure to request a list of currently active RIC subscriptions on the E2 Node.

O-RAN E2 Application Protocol (E2AP) v5.00

This document (E2AP) together with (E2GAP) describes the general architecture of Near-RT RIC and the main functions and procedures supported over the E2 interface, and the E2 application protocol of Near-RT RIC. This version of the specification adds Subscription audit procedure to request a list of currently active RIC subscriptions on the E2 Node.

O-RAN E2 Service Model (E2SM) v5.00

This document serves as the overall framework for the set of specialized E2SMs, each of which is dedicated to a specific RAN function. This document also includes the common information elements used across the specialized E2SMs. This version of the specification includes “partial UE ID” data structure to be used with, e.g., RIC Query.

O-RAN E2 Service Model (E2SM), RAN Control v5.00

This document specifies the capabilities exposed over E2 interface to enable efficient control of RAN, including radio bear control, radio access control, connected mode mobility, etc. This version of the document completes Control Style 8, adds use of UE identifiers for RIC query as well as clarifications on RAN function definition and UE ID.

O-RAN E2 Service Model (E2SM) Cell Configuration and Control v3.00

This document aims at exposing configuration and control related processes on a cell-level basis. This version of the document adds Energy saving report and control for cell/carrier switch on/off functionality.

O-RAN Y1 interface: General Aspects and Principles v1.00

The document specifies the general aspects and principles (incl. services, supported information types, protocol structure) of the Y1 interface, which connects the Near-RT RIC with an authorized Y1 consumer. This version of the document supports exposure of Radio Analytics Information (RAI).

O-RAN Y1 interface: Application Protocol v1.00

The document specifies the application protocols (API definition, solution sets) of the Y1 services. This version of the document supports exposure of Radio Analytics Information (RAI).

O-RAN Y1 interface: Type Definitions v1.00

The document specifies data types that are applicable on the Y1 interface. This version of the document supports exposure of Radio Analytics Information (RAI).

WG4: The Open Fronthaul Interfaces Work Group

O-RAN Control, User and Synchronization Plane Specification v14.00

This document specifies the control plane, user plane and synchronization plane protocols used over the fronthaul interface. The summary of updates for this version is below.

Introduction of new functionalities:

  • Addition of PRB block mode in Section Extension 23
  • Addition of bundleOffset in Section Extension 11
  • Updates to address new network limits of ITU-T G.8271.1 for LLS-C3 topology
  • Mapping of ueId to a set of channel information and number of ueId values

Performance counters for Shared Cell

Clarifications, including:

  • Usage of Section Extension 6 and Section Extension 12 for sending non-contiguous PRB allocation in U-plane
  • O-RU syncE tolerance
  • Terminology for acknowledgement and negative acknowledgement (ACK/NACK)
  • Section Extension 10 operation
  • Range of sectionId for coupling via frequency and time with priorities (optimized)
  • Sending high priority sections in coupling via frequency and time with priorities (optimized)
  • Phase compensation requirements

Corrections, including:

  • Bit padding requirement for Modulation Compression + selective RE sending with masks in section header
  • Example on application-level fragmentation
  • Uplink delay relationships in Table 4.4.3-3
  • Missing clause for tdBeamNum
  • References and clause numbering update for Node behavior in LLS-C1 and LLS-C2 topology
  • Implementation of performance counters per O-RU

Editorial changes and fixes of typing errors.

O-RAN Management Plane Specification v14.00

This specification defines the Management Plane for the O-RAN Open Fronthaul based on the selected lower-layer split point as defined within the Open Fronthaul Control Plane, User Plane and Synchronization Plane specification. The summary of updates for this version is below.

Addition of new functionality, including:

  • New alarm for Rx signal quality
  • New feature SE23-PRB-BLOCK-MODE-SUPPORT
  • Performance Counter for Shared Cell
  • Energy saving by Data Layer Control
  • bundleOffset in SE 11

Bug fixes and clarifications to V13.00 including:

  • Reformat table 6.9.3-1
  • Align Table B.1-1 with YANG Model
  • Clarify the information which software slot is active is reset persistent
  • Clarification for TAC level energy saving
  • Model name and namespace clarifications
  • C/U Plane Monitoring Clarification
  • Fault management clarifications
  • Adding iet-netconf to imported folder

WG5: The Open F1/W1/E1/X2/Xn Interface Work Group

O-RAN O1 Interface specification for O-DU v9.00

The scope of O1 interface for O-DU spec is to describe the supported management features including “start-up” installation, PNF software management, provisioning management, performance management, fault management and file management towards the O-DU via O1 interface. This spec also includes O-DU related performance counters, information models, and data models.

This version brings:

  • Addition of Attributes definitions table
  • Annex A. 11.30.1 Fixed UL to DL in Condition section
  • Added 3GPP Conformance testing clause and Annex E
  • Updates to counters defined in A.1.14, A.1.15, A.11.31, A.11.32, A.11.33, A.11.34, A.11.35, A.11.37, A.11.38, A.11.39
  • Addition of counters in A.2.23, A.2.24, A.4.5, A.4.6, A.9.7, A.12.10
  • Editorial updates according to comments
  • Network energy saving overview in Annex F
  • Added Information Models for NES

O-RAN O1 Interface specification for O-CU-UP and O-CU-CP v7.00

The scope of O1 interface for O-CU spec is to describe the supported management features including “start-up” installation, PNF software management, provisioning management, performance management, fault management and file management towards the O-CU-CP and O-CU-UP via O1 interface. This spec also includes O-CU related performance counters and information models.

This version brings:

  • Removed description of RPC: list-available-files
  • Added O-CU-CP QoS IM
  • Clarification on counters defined in A.10,1 to A.10.12, A.11.1 to A.11.8, A14.1 to A14.12, A.15.1 to A.15.20, A.16.3 to A.16.5, A.19.2 to A.19.3.
  • Addition of new counters in A.1.11, A.1.12, A.3.3, A.3.4, A.11.9 to A.11.15, A.11.21 to A.11.31, A.16.6 to A.16.10, A.17.3 to A.17.11, A.18.9 to A.18.12, A.19.4 to A.19.6, A.20.1 to A.20.13, A.21.1 to A.21.6.
  • Minor editorial changes

O-RAN NR U-plane profile v6.00

The scope of U-Plane profile spec is to further clarify (i.e. profile) for each RAN node the expected behavior (still within the scope of the 3GPP specifications), e.g. usage of IEs for each use case, general behavior of each node, etc. U-Plane profile specification contains profiles of X2/F1/Xn U-Plane procedure for EN-DC use cases, NR-SA use cases and NR-DC use cases. Main updates compared to version 05 are:

  • Support of new features (VoNR and new Flow Control feature for Dual Connectivity scenarios)
  • Document updated according to current TS template

O-RAN Interoperability Test Specification (IOT) v9.00

The scope of WG5 IOT spec is to specify interoperability tests for RAN Node from different vendors implemented in accordance to the WG5 C-plane and U-plane profiles in the specification WG5.C.1. and WG5.U.0, respectively.

Main Updates compared to v8.00:

  • Some 90+ test cases updated and aligned with regards to the user plane handling for respective procedures and use cases
  • Updated definition of the Device under Test (DUT) to avoid misalignments with other WG/FG
  • Updates and clarification of testing tool options

WG6: The Cloudification and Orchestration Work Group

O-RAN Cloud Architecture and Deployment Scenarios for O-RAN Virtualized RAN v6.00

This Technical Report identifies and examines different scenarios and use cases for O-RAN deployments of Network Functionality into Cloud Platforms, O-RAN Cloudified NFs and O-RAN Physical NFs. This updated version adds material on O-Cloud networking concepts.

O-RAN Cloudification and Orchestration Use Cases and Requirements for O-RAN Virtualized RAN v9.00

This specification defines cloudification and orchestration use cases and requirements for O-RAN. This updated version contains additional use cases for FM, PM and O-Cloud Backup.

O-RAN O2 Interface General Aspects and Principles v6.00

This specification defines O-RAN O-Cloud functions and protocols for the O-RAN O2 interface. This updated version contains added material on FM, PM, Networking and Provisioning concepts.

O-RAN O2ims Interface Specification v5.00

This specification defines O-RAN O-Cloud IMS interface functions and protocols for the O-RAN O2 interface. This updated version contains added Alarm and PM Dictionary discovery as part of inventory services, and PM service models and FM/Alarm service models.

O-RAN O2dms Interface Specification: Profile based on ETSI NFV Protocol and Data Models v6.00

This TS specifies the O-RAN O-Cloud’s DMS interface protocol and data model based on the ETSI NFV solutions. This updated version contains added flows and API details for FM and PM.

O-RAN Acceleration Abstraction Layer General Aspects and Principles v8.00

This specification defines O-RAN O-Cloud hardware accelerator interface functions and protocols for the O-RAN AAL interface. This version contains various corrections and updates.

O-RAN Acceleration Abstraction Layer Common API v6.00

This specification focuses on the Common API related to common aspects of accelerator abstraction from an administration and AAL Application perspective. This version includes the addition of HW Accelerator Manager IM, registration and reporting extensions.

O-RAN Cloud Conformance Test Specification v2.00

This specification defines tests for O-Cloud conformance to WG6 specifications. This version contains minor updates and corrections.

O-RAN O2 IMS K8s Technical Report v1.00

This new Technical Report provides a study of the applicability of a K8s declarative interface for O-RAN O2 IMS interface, with proposals for IMS future work to support a K8s-oriented API.

O-RAN Application Service Descriptor specification v1.00

This new TS defines an O-RAN Application Services Descriptor (ASD) for potential use in application package.

O-RAN O-Cloud Interoperability Test (IOT) Specification v1.00

This document provides the initial O-Cloud IoT specification, and includes definition of the interoperability testing methodology and a set of tests for the O-Cloud Notification API.

WG7: White-box Hardware Work Group

O-RAN Indoor Picocell Hardware Architecture and Requirement (FR1 Only) Specification v2.00

This specification describes the Architecture and Requirements for Indoor Picocell deployment scenarios as specified in O-RAN Deployment Scenarios and Base Station Classes For White Box Hardware. This version adds support for All-in-One designs.

WG8: Stack Reference Design Work Group

O-RAN Base Station O-DU and O-CU Software Architecture and APIs v11.00

This specification defines the O-CU and O-DU software architecture, functional blocks, and API definitions. This version brings Updates to Layer 1 processing blocks for network energy savings, corrections and additions to O-DU APIs.

O-RAN Stack Interoperability Test Specification v9.00

This specification defines interoperability test cases for O-CU and O-DU. Updates to test cases and revamp of test cases.

WG9: Open X-haul Transport Work Group

O-RAN WDM-based Fronthaul Transport v4.00

This document is intended to describe best practices for O-RAN fronthaul transport based on WDM technology. Version 4.0 includes updates on smart tunable optics with reference to respective MSA, and other minor editorial updates. They include specs and charts through the document to ensure alignment in recent specification activities.

O-RAN Xhaul Packet Switched Architectures and Solutions v7.00

The document is intended to describe best practices for O-RAN transport based on end-to-end packet switching technology. Version 7.0 updates references, as required (added 3GPP references related to certificate management, added IETF reference related to 5G transport slicing). It also includes updates in section 17.4 (IEEE 802.1X authentication towards Computes and O-Cloud-Gateways; additional section about certificate management)

WG10: OAM Work Group

O-RAN Operations and Maintenance Interface Specification v12.00

This document specifies management services for the O-RAN O1 interface and includes requirements, notifications and protocols. Summary of the changes since the previous version:

  • Push-based file reporting clarification
  • Fixed PM Use Cases reference
  • Update of 3GPP referenced specifications versioning
  • SBMA terminology clean-up
  • Align Netconf server behavior with 3GPP TS 28.532
  • Security requirements alignment
  • Heartbeat management capability clarification

O-RAN Information Model and Data Models Specification v7.00

The O-RAN Information Model and Data Models document specifies the Information Model and the Data Models that are foundational for O-RAN’s model-driven architecture and for the functions carried out over O-RAN interfaces. Summary of the changes since the previous version:

  • ETSI PAS Alignment
  • References update

O-RAN Topology Exposure and Inventory Management Services Use Cases and Requirement Specification v2.00

The document leverages the existing content in various O-RAN specifications and specifies new use cases for Topology Exposure and Inventory Management. For each use case, the document describes the motivation, resources, processes involved and the data requirements. Summary of the changes since the previous version:

  • Updated the use case numbering clause
  • O-Cloud Provisioning use case
  • O-RAN Network Planning and Provisioning use case
  • R1 Alarm Query use case
  • NF Deployment Homing use case
  • Topology based alarm correlation use case
  • Editorial changes across the specification and to the O-RAN Network Provisioning use case
  • Termination NF Deployment use case

O-RAN Operations and Maintenance Architecture v11.00

The O-RAN OAM Architecture identifies management services, functions and interfaces supported in O-RAN, including the interworking between SMO and O-RAN O-Cloud components. Requirements are derived from end-to-end OAM use cases, including the initial provisioning of O-RAN service across VNFs and PNFs and the collection of measurement data. Summary of the changes since the previous version:

  • Update “MnS Provider” to “MnS Producer”
  • Correction of references towards O1 specification

WG11: Security Work group

O-RAN Security Requirements Specification v8.0

This document outlines security requirements and controls for O-RAN defined interfaces and network functions. In version 8 of the technical specifications, new security requirements and controls have been introduced for O-Cloud logging, O-Cloud instance ID, O-Cloud Time Synchronization, NFO, FOCOM, xApp Registration Procedure, rAppIDs, and App decommissioning. Additionally, there are new security requirements for Preventing Tampering of Log Data and preventing (D)DoS attacks on Security Log Data management. Further, there are additional security controls addressing DoS/DDoS mitigation, Acceleration Abstraction Layer (AAL), and User Management Requirements for Cloud Platform Management. New security mechanisms are defined for Y1 and E2 interfaces, along with modifications to security requirements for the O1 interface and Common Application Lifecycle Management.

O-RAN Security Protocols Specifications v8.00

This document provides security protocol specifications for an O-RAN compliant implementation. In Version 08.00 Secure file transfer protocols have been added, and an update on no root remote login with SSH. The protocol ssh-ed448 has been changed to optional and additional reference on SSH has been added.

O-RAN Security Test Specifications v6.00

These specifications validate the proper implementation of security requirements and protocols, emulate security attacks, and validate the effectiveness of security mitigation methods. Several new change requests were added in version 6.0. These include Security Protocol & APIs Validation, Common Network Security Tests, System Logging, SBOM, O-RAN interfaces testing, O-Cloud Testing and End-to-end security test cases. Alignment for ETSI PAS and with GSMA guidelines has been included also in this version.

O-RAN Security Threat Modeling and Risk Assessment 2.00

O-RAN Security Threat Modeling and Risk Assessment document identifies the various assets that are at risk, outlines the potential security threats that O-RAN system may face, along with security principles on how to mitigate these risks. The report then evaluates the likelihood and potential impact of the identified threats on the O-RAN system.

In Version 2 of the document, new threats specifically targeting the Non-RT RIC and the O-Cloud instance ID have been introduced. This version not only acknowledges these new threats but also includes a detailed risk assessment for each. Additionally, Version 2 introduces a new security principle focused on the secure management of the O-Cloud ID, underscoring the evolving nature of threat landscapes and the necessity for continuous adaptation in security practices.

O-RAN Study on Security for Application Lifecycle Management v3.00

This technical report considers security of O-RAN applications during their lifecycle phases of development, onboarding, and operation. O-RAN applications in the scope of the technical report include VNFs/CNFs as well as software for physical network functions. The report presents key issues developed from identified threats and proposes solutions in order to derive security requirements for technical specifications. This version updates the technical report with content for rAppID abuse, application registration and application decommissioning.

O-RAN Study on Security Log Management v4.00

This technical report considers the security log management as far as it applies to entities defined in the O-RAN architecture. The study analyzes a list of key issues on Security logs contents (payload), Security logs transfer mechanisms and Security logs formats/schemas and proposes solutions in order to derive security requirements, intended to be part of O-RAN security related specifications.

O-RAN Study on Security for Near Real Time RIC and xApps v5.00

This technical report considers the security aspects of the Near-RT RIC platform and xApps, as well as the associated network and management interfaces (E2, A1, O1) and APIs. The study analyzes a list of key issues in the Near-RT RIC overall architecture and proposes solutions in order to derive security requirements.

O-RAN Study on Security for O-Cloud v5.00

The O-Cloud security technical report analyzes the security of O-Cloud components and interfaces. It includes a risk assessment of the cloud deployment models (Private, Community, Public and Hybrid), identifies the assets that need to be protected, identifies potential security risks and vulnerabilities, and proposes recommendations and best practices for reducing risks and improving the security of O-Cloud. The identified assets, threats and recommendations are intended to be part of O-RAN security related specifications.
With the release of Version 5, the report has expanded its scope to include specific threats related to the O-Cloud instance ID. This latest version not only recognizes these new threats but also provides a comprehensive list of security recommendations specifically tailored for the secure management of the O-Cloud ID.

O-RAN Study on O-RU Centralized User Management v1.00

This technical report is the result of a study on the use of centralized user management on the O-RU. The report contains identified key issues, threats and proposed mitigations.

O-RAN Study on Security for Service Management and Orchestration (SMO) v3.00

This technical report documents a security analysis for the SMO. The TR provides assets, threats, risk scoring, and recommended security controls across 3 threat groups: SMO, O2 interface, and External Interfaces. Threat analysis is based upon the STRIDE model and risk scoring is based upon likelihood and impact. Recommended security controls were used to form normative SMO security requirements.
Updates were made to SMO Security Analysis TR to include Decoupled SMO and RAN-Core Data Sharing.

O-RAN Study on Security for Shared O-RU (SharedORU) v4.00

This technical report documents a security analysis for the Shared O-RU with consideration of each of the 5 architectural options. The TR provides assets, threats, risk scoring, and recommended security controls across 6 threat groups. Threat analysis is based upon the STRIDE model and risk scoring is based upon likelihood and impact. Recommended security controls were used to form normative Shared O-RU security requirements. Updates were made to Shared O-RU Security Analysis TR to include Resiliency use case.

O-RAN OAuth2.0 Security v1.00

This technical report defines the authorization framework for O-RAN elements using O-Auth2.0 and applies to the HTTP-based APIs used in the R1, O2, A1 and Y1 interfaces. The study has identified the security threats and key issues for OAuth2.0 framework.

O-RAN Study on Certificate Management Framework v1.00

This technical report studies a comprehensive framework for certificate management across the O-RAN environment.

TIFG: Testing and Integration Focus Work Group

O-RAN End-to-end Test Specification v5.00

This test specification is focused on validating the end-to-end system functionality, performance, and key features of the O-RAN system as a black box. For version 5, prepares the specification for the ETSI PAS process. Changes from previous version:

  • Changes to comply with ODR in preparation for ETSI PAS
  • Removed Security Test chapter and moved it to WG11 Security Test Specification

O-RAN Certification and Badging Processes and Procedures v8.00

This document describes the certification and badging processes and associated detailed technical procedures for the Open Testing and Integration Centres (OTIC) and various other testing entities.

Objectives and scope:

  • Alignment of E2E badging and related security testing requirement after end-to-end security test cases are moved to WG11 Security Test Spec

Changes from previous version:

  • Removal of reference documents not quoted
  • Clarification on End-to-end Badge after mandatory end-to-end security test cases are moved to WG11 Security Test Spec