A Multi-Layered Zero Trust Microsegmentation Solution for Cloud-Native 5G & Beyond Networks

Zero Trust (ZT) is poised as a promising paradigm to effectively deal with the envisioned security risks of cloud-native 5G and beyond (B5G) architectures. However, integrating a ZT security model into B5G is still in its nascent stages, with most proposals remaining largely theoretical or limited to a single domain. This paper presents THAALOUB, a novel ZT framework that empowers 3GPP-compliant, end-to-end ZT security in cloud-native B5G networks. The framework leverages the advanced security features of Service Mesh and Container Network Interface (CNI) technologies to enable a multi-layered ZT microsegmentation security model. Moreover, it adopts an intent-based access control approach to foster proactive ZT security management. The experimental results show THAALOUB’s high effectiveness in enhancing B5G security stance with minimal impact on latency and resource usage.