XTRUST-6G

This pilot examines the security of O-RAN architecture and virtualized 6G infrastructures, addressing challenges such as securing cloud and edge applications, preventing lateral movement of attackers, safeguarding software supply chains, and mitigating denial-of-service (DoS) attacks. The goal is to ensure comprehensive protection for the virtualized 6G infrastructure in a dynamic, highly distributed environment. Pilot 5 aims to test the XTRUST-6G components on the general O-RAN architecture with several scenarios that will be based on, and extend as needed, the O-RAN threat model; this includes the fronthaul, right after the O-RAN radio unit (O-RU), up to the higher-level functions of the SMO framework. This pilot ensures that no fundamental cyber-security requirements of O-RAN systems, no matter how basic, are left outside the scope of XTRUST-6G. The major patterns are: exploitation of cloud/edge application vulnerabilities, attacker’s lateral movement, insecure software development practices (leading to further exploitable application vulnerabilities), and DoS attack opportunities considered from multiple points (both internal and external) of the O-RAN system.