Tuesday, March 12, 2019

Cloud Native Computing momentum continues to build

The Cloud Native Computing Foundation (CNCF), which sustains and integrates open source technologies like Kubernetes and Prometheus, recently added 59 new members bringing its total to 375 supporting companies and organizations.

“Crossing the 375 mark is an incredible milestone for the Foundation, especially with more than 75 organizations in our end user community,” said Dan Kohn, executive director of Cloud Native Computing Foundation. “Companies like NVIDIA, MemSQL and Mattermost are reaping real value from cloud native technologies, and we only expect this to accelerate as these technologies mature and solidify their place in the market. We remain impressed by the technical innovation and growth in the ecosystem and are happy to work with our members to support the thriving cloud native community.”

Two upcoming events:

  • KubeCon + CloudNativeCon EU from May 20-23 in Barcelona and

KubeCon + CloudNativeCon + Open Source Summit in China from June 24-26 in Shanghai

European Parliament adopts Cybersecurity certification act

The European Parliament voted to adopt an EU Cybersecurity Act that establishes the first EU-wide cybersecurity certification scheme to ensure that certified products, processes and services sold in EU countries meet cybersecurity standards. MEPs also expressed their concern about Chinese IT in the EU, especially allegations that 5G equipment may have embedded backdoors that would allow Chinese manufacturers and authorities to have unauthorised access to private and personal data and telecommunications in the EU.

An official statement expresses concern that third-country equipment vendors might present a security risk for the EU, due to the laws of their country of origin obliging all enterprises to cooperate with the state in safeguarding a very broad definition of national security also outside their own country. In particular, the Chinese state security laws have triggered reactions in various countries, ranging from security assessments to outright bans.

Linux Foundation's CommunityBridge offers funding, security, mentoring, diversity

The Linux Foundation is launching CommunityBridge – a new platform to help open source developers to advance sustainability, security, and diversity as they grow.

The initial launch of CommunityBridge offers open source communities early access to three critical tools:

  • CommunityBridge Funding: enabling developers to transparently raise and spend funding;
  • CommunityBridge Security: providing transparency into potential vulnerabilities and fixes; and
  • CommunityBridge People: enabling easy connections of mentors and prospective mentees interested in getting involved in projects and advancing diversity.

“While large open source projects are often well-resourced, many smaller projects require more funds, talent, security, diversity, and resources to thrive,” said Jim Zemlin, executive director of the Linux Foundation. “CommunityBridge is the platform to solve critical challenges and fuel open source innovation and sustainability by empowering people — all in one place.”

http://communitybridge.org

Open19 releases specs for data center racks

The Open19 Foundation has just published its Open19 Project Specifications for any 19” rack environment for servers, storage, and networking.

“I am pleased to make the Open19 Project Specifications available to the public,” said Open19 Foundation President Yuval Bachar. “We will see widespread adoption of the Open19 standard in 2019, and its public release means anyone can develop solutions based upon this technology.”

The Open19 Project defines a cross-industry common server form factor, creating a flexible and economic data center and edge solutions for operators of all sizes. It includes three main common elements — brick cage, power shelf, and network switch — and supports four form factors — brick, double wide brick, double high half-width brick, and double high double-wide brick. Currently, seven Open19 Foundation member companies have developed a total of 17 solutions that support the standard, with more products to be added soon.

Open19 Foundation founding member company LinkedIn contributed the specification to the Foundation last year, and it was previously only available to Foundation members. Learn more and download the specifications on the Open19 Foundation website.

http://www.open19.org

Calista Redmond appointed CEO of RISC-V Foundation

Calista Redmond has been appointed Chief Executive Officer (CEO) of the RISC-V Foundation, which promotes the adoption and implementation of the free and open RISC-V instruction set architecture (ISA).

Redmond brings more than 20 years of senior-level management and alliance experience, including as Vice President of IBM Z Ecosystem, where she was instrumental in growing the IBM Z Ecosystem. During her 12 years at IBM, she led strategic relationships with chip, hardware, and software providers, system integrators, business partners, clients, and developers, as well as fostered broader industry visibility and engagement.  Redmond was instrumental in the strategic formation of OpenPOWER as the IBM Director of OpenPOWER Global Alliances as well as elected President of the OpenPOWER Foundation in 2016.

“I’ve always understood the potential short- and long-term impact of the RISC-V license-free ISA on the open source community. Having spent a lot of my career working in the open source ecosystem, I’m excited to help RISC-V grow and deliver on  the Foundation’s mission of paving the way for the next 50 years of computing design and innovation,” said Redmond, CEO of the RISC-V Foundation. “From its inception in 2015 until now, the RISC-V Foundation has grown tremendously. I’m ready to leverage that momentum to expand the already impressive RISC-V ecosystem.”

The RISC-V Foundation, which was founded in 2015, now comprises more than 235 members building the first open, collaborative community of software and hardware innovators powering a new era of processor innovation.

FLY-LION3 subsea cable reaches Mayotte

The 400 km-long FLY-LION3 subsea cable has reached the island of Mayotte, an overseas department and region of France located in the Indian Ocean.

FLY-LION3 has landing stations in Kaweni (Mamoudzou) and Moroni. It will also link to existing cables LION2 and EASSy, offering a direct connection to the east coast of Africa.

Orange Marine, a wholly owned subsidiary of the Orange group, is responsible for laying the cable.

First edge infrastructure dev platform for 7nm Arm Neoverse

Arm, Cadence Design Systems, and Xilinx introduced a development platform cloud-to-edge infrastructure based on the new Arm Neoverse N1.

The Neoverse N1 System Development Platform (SDP) is based on TSMC’s 7nm FinFET process technology and is also the industry’s first 7nm infrastructure development platform enabling asymmetrical compute acceleration via the CCIX interconnect architecture/

The joint solution is available to hardware and software developers for hardware prototyping, software development, system validation, and performance profiling/tuning. It includes Cadence IP for CCIX, PCI Express (PCIe) Gen 4 and DDR4 PHY IP.

The SDP includes a Neoverse N1-based SoC with an operating frequency of up to 3GHz, full-sized caches and generous amounts of memory bandwidth with the latest optimized system IP. The robustness of the SDP is ideal for development, debug, performance optimization and workload analysis on a wide range of applications including those for machine learning (ML), artificial intelligence (AI) and data analytics.

“The new Neoverse platforms deliver the performance and efficiency required to enable the cloud-to-edge infrastructure for a world with a trillion connected devices. Our ongoing SDP collaboration with Cadence, TSMC, and Xilinx truly enables developers with the system development tools necessary to innovate and deliver optimized Neoverse-based designs,” stated Drew Henry, senior vice president and general manager, Infrastructure Line of Business, Arm.

Sequans teams with Lockheed Martin on LTE satellites

Sequans Communications is working with Lockheed Martin to develop new 4G LTE for satellite technologies for worldwide deployment. The idea is for LTE end user devices to connect directly to geostationary satellites.

“Sequans has expertise adapting LTE technology for special purposes such as this one,” said Scott Landis, a director at Lockheed Martin. “Sequans engineers modified their existing LTE chips to enable a new LTE-to-satellite communication specification developed by Lockheed Martin. LTE to satellite represents an important breakthrough in mobility and connectivity.”

“The work we are doing with Lockheed Martin to integrate LTE with satellite represents a significant evolution as we modify our LTE chips to take advantage of the huge satellite opportunity now developing for M2M and IoT applications,” Georges Karam, Sequans CEO. “Enabling the LTE modem to speak to satellite networks as simply and as easily as possible will have a major impact on handling the huge potential volume of broadband and IoT applications that require space-based, ubiquitous communications, such as connected cars, shipping, and navigation.”

http://www.sequans.com

Iskratel combines GPON Home Gateway with mesh Wi-Fi

Iskratel introduced its Innbox G78 GPON Home Gateway with mesh Wi-Fi capabilities based on multi-user MIMO (MU-MIMO).

The new solution, which provides hardware support for Wi-Fi Alliance’s Easy Mesh, has been launched alongside Iskratel’s new mesh Wi-Fi solution. This further addresses inadequate home broadband and uses a cloud-based TR-069 centralised management system to provide operators such as one of Croatia’s leading fixed broadband provider Optima Telekom with remote control and configuration of customer premises equipment (CPE).

“We are very pleased to launch our two new products which aim to address sub-standard Wi-Fi performance in consumers’ homes,” said Mitja Golja, Head of Solutions for Broadband Networks at Iskratel. “This will become increasingly important for operators as end users increasingly access bandwidth-hungry services at home and any drops or lags in connectivity become unacceptable. Our new solutions will support operators in meeting these expectations, enabling simplified network management and reduced operational costs.”

Motorola Solutions appoints Saptharishi as CTO

Motorola Solutions named Dr. Mahesh Saptharishi as its new chief technology officer.

Saptharishi previously spent five years as CTO for Avigilon, a Motorola Solutions company and a leading provider of video and analytics solutions. He earned a doctorate degree in machine learning from Carnegie Mellon University and has also authored numerous scientific publications, articles and patents.

Monday, March 11, 2019

With Mellanox, NVIDIA targets full compute/network/storage stack

NVIDIA agreed to acquire Mellanox in a deal valued at approximately $6.9 billion.

The merger targets data centers in general and the high-performance computing (HPC) market in particular. Together, NVIDIA’s computing platform and Mellanox’s interconnects power over 250 of the world’s TOP500 supercomputers and have as customers every major cloud service provider and computer maker. Mellanox pioneered the InfiniBand interconnect technology, which along with its high-speed Ethernet products is now used in over half of the world’s fastest supercomputers and in many leading hyperscale datacenters.

NVIDIA said the acquired assets enables it to data center-scale workloads across the entire computing, networking and storage stack to achieve higher performance, greater utilization and lower operating cost for customers.

“The emergence of AI and data science, as well as billions of simultaneous computer users, is fueling skyrocketing demand on the world’s datacenters,” said Jensen Huang, founder and CEO of NVIDIA. “Addressing this demand will require holistic architectures that connect vast numbers of fast computing nodes over intelligent networking fabrics to form a giant datacenter-scale compute engine.

“We share the same vision for accelerated computing as NVIDIA,” said Eyal Waldman, founder and CEO of Mellanox. “Combining our two companies comes as a natural extension of our longstanding partnership and is a great fit given our common performance-driven cultures. This combination will foster the creation of powerful technology and fantastic opportunities for our people.”

NVIDIA also promised to continue investing in Israel, where Mellanox is based.

The companies expect to close the deal by the end of 2019.




F5 to acquire NGINX for $670 million -- an open source load balancer

F5 Networks agreed to acquire privately-held NGINX for approximately $670 million.

NGINX, which is based in San Francisco, offers an open source, web server that can be used as a reverse proxy, load balancer, mail proxy and HTTP cache. The solution is widely deployed on websites. The first version of NGINX was released in 2004. Investors in NGINX include e.ventures, Goldman Sachs, Index Ventures, MSD Capital, NEA, Runa Capital and Telstra.

F5 plans to enhance NGINX’s current offerings with F5 security solutions and will integrate F5 cloud-native innovations with NGINX’s software load balancing technology, accelerating F5’s time to market of application services for modern, containerized applications. F5 will also leverage its global sales force, channel infrastructure, and partner ecosystem to scale NGINX selling opportunities to the enterprise.

F5 intends to maintain the NGINX brand. F5 also said open source is a core part of its’s multi-cloud strategy.

“F5’s acquisition of NGINX strengthens our growth trajectory by accelerating our software and multi-cloud transformation,” said François Locoh-Donou, President & CEO of F5. “By bringing F5’s world-class application security and rich application services portfolio for improving performance, availability, and management together with NGINX’s leading software application delivery and API management solutions, unparalleled credibility and brand recognition in the DevOps community, and massive open source user base, we bridge the divide between NetOps and DevOps with consistent application services across an enterprise’s multi-cloud environment.”

“NGINX and F5 share the same mission and vision. We both believe applications are at the heart of driving digital transformation. And we both believe that an end-to-end application infrastructure—one that spans from code to customer—is needed to deliver apps across a multi-cloud environment,” said Gus Robertson, CEO of NGINX, Inc. “I’m excited to continue this journey by adding the power of NGINX’s open source innovation to F5’s ADC leadership and enterprise reach. F5 gains depth with solutions designed for DevOps, while NGINX gains breadth with access to tens of thousands of customers and partners.”

Linux Foundation backs CHIPS Alliance project

The Linux Foundation will host the CHIPS Alliance project. which curates high-quality open source code relevant to the design of silicon devices for mobile, computing, consumer electronics, and Internet of Things (IoT) applications.

CHIPS Alliance backers include Esperanto Technologies, Google, SiFive and Western Digital, all of which are committed to both open source hardware and continued momentum behind the free and open RISC-V architecture.

"Open collaboration has repeatedly proven to help industries accelerate time to market, achieve long-term maintainability, and create de facto standards," said Mike Dolan, vice president of strategic programs, the Linux Foundation.  "The same collaboration model applies to the hardware in a system, just as it does to software components. We are eager to host the CHIPS Alliance and invite more organizations to join the initiative to help propel collaborative innovation within the CPU and SoC markets."

"As new workloads surface every day, we need new silicon designs in order to optimize processing requirements," said Martin Fink, interim CEO of RISC-V Foundation and executive vice president and CTO of Western Digital. "Today's legacy general purpose architectures are, in some cases, decades old.  With the creation of the CHIPS Alliance, we are expecting to fast-track silicon innovation through the open source community."

The CHIPS Alliance also announced a few planned contributions:

Google -- planning to contribute a Universal Verification Methodology (UVM)-based instruction stream generator environment for RISC-V cores. The environment provides configurable, highly stressful instruction sequences that can verify architectural and micro-architectural corner-cases of designs.

Western Digital -- planning to contribute their high performance, 9-stage, dual issue, 32-bit SweRV Core, together with a test bench, and high performance SweRV Instruction set simulator. Additional contribution will be specification and early implementations of OmniXtend cache coherence protocol.

SiFive -- was founded by the inventors of the free and open RISC-V Instruction Set Architecture, who, together with their colleagues at UC Berkeley, developed the first opensource RISC-V microprocessors and a new opensource hardware description language Chisel. This initial work at UC Berkeley also developed the RocketChip SoC generator, including the initial version of the TileLink coherent interconnect fabric.

http://www.chipsalliance.org

Seaborn interconnects Seabras-1 cable with DE-CIX New York

Seaborn Networks has established an interconnection to DE-CIX New York from its Seabras-1 subsea cable.

Seabras-1 is a fully operational 6-fiber pair, 72Tbps submarine cable system between Brazil and the U.S. offering the lowest latency path between São Paulo and the NY metro area.

Seaborn’s interconnection to DE-CIX New York provides Seabras-1 customers in South America with the ability to reach over 200 networks within the U.S. without incurring long provisioning intervals and additional costs such as cross connect fees.

Customers will also have Direct access to DE-CIX Frankfurt and Marseille via GlobePEER Remote. There is no additional cross connect fees to reach any DE-CIX customer globally.

“I am thrilled that DE-CIX’s unique solution is now available to South American networks over Seabras-1’s lowest latency network to New York,” comments Ed d'Agostino, General Manager, DE-CIX North America. “Through Seaborn, DE-CIX is readily accessible throughout Brazil bringing world-class connectivity between North America and South America and Europe.”

“This partnership with DE-CIX provides Brazil’s IP networks with one-stop-shop, remote IPX access to DE-CIX’s most compelling interconnect locations, leveraging the scale and agility of Seaborn’s Seabras-1 system,” adds Larry Schwartz, Seaborn’s CEO. “In this new arrangement, Seaborn is pleased to continue supporting the global expansion initiatives of Brazil’s ISP community.”

http://www.seabornnetworks.com
http://www.de-cix.net

Molex and Innovium to show optimized 12.8T

At OCP Summit 2019 later this week in San Jose, California, Molex and Innovium will host a joint demonstration combining Molex’s BiPass I/O technology with Innovium’s 12.8Tbps TERALYNX Switch ASIC.

The companies say the new switch system design offers better signal integrity, thermal management and simple manufacturability, providing the end customer a highly robust and resilient system.

Molex's low-insertion-loss, BiPass I/O technology serves as a PCB alternative to enable efficient and reliable implementation of 56 and 112 Gbps PAM-4 protocols. The BiPass cable assembly routes signals directly from an ASIC chip in a switch to the server front-panel I/O without having to go through the printed circuit board between them. Because the ASIC can be positioned farther back in the box, the BiPass solution allows for vertical orientation, providing greater port density. For further cost benefits, the BiPass solution reduces the number of board layers and eliminate the power cost and consumption of re-timers. From a thermal management perspective, the BiPass solution uses dual heatsinks, on the top and bottom of module, making cooling of 20W modules possible.

“By leveraging the combined capabilities of Innovium’s TERALYNX 12.8Tbps switch ASIC and Molex’s BiPass I/O technology, we are highlighting better performance and more operational efficiencies for our customer’s evolving data center needs,” said Chris Kapuscinski, global product manager, Molex. “The BiPass and Innovium demo shows that even at 112 Gbps, copper is still a viable and more economical option.”

Avi Networks cites customer momentum

Avi Networks has more than doubled its revenue and number of customers each year for the past three years.

The company says large enterprises are replacing their legacy ADCs (application delivery controllers) with the Avi software platform for both data center and cloud use cases. Avi claims hundreds of global enterprises, including the world’s largest financial services, media, and technology companies, are now using its platform. Instead of managing hundreds of physical or virtual appliances, Avi customers can dispatch services like load balancing and web application firewall to any application using one centralized interface. Avi’s technology effortlessly spans bare-metal servers and private and public clouds, making it a natural choice for hybrid and multi-cloud environments.

“There’s a reason we take so many customers from legacy vendors,” said Avi Networks CEO Amit Pandey. “We remain the only enterprise-grade solution that deploys consistently across all environments. In response, legacy vendors are developing siloed solutions for each environment or attempting to modernize through acquisitions. Meanwhile our architecture and controller technology are years ahead and getting better all the time. It’s no wonder that enterprises are choosing Avi Networks for their business-critical applications.”

Avi Networks also noted that it has also updated its platform with over 250 new features, including advanced controller and process analytics, client log streaming, and the release of Avi SaaS — the world’s first cloud-managed load balancing solution.

Avi pulls in $60 million including an investment from Cisco

Avi Networks, a start-up based in Santa Clara, California, announced $60 million in new funding including investments from Cisco Investments along with DAG Ventures, Greylock Partners, Lightspeed Venture Partners, and Menlo Ventures.

Cisco resells the Avi Vantage Platform in markets around the world, and Avi closely integrates with Cisco ACI, Cisco’s intent-based networking and automation solution for the data center.

Avi Networks offers an application delivery controller (ADC) with a Software Load Balancer, an Intelligent Web Application Firewall, and an Elastic Service Mesh for container-based applications. The company says that as businesses shift their operations to clouds such as Azure and AWS, its intent-based software offers easier management, faster performance, greater elasticity, deeper analytics, and more powerful automation than legacy ADC vendors.

Avi also reports that it has tripled its bookings over the past year, with significant adoption by the Global 2000 and 20% of the Fortune 50.

This latest round brings Avi’s total funding to $115 million.

“Modern applications are driving a new urgency with which enterprises are automating their networks and application delivery systems,” said Amit Pandey, CEO of Avi Networks. “Cisco software and infrastructure are a cornerstone in this transformation. I am thrilled about this strategic investment from Cisco and our continued joint efforts to deliver the elasticity, intelligence, and multi-cloud capabilities that enterprises need.”


  • Avi Networks is headed by Amit Pandey, who joined the company as CEO in 2015. Previously, Pandey spent nearly a decade at NetApp in a wide range of executive positions, and followed that with two successful stints at startups - first as CEO of TerraCotta that was acquired by the European software giant, Software AG and next as CEO of Zenprise that was acquired by Citrix.
  • Avi Networks was co-founded in November 2012 by Umesh Mahajan, who previously was VP/GM of Data Center Switching at Cisco; Murali Basavaiah, who previously was VP Engineering at Cisco for NX-OS Software and Nexus 7000/MDS product; and Ranga Rajagopalan, who previously was Sr. Director of Engineering at Cisco and responsible for NX-OS systems/platform software for the Cisco Nexus 7000.

International bank picks Zayo for wavelength service

Zayo announced that a major international bank has selected it to provide wavelength connectivity for a network expansion project in the U.S. and need for future capacity requirements.

The dedicated wavelength solution will connect approximately 10 locations for the customer primarily on the East Coast.

“The sale is an excellent illustration of our vertical segment approach deepening a relationship with an existing customer,” said Jack Waters, president of Zayo Networks and COO. “They worked closely with the customer to develop this unique solution, which will enable the bank to continue to scale their network across a strategic geography.”

Marvell posts quarterly revenue of $745 million, eyes 5G

Marvell Technology Group reported revenue of $745 million for its fourth quarter of fiscal 2019  (ended 02-Feb-2109).

GAAP net loss from continuing operations for the fourth quarter of fiscal 2019 was $(261) million, or $(0.40) per diluted share. Non-GAAP net income from continuing operations for the fourth quarter of fiscal 2019 was $168 million, or $0.25 per diluted share. Cash flow from operations for the fourth quarter was $107 million.

Revenue for fiscal 2019 was $2.9 billion. GAAP net loss from continuing operations for fiscal 2019 was $(179) million, or $(0.30) per diluted share. Non-GAAP net income from continuing operations for fiscal 2019 was $716 million, or $1.19 per diluted share. Cash flow from operations for fiscal 2019 was $597 million

"Marvell continued to improve its financial performance in fiscal 2019, while also increasing scale and diversifying its business through the acquisition of Cavium. While macroeconomic conditions are currently impacting our first quarter outlook, we expect growth to resume in the second quarter," said Matt Murphy, Marvell's President and Chief Executive Officer. "Looking ahead, we are excited about our expanding position in the 5G market, including our recently announced partnership with Samsung, which includes multiple generations of baseband and control plane processors for both LTE and 5G base stations."

Marvell intros silicon for 5G infrastructure

Marvell, whose 3G and 4G solutions are widely deployed in 3G and 4G networks worldwide, announced an end-to-end silicon platform for 5G infrastructure.

Whereas initial deployments of 5G NR have been dominated by FPGA-based solutions, Marvell said its 5G solution encompasses baseband DSPs, Arm multi-core SoCs, purpose-built hardware accelerators, Ethernet connectivity engines and system-level security solutions.

Marvell's 5G NR Platform includes:

  • Radio Access SoCs: The OCTEON Fusion-M product line is optimized for cost/power and programmable with a 3GPP protocol stack split and massive MIMO capabilities. Marvell's SoCs set the performance benchmark for both LTE-A and 5G NR, with multiple deployments through key industry partners.
  • Transport/EPC Core Processors: Multi-core OCTEON processors that are optimized to address the most demanding use cases of 5G NR. Marvell's scalable data-plane acceleration makes its embedded processors ideal for 5G Core/EPC applications at the heart of the network as well. Marvell uniquely offers a single unified architecture for both transport and EPC core.
  • Ethernet Networking: switches and PHYs for carrier infrastructure. Marvell Prestera switches contain hierarchical traffic management for mobile infrastructure. In addition, Marvell's differentiated switching solutions allow advanced flow identification and access control to enable user-level security.
  • Wi-Fi Connectivity: Marvell is ramping high volume production of 8x8 and 4x4 Wi-Fi 6 solutions. The 802.11ax engines include full MU-MIMO and OFDMA uplink and downlink, multi-gigabit peak speeds, precision location, cloud management, best-in-class beamforming and integrated Bluetooth 5 technology. 
  • ThunderX2 Arm-based Server: Marvell has introduced workload optimized ThunderX2 server processors to augment and enhance its 5G portfolio. 

Aquantia intros 10 Gigabit Ethernet MAC Controller

Aquantia introduced a 10G Ethernet Controller that enables SFP+ port or backplane connectivity.

Features of the AQtion AQC100 include:

  • PCI Express 3.0 modes with x4/x2/x1 lane operation
  • SFP+ for Direct Attach Copper (DAC) and optical SFP modules
  • Board-level or backplane connectivity between chips
  • Support for Windows, macOS, Linux, Data Plane Development Kit and other operating systems
  • Less than 1W power consumption

“The introduction of AQC100 shows Aquantia’s continued commitment to bring high-speed connectivity to networks everywhere by delivering efficient interconnect solutions,” said LK Bhupathi, Vice President of Marketing, Aquantia. “By supporting SFP+ and backplane applications, the AQtion AQC100 complements our previously announced Multi-Gig controllers, like the AQC107, and will allow customers to enjoy high-speed connectivity irrespective of cabling or connectivity used.”

Sunday, March 10, 2019

Germany's updated security requirements avoid ban on Huawei

The Bundesnetzagentur, which is the German regulatory office in charge of telecommunications, published additional security requirements for telecommunications networks and services without banning Huawei or other Chinese vendors.

The key elements of the new security policy are:

  • Systems may only be sourced from trustworthy suppliers whose compliance with national security regulations and provisions for the secrecy of telecommunications and for data protection is assured.
  • Network traffic must be regularly and constantly monitored for any abnormality and, if there is any cause for concern, appropriate protection measures must be taken.
  • Security-related network and system components (critical key components) may only be used if they have have been certified by the Federal Office for Information Security (BSI) and undergone IT security checks by a BSI-approved testing body. Critical key components may only be sourced from trustworthy suppliers/manufacturers, ie those that can provide assurance of their trustworthiness.
  • Security-related network and system components (critical key components) may only be used following an appropriate acceptance test upon supply and must be subjected to regular and ongoing security tests. The components that are security-related (critical key components) will be defined by the BSI and Bundesnetzagentur by mutual agreement.
  • Only trained professionals may be employed in security-related areas.
  • Proof must be provided that the hardware tested for the selected, security-related components and the source code at the end of the supply chain are actually deployed in the products used.
  • When planning and building the network, "monocultures" must be avoided by using network and system components from different manufacturers.
  • Where system-related processes are outsourced, only professionally competent, reliable and trustworthy contractors may be selected.
  • Adequate redundancy must be available for critical, security-related network and system components (critical key components). 

"We revise the security requirements on a regular basis in light of the current security situation and technological developments," explained Jochen Homann, Bundesnetzagentur President. "Security requirements apply to all network operators and service providers, irrespective of the technology they deploy. All networks, not just individual standards like 5G, are included."

https://www.bundesnetzagentur.de/SharedDocs/Pressemitteilungen/EN/2019/20190307_SL.html?nn=404530