Changeflow GovPing Data Privacy & Cybersecurity NIST Paper on 5G Network Security Design Princi...
Routine Guidance Added Final

NIST Paper on 5G Network Security Design Principles

Favicon for www.nist.gov NIST Publications
Published March 19th, 2026
Detected March 21st, 2026
Email

Summary

NIST has published a white paper outlining design principles for commercial and private 5G network operators to enhance cybersecurity and privacy. The paper, part of a series, focuses on isolating different types of network traffic.

View original document View source feed page

What changed

NIST has released a white paper titled "5G Network Security Design Principles: Applying 5G Cybersecurity and Privacy Capabilities." This document provides recommended network infrastructure design principles for 5G network operators, focusing on the isolation of data plane, control plane, and operation and maintenance (O&M) traffic to improve cybersecurity and privacy. It is part of a series demonstrating capabilities tested on the NIST National Cybersecurity Center of Excellence (NCCoE) 5G security testbed.

This guidance is intended for commercial and private 5G network operators. While it does not impose new regulatory obligations, it offers best practices for network design. Compliance officers should review the principles outlined in the paper to assess their organization's current 5G network security posture and consider implementing the recommended design principles for enhanced protection.

What to do next

  1. Review NIST CSWP-36E for 5G network security and privacy design principles.
  2. Assess current 5G network infrastructure against recommended traffic isolation principles.

Source document (simplified)

PUBLICATIONS

5G Network Security Design Principles: Applying 5G Cybersecurity and Privacy Capabilities

Published

March 19, 2026

Author(s)

Michael Bartock, Jeffrey Cichonski, Murugiah Souppaya, Karen Kent, Parisa Grayeli, Sanjeev Sharma

Abstract

This white paper describes the network infrastructure design principles that commercial and private 5G network operators are encouraged to use to improve cybersecurity and privacy. Such a network infrastructure isolates types of 5G network traffic from each other: data plane, control plane, and operation and maintenance (O&M) traffic. This white paper is part of a series called Applying 5G Cybersecurity and Privacy Capabilities, which covers 5G cybersecurity and privacy-supporting capabilities that were demonstrated on the NIST National Cybersecurity Center of Excellence (NCCoE) 5G security testbed as part of the 5G Cybersecurity project at the NCCoE. Citation NIST Cybersecurity White Papers (CSWP) - 36E Report Number 36E Pub Type NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.CSWP.36E Local Download

Keywords

3GPP, 5G, cybersecurity, privacy, virtual routing and forwarding (VRF) Information technology, Cybersecurity and privacy and Advanced communications

Citation

Bartock, M.
, Cichonski, J.
, Souppaya, M.
, Kent, K.
, Grayeli, P.
and Sharma, S.

(2026),
5G Network Security Design Principles: Applying 5G Cybersecurity and Privacy Capabilities, NIST Cybersecurity White Papers (CSWP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.CSWP.36E, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=961427       
  (Accessed March 20, 2026)

Additional citation formats

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created March 19, 2026

Was this page helpful?

Named provisions

5G Network Security Design Principles Applying 5G Cybersecurity and Privacy Capabilities

Related changes

Favicon for www.nist.gov NIST White Paper on 5G Cybersecurity and Privacy Capabilities
Routine Mar 21, 2026 NIST Publications Data Privacy & Cybersecurity
Favicon for www.nist.gov NIST SP 800-81r3 Secure DNS Deployment Guide
Routine Mar 21, 2026 NIST Publications Data Privacy & Cybersecurity
Favicon for www.nist.gov NIST Paper on 5G Hardware Security for Platform Integrity
Routine Mar 21, 2026 NIST Publications Data Privacy & Cybersecurity
Favicon for www.cisa.gov CISA Adds Five Known Exploited Vulnerabilities to Catalog
Priority review Mar 20, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov Apple Buffer Overflow Vulnerability Fixed in Safari, iOS, macOS
Priority review Mar 20, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov Craft CMS Remote Code Execution Vulnerability Fixed
Priority review Mar 20, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity

Source

Favicon for www.nist.gov
NIST Publications nist.gov/publications
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
NIST
Published
March 19th, 2026
Instrument
Guidance
Legal weight
Non-binding
Stage
Final
Change scope
Minor
Document ID
NIST Cybersecurity White Papers (CSWP) - 36E

Who this affects

Applies to
Telecommunications firms
Industry sector
5170 Telecommunications
Activity scope
5G Network Security Privacy
Geographic scope
United States US

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Compliance frameworks
NIST CSF
Topics
Telecommunications Privacy

Browse Categories

Agriculture & Food Safety 61 Banking & Finance 221 Consumer Protection 39 Courts & Legal 284 Data Privacy & Cybersecurity 61 Defense & National Security 48 Education 20 Energy 102 Environment 85 Government & Legislation 257 Healthcare 116 Housing 15 Immigration 9 Insurance 58 Labor & Employment 111 Pharma & Drug Safety 78 Securities & Markets 75 Tax 62 Telecom & Technology 34 Trade & Sanctions 124 Transportation 56

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when NIST Publications publishes new changes.

Free. Unsubscribe anytime.