CISA Proposes Five-Step Process to Become 5G Operational

June 14, 2022

Takeaway: Federal agencies will need to consider the five-step assessment process to get authorization from CISA before operating with 5G technology.


As the adoption of 5G technology by many private and public organizations approaches, assessments are being put in place to evaluate whether federal agencies can operate with 5G technology. Regulation agencies in cybersecurity teamed up to create a security assessment that grants authorization to agencies in order to use 5G technology.

Specifically, CISA – with the Department of Homeland Security’s Science and Technology Directorate and the Department of Defense’s Office of the Under Secretary Defense for Research and Engineering (OUSD R&E) – proposed a five-step assessment process.  This process was derived from scientific research and security analyses.

So, what are the five steps of assessment an agency must meet to acquire authorization?

Step 1: Define the Federal 5G Use Case – this step involves describing what the intended use for the 5G technology is and whether there is a federal use component as well as providing details about the proposed 5G model.

Step 2: Identify the Assessment Boundary – this step involves defining the boundary to identify the security requirements that will be implemented to protect networks.

Step 3: Identify Security Requirements – this is a multi-step that includes conducting a high-level threat analysis of each 5G subsystem and identifying cybersecurity requirements.

Step 4: Map Security Requirements to Federal Guidance – this step involves the creation of a catalog of federal security guidance that corresponds to the technologies included in the assessment boundary and implied security capabilities from Step 3.

Step 5: Assess Security Guidance Gaps & Alternatives – this is an evaluation step that tests the effectiveness of implementation.

The purpose of this five-step assessment is to provide federal agencies with a standardized and comprehensive process to evaluate and address security assessment gaps.  CISA views this assessment process as essential for new federal 5G implementations.  In accordance with this process, the networks of federal agencies reliant on 5G technology will be protected from cybersecurity attacks.

To read CISA’s 5G Security Evaluation Process Investigation in full, visit: https://www.cisa.gov/sites/default/files/publications/5G_Security_Evaluation_Process_Investigation_508c.pdf

News & Events

Related News

Michael O. Bethune and Adam Garret selected to the ACBA Young Lawyers Division Bar Leadership Initiative
September 27, 2023
We are pleased to announce that two Pietragallo attorneys, Michael Bethune and Adam Garret, are among the 14 attorneys selected to the Allegheny County Bar Association’s (ACBA) Young Lawyers Division Bar Leadership Initiative Class of 2023-2024. Read More
Bar News: Ashi Colina admitted to the Florida State Bar
September 27, 2023
Pietragallo attorney Ashi Colina has been admitted to the Florida State Bar. Ms. Colina is a member of the firm’s Government Enforcement, Compliance, & White Collar Litigation & Qui Tam & False Claims Act practice groups. Read More

Upcoming Events

Scott A. Coffina to Present at the PTACC’s 2023 National Deflection & Pre-Arrest Diversion Summit
October 4, 2023
Pietragallo partner Scott A. Coffina will be presenting at the Police, Treatment, and Community Collaborative’s (PTACC) 2023 National Deflection & Pre-Arrest Diversion Summit taking place from October 3-6, 2023 in Denver, Colorado. Read More
Timothy Hazel to present at Realtors Association of Metropolitan Pittsburgh Program
November 1, 2023
Pietragallo partner Timothy Hazel will present “Luxury Real Estate: Condos and Homes” to the Realtors Association of Metropolitan Pittsburgh on November 1, 2023 in Pittsburgh, PA. Read More
View More News & Events