PDF - Distributed Security Policies in Virtual Radio Access Network (vRAN) - QC-130

Preferred Disciplines: Computer Engineering, Post-Doc Fellow
Company: Ericsson Canada Inc
Project Length:  2 years (6 units)
Desired start date: As soon as possible
Location: St Laurent, Quebec
No. of Positions: 1
Preferences: The candidate should be curious, ready to learn, passionate in the area of Radio Access Network (RAN) Security, Edge Computing, SDN orchestration, Service Function Chaining (SFC), container management and security. The candidate should also be autonomous to a certain degree, ready to deliver results as needed. It is understood that there will be a learning curve to align with Ericsson. Language: Bilingual or English

About Company:

Ericsson as a major international telecom operator, and one of the top ten R&D investors in Canada, is both cloud service provider and cloud user. As a cloud service provider, investing over a billion dollars in building a massive ICT R&D center in Quebec, it is very important for Ericsson to have contingency plans for Disaster Recovery in place. Ericsson has also demonstrated its corporate responsibility for energy efficient and green solutions based on a long history of research in energy consumption and Life Cycle Assessment (LCA).

Project Description:

Mobile access networks grasp the benefits of SDN and NFV to fulfil 5G promises. Radio Access Network (RAN) is switching to virtual infrastructure which is expected to push RAN into the Edge. Such move is designated as Virtual RAN (VRAN). While they are many expected benefits of such architecture it also requires security to be re-thought.

The Research Area will be devoted on the following themes :

  • VRAN Security Policies management
  • Security Policies enforcement based on Service Function Chaining
  • Application in a container environment 

Background and required skills

Research Objectives/Sub-Objectives:

  • Threat detection / mitigation in a VRAN environement 
  • Defining / managing Security Policies
  • Leveraging containers and SFC to enforcing Security policies


  • State of the art in vRAN threat mitigation
  • Proposal of new security functions adapted to vRAN particularities
  • Formal deployment of security policies in vRAN

Expertise and Skills Needed:

  • Preferably, good understanding of Radio Access Network (RAN) and Virtual RAN (VRAN)
  • Preferably, good understanding of SDN, Service Function Chaining (SFC), YANG
  • Preferably, good understanding of Cloud, container (Docker, LXC) management and security
  • If possible, good understanding of Security threats, vulnerabilities and mitigations in RAN / VRAN environements


For more info or to apply to this applied research position, please

  1. Check your eligibility and find more information about open projects.
  2. Complete this webform. You will be asked to upload your CV. Remember to indicate the title of the project(s) you are interested in and obtain your professor’s approval to proceed!