UK SPF Findings and Recommendations on Spectrum Infrastructure Resilience

The UK Spectrum Policy Forum has today published its Findings and Recommendations on Spectrum Infrastructure Resilience.

This report is developed from the UK SPF Spectrum Usage and Demand study which highlighted the diverse nature of spectrum use and how information accessed through wireless underpins our infrastructure, the modern economy, our society, our businesses and our personal lives.

As the infrastructure and societal reliance on information, enabled via wireless spectrum access, increases (e.g. through Smart Energy, Smart Cities, Healthcare, Internet of things, Autonomous vehicles etc.) denial or disruption to spectrum access, maliciously or accidentally could cause significant economic, political, social or even physical harm.

Spectrum-access denial, or disruption, would be equivalent to a cyber denial-of-service (DOS) attack and could prevent facilities, systems and networks from functioning. Some examples include loss of GPS signal due to targeted interference, potential loss of personal health related monitoring data due to interference, loss of data or communications during a national emergency (e.g. during a flood) and interference to train signalling causing rail disruptions.

Reflecting on the initial findings from the SPF event, the UK Spectrum Policy Forum has the following recommendations to address various threats to the continued use of spectrum:

 

Recommendations

1. We should raise user awareness of the risks posed to spectrum use, by government or private sector users, from service denial or disruption by

  1. Encouraging spectrum users to conduct “spectrum stress test” to their businesses
  2. Consider the production of a ‘Common Spectrum Attacks and Mitigations Summary’ for general use, and its inclusion as part of corporate risk assessments
  3. Considering further if Spectrum Access threats should be included in the National Risk Register

2. We should evaluate the potential loss of economic and social value

3. We should ensure the regulatory framework is designed to minimise risk from service disruption

  1. Consider making the possession of civil jamming devices illegal
  2. Review regulations applied to Licence Exempt bandwidths, Dynamic Spectrum Access use, and other provisions for spectrum use which appear susceptible to disruption

4. We should encourage industry to design equipment and systems to be resilient to attack

  1. Ensure resilience is part of the standards for 5G, IoT, autonomous systems and other new technologies
  2. Develop better systems for detection and attribution of threats

 

Raj Sivalingam, Executive Director of the UK Spectrum Policy Forum, commented: “The increasing interconnectivity of systems that use radio spectrum, such as med tech, the internet of things, connected homes, and even GPS in your cars, means that a small disruption to a system could have serious ripple effects to many other systems and services. Yet many businesses and users do not fully understand the impact and disruption that may be caused through the denial of access to spectrum. The Spectrum Policy Forum has highlighted a number of recommendations to address these issues, such as ensuring the regulatory framework is designed to minimise risk and encourage businesses to develop spectrum resilience plans.”


This report was developed through an initial Spectrum Policy Forum workshop. Further information about the UK Spectrum Policy Forum is available, please contact Skye MacLeod. 

UK SPF Findings and Recommendations on Spectrum Infrastru... (pdf)

FROM SOCIAL MEDIA

After the historic A50 letter, techUK's Giles Derrington looks at what's next for the negotiations and for tech - https://t.co/Pmy2kAyydc
Delighted Secretary of State @DCMS Karen Bradley will be keynote speaker at our annual dinner. Tickets available:… https://t.co/aih1mwDNZi
"Avoid chaotic Brexit" @techukceo responding to Article 50 being triggered in the @independent https://t.co/06mqYEBu62
.@peteracummings from sponsor @Adobe will be discussing tech driven Public Services in 2030 at #techUKPS2030. Book: https://t.co/1p9v02hg9L
As A50 is triggered, we are also in Brussels meeting with MEPs and Cssn about getting a good #Brexit deal for tech https://t.co/d1FF2ofpfk
Trigger of A50 historic moment. Now UK/EU must work together for deal that works for tech, says @techUKCEO - https://t.co/ym6ORzzlon
.@techUKCEO in @CityAM on Article 50 priorities for tech #BrexitDay https://t.co/Lwo4QESsTR
10% of global cyber workforce is female. Our president @JdR_Tech was proud to join @ncsc for the #CyberFirstGirls c… https://t.co/pCJ97kCKxe
UK and EU must work together to secure Bright Digital Future- @techUKCEO comments on triggering of Article 50 - https://t.co/AwgBDc5gVg
Ahead of historic triggering of A50 @techUKCEO calls for UK/EU to work together to secure a deal that works for tech https://t.co/GGXNTIFW2j