Telecommunication Industry
GSMA NESAS
Consult our experts. We are happy to support you.
The Network Equipment Security Assurance Scheme (NESAS) is a collaboration jointly led by 3GPP and the GSMA, open to all vendors of network equipment products that support 3GPP defined functions. NESAS focuses on strengthening the level of security for 5G and LTE networks by following established best practices and schemes that provide security assurance. The NESAS scheme consists of two parts: the NESAS audit and the NESAS Security Assurance Specifications (SCAS) testing. The audits involve internal and external assessments of the vendor’s processes, while SCAS testing uses 3GPP-defined security test cases to assess the network equipment products that are developed and maintained with those processes.
What atsec offers:
atsec is both a GSMA appointed NESAS auditor and a 17025 authorized network product evaluator, able to assess products for compliance with 3GPP-defined security test specifications.
Our NESAS portfolio encompasses the following services:
- A readiness assessment to help you estimate the level of effort required for your product to comply with NESAS requirements
- NESAS security audits resulting in the GSMA listing
- Testing of network products according to applicable SCASes
- Education and training for vendors and telecommunication operators on the topic of NESAS security audits
Authoritative websites:
More information:
Why our services are important to you:
The goal of the GSMA NESAS is to provide one universal and global security assurance framework to raise confidence and trust in mobile network equipment.
The scheme accomplishes this through auditing and testing network equipment vendors and their products against a security baseline to demonstrate to network operators that vendors and their products are conforming to the desired standard.
atsec’s testing services will enable you to navigate these audits and tests successfully, allowing you to prove your compliance to network operators with confidence.
Still have questions?
Can’t find what you’re looking for? Let’s talk!
BSI NESAS-CCS-GI
A national certification scheme implemented by the German Federal Office for Information Security (BSI) that is used for certifying telecommunication infrastructure in Germany.
Common Criteria Evaluation
The Common Criteria (CC), also known as ISO 15408, is an internationally recognized standard used to specify and assess the security of IT products.
FIPS 140-3 Testing
FIPS 140-3 specify requirements related to securely designing and implementing cryptographic modules, and compliance is increasingly mandatory worldwide.
The Information Security Provider
Read Our Latest Blog Articles
Learn the latest and greatest about information security. You’ll find insights and analyses of recent developments in technology and policy on our blog.
-
Guiding the Way through the World of Cyber Security
Roughly every five years, we refresh our website with a new appearance. As a precursor to our 25th anniversary in January 2025, we are thrilled to show the world our stylish, modern look. It is atsec’s firm belief that effective security assurance can only truly be accomplished when…
-
First SP800-140Br1 Compliant FIPS 140-3 Certificates
On July 11th, 2024, the first three FIPS 140-3 certificates for NIST’s SP800-140Br1 pilot program were posted on the NIST website. atsec information security was one of the labs that took part in the pilot program. SP 800-140Br1 specifies modifications of the methods to be used by a…
-
atsec has become an official GSMA member
atsec has become an official GSMA member. The GSMA represents the interests of mobile operators worldwide, uniting more than 750 operators with almost 400 companies in the broader mobile ecosystem, including handset and device makers, software companies, equipment providers and internet companies, as well as organizations in adjacent…