itu-t Series-G: Transmission Systems and Media, Digital Systems and Networks
The physical and logical backbone of global telecommunications — from trans-oceanic fiber to PON access networks and timing infrastructure. Physical layer integrity here is a prerequisite for all higher-layer security.
Official Scope
Study Group: SG15 — Transport, Access and Home
Active Status: Ongoing
Defines technical characteristics of transmission systems, optical media (fiber, WDM), digital transport networks (OTN, SDH/SONET), broadband access (PON/GPON/XGS-PON), synchronization/timing (PTP/SyncE), and power-line communications (PLC/G3-PLC).
Tactical Security Significance
- Relevance: 🟢 Critical — Physical Layer Integrity, Optical Security, Sync/Timing Infrastructure
- Key Security Concepts: Fiber Tapping Detection (OTDR), OTN Layer Encryption (OTUk), PON Access Security (GPON AES-128), PTP Timing Integrity (G.8275.1)
- Attack Surface: Unencrypted optical transport segments, GPON shared-medium access, NTP/PTP timing infrastructure vulnerable to GPS spoofing
Key Recommendations
| ITU Rec | Title | Security Domain | Cross-Reference |
|---|---|---|---|
| G.709 | Interfaces for the optical transport network (OTN) | OTN Layer Encryption (OTUk) | IEEE 802.3ae |
| G.8271 | Time and phase synchronization aspects of packet networks | Sync Security Baseline | IEEE 1588-2019 |
| G.8273 | Framework for PTP clocks in packet networks | Timing Integrity | ITU-R TF.2100 |
| G.984.3 | GPON: Transmission convergence layer specification | PON Access Encryption (AES-128 / OMCI) | IEEE 802.3ah |
| G.9903 | Narrowband OFDM PLC for smart grid (G3-PLC) | Smart Grid Encryption (AES-128 / ECDH) | IEC 62351 |
| G.Sup 81 | Security considerations for PON systems | PON Threat Modeling & Fiber Tap Detection | NIST SP 800-187 |
Security Mapping
Fiber Tapping Detection (OTDR Monitoring)
Single-mode fiber carries the majority of inter-city and international traffic unencrypted at the photon level. Physical tapping via optical splitters introduces a measurable loss (typically 0.5–3 dB) detectable by Optical Time-Domain Reflectometry (OTDR).
- Threat: Intelligence services and sophisticated actors deploy optical splitters at cable access points (manholes, repeater stations) to intercept unencrypted traffic
- Mitigation: Deploy continuous OTDR monitoring per G.Sup 81 recommendations; alert on optical power anomalies >0.1 dB; encrypt OTN payload using G.709 OTUk encryption before transmission on any uncontrolled physical medium
GPON Shared-Medium Eavesdropping
G.984.3 GPON uses a shared PON segment serving multiple ONUs (Optical Network Units). Without encryption, all downstream traffic is broadcast to all ONUs on the same PON tree — any ONU can read traffic destined for neighbors.
- Threat: Rogue ONT (malicious customer device) on shared PON segment can capture downstream traffic in clear if AES-128 via OMCI is not enforced
- Mitigation: Mandate G.984.3 AES-128 encryption for all GPON deployments; verify OMCI key provisioning per G.Sup 81 section 6; audit ONU certificate stores annually
PTP Timing Infrastructure Attack Surface
5G NR uses G.8271/G.8273-compliant PTP for nanosecond-precision timing. A compromised PTP grandmaster or an injected spoofed PTP packet can shift cell site clocks, causing TDD frame misalignment and network-wide interference.
- Threat: On-path attacker injects malicious PTP Sync messages; cell sites accept forged timestamps → inter-site interference, call drops, coverage loss
- Mitigation: Deploy G.8275.2 (PTP over IP with authentication) or prefer G.8275.1 (PTP over Ethernet) on dedicated OAM VLANs isolated from public access; use IEEE 1588-2019 Annex P message authentication (MACsec)
Operational Audit
- Transport Security Audit Checklist: Technical checklist for auditing OTN, GPON, and PTP/SyncE synchronization security.
!NOTE This series is part of the master Series Tracker.