By name: telecom-5g-security-assessment description: Use for telecom and 5G security, mobile core, RAN, roaming, SS7, Diameter, GTP, IMS, SBA APIs, network slicing, SIM/eSIM, fraud, signaling, lawful intercept control review, and carrier-grade security assessments.
Telecom and 5G security assessment
Use this skill for carrier, private 5G, mobile core, roaming, signaling, RAN, IMS, and telecom fraud/security work.
Guardrails
- Do not run signaling, radio, roaming, or carrier tests without explicit authorization and lab constraints.
- Treat lawful intercept, emergency services, and billing systems as high-impact environments.
- Prefer architecture review and controlled validation over live-network probing.
Workflow
- Scope network type: private 5G, public carrier, MVNO, enterprise edge, lab, or roaming partner.
- Map major domains:
- RAN and gNodeB/eNodeB management
- 5G core network functions
- SBA/API exposure and service mesh
- SS7/Diameter/GTP roaming paths
- IMS/VoLTE
- SIM/eSIM provisioning
- billing, charging, and fraud systems
- Review controls:
- mutual authentication and certificate lifecycle
- API authorization and segmentation
- signaling firewall rules
- slice isolation
- management-plane hardening
- roaming partner trust
- logging, fraud detection, and incident response
- Classify findings by subscriber privacy, availability, fraud, lawful intercept exposure, and network integrity.
Output pattern
| Domain | Risk | Trust boundary | Evidence | Impact | Mitigation | Validation |
|---|