3 Media and Documentation

3.1 Media Pack

This section lists the media package for Oracle Communications Cloud Native Core 3.25.1.2xx.0. To download the media package, see MOS.

To learn how to access and download the media package from MOS, see Accessing NF Documents on MOS.

Note:

The information provided in this section is accurate at the time of release but is subject to change. See the Oracle software delivery website for the latest information.

Table 3-1 Media Pack Contents for Oracle Communications Cloud Native Core 3.25.1.2xx.0

Description NF Version ATS Version Upgrade Supported
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 25.1.200 25.1.200 BSF 25.1.200 supports fresh installation and upgrade from 24.2.x and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Configuration Console (CNC Console) 25.1.200 NA CNC Console 25.1.200 supports fresh installation and upgrade from 25.1.1xx, 24.3.x and 24.2.x. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 25.1.200 NA OCCM 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, OCI Adaptor 25.1.200 NA OCI Adaptor 25.1.200 supports fresh installation only. For more information, see Oracle Communications Cloud Native Core, OCI Deployment Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 25.1.200 NA CNE 25.1.200 supports fresh installation and upgrade from 25.1.1xx. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Operations Services Overlay (OSO) 25.1.200 NA OSO 25.1.200 supports fresh installation and upgrade from 25.1.1xx. For more information, see Oracle Communications Cloud Native Core, Operations Services Overlay Installation and Upgrade Guide.
Oracle Communications Cloud Native Core, cnDBTier (cnDBTier) 25.1.201 NA cnDBTier 25.1.201 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, cnDBTier (cnDBTier) 25.1.200 NA cnDBTier 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 25.1.200 25.1.200 NRF 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Slice Selection Function (NSSF) 25.1.200 25.1.200 NSSF 25.1.200 supports fresh installation and upgrade from 25.1.1xx. For more information, see Oracle Communications Cloud Native Core, Network Slice Selection Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 25.1.200 25.1.200 Policy 25.1.200 supports fresh installation and upgrade from 24.2.x and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 25.1.201 25.1.201 SCP 25.1.201 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 25.1.200 25.1.200 SCP 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 25.1.201 25.1.201 SEPP 25.1.201 supports fresh installation and upgrade from 25.1.200, 25.1.1xx, and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 25.1.200 25.1.200 SEPP 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 25.1.200 25.1.200 SEPP 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 25.1.200 25.1.200 UDR 25.1.200 supports fresh installation and upgrade from 25.1.1xx and 24.3.x. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.

Cloud Native Core Upgrade

To ensure a smooth and supported upgrade process, follow the upgrade sequence outlined in the table below. Product does not recommend skipping intermediate versions unless explicitly showed:

Figure 3-1 Cloud Native Core Upgrade

Cloud Native Core Upgrade

Note:

* Policy, CNCC, UDR, SLF, and cnDBTier supports upgrade from 24.2.x to 25.1.2xx (this exception applies only to upgrade from 24.2.x to 25.1.2xx). For more information about the upgrade, see Oracle Communications Cloud Native Core Solution Upgrade Guide.

CNE Upgrade

To ensure a smooth and supported upgrade process, follow the upgrade sequence outlined in the following table:

Figure 3-2 CNE Upgrade

CNE Upgrade
For more information about the upgrade, see Oracle Communications Cloud Native Core Solution Upgrade Guide.

3.2 Compatibility Matrix

The following table lists the compatibility matrix for each network function:

Note:

  • For seamless integration and optimal performance of CNC NFs on third party platform, the third party platform needs to be compatible with the specified Kubernetes version.

Table 3-2 Compatibility Matrix

CNC NF NF Version CNE cnDBTier OSO ASM S/W Kubernetes CNC Console OCNADD OCCM OCI Adaptor
BSF* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6

  • 1.14.6

  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx NA NA NA
CNC Console* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 24.2.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 24.2.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 24.2.x
  • 1.21.6

  • 1.14.6

  • 1.11.8

  • 1.9.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 NA 25.1.2xx 25.1.2xx 25.1.2xx
cnDBTier 25.1.201
  • 25.1.2xx
  • 25.1.1x
  • 24.3.x
 NA NA NA
  • 1.32.x
  • 1.31.x
  • 1.30.x
 NA NA NA NA
cnDBTier* 25.1.200
  • 25.1.200
  • 25.1.1x
  • 24.3.x
 NA NA NA
  • 1.32.x
  • 1.31.x
  • 1.30.x
 NA NA NA NA
CNE 25.1.200 NA NA NA NA 1.32.x NA NA NA NA
NRF* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
 1.14.6
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx 25.1.2xx 25.1.2xx 25.1.2xx
NSSF 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
 1.14.6
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx NA NA NA
OCCM 25.1.200
  • 25.1.2xx
  • 25.1.1x
  • 24.3.x
 NA NA NA
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx NA NA NA
OCI Adaptor 25.1.200 NA NA NA NA
  • 1.32.x
  • 1.31.x
  • 1.30.x
 NA NA NA NA
OSO* 25.1.200 NA NA NA NA
  • 1.32.x
  • 1.31.x
  • 1.30.x
 NA NA NA NA
Policy* 25.1.200
  • 25.1.2xx
  • 24.3.x
  • 24.2.x
  • 25.1.2xx
  • 24.3.x
  • 24.2.x
  • 25.1.2xx
  • 24.3.x
  • 24.2.x
  • 1.21.6

  • 1.14.6

  • 1.11.8
  • 1.32.x
  • 1.30.x
  • 1.29.x
 25.1.2xx NA NA NA
SCP* 25.1.201
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6
  • 1.14.6
  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx 25.1.2xx 25.1.2xx 25.1.2xx
SCP* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6
  • 1.14.6
  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx 25.1.2xx 25.1.2xx 25.1.2xx
SEPP* 25.1.201
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6
  • 1.14.6
  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx 25.1.2xx 25.1.2xx 25.1.2xx
SEPP* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6
  • 1.14.6
  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx 25.1.2xx 25.1.2xx 25.1.2xx
UDR* 25.1.200
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 25.1.2xx
  • 25.1.1xx
  • 24.3.x
  • 1.21.6
  • 1.14.6
  • 1.11.8
  • 1.32.x
  • 1.31.x
  • 1.30.x
 25.1.2xx NA 25.1.2xx NA

Note:

*: Kubernetes 1.20.x and 1.25.x versions are only supported for ASM based deployment.

3.3 3GPP Compatibility Matrix

The following table lists the 3GPP compatibility matrix for each network function:

Table 3-3 3GPP Compatibility Matrix

CNC NF NF Version 3GPP
BSF 25.1.200
  • 3GPP TS 23.501 v17.7.0
  • 3GPP TS 23.502 v17.7
  • 3GPP TS 23.503 V17.7
  • 3GPP TS 29.500 v17.7.0
  • 3GPP TS 29.510 v17.7
  • 3GPP TS 29.513 V17.7
  • 3GPP TS 29.521 v17.7.0
  • 3GPP TS 33.501 V17.7.0
CNC Console 25.1.200 NA
cnDBTier 25.1.2xx NA
CNE 25.1.200 NA
NRF 25.1.200
  • 3GPP TS 29.510 v15.5
  • 3GPP TS 29.510 v16.3.0
  • 3GPP TS 29.510 v16.7
  • 3GPP TS 29.510 v17.7
NSSF 25.1.200
  • 3GPP TS 29.531 v15.5.0
  • 3GPP TS 29.531 v16.5.0
  • 3GPP TS 29.531 v16.8.0
  • 3GPP TS 29.501 v16.10.0
  • 3GPP TS 29.502 v16.10.0
OCCM 25.1.200
  • 3GPP TS 33.310-h30
  • 3GPP TR 33.876 v.0.3.0
OSO 25.1.200 NA
OCI Adaptor 25.1.200 NA
Policy 25.1.200
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 29.500v16.9.0
  • 3GPP TS 23.501v16.9.0
  • 3GPP TS 23.502v16.9.0
  • 3GPP TS 23.503v16.9.0
  • 3GPP TS 29.504v16.9.0
  • 3GPP TS 29.507v16.9.0
  • 3GPP TS 29.510v16.9.0
  • 3GPP TS 29.512v16.14
  • 3GPP TS 29.513v16.9.0
  • 3GPP TS 29.514v16.14.0
  • 3GPP TS 29.214v16.5.0
  • 3GPP TS 29.518v16.13.0
  • 3GPP TS 29.519v16.8
  • 3GPP TS 29.520v16.8
  • 3GPP TS 29.521v16.8.0
  • 3GPP TS 29.525v16.9.0
  • 3GPP TS 29.594v16.7
  • 3GPP TS 23.203 v16.2.0
  • 3GPP TS 29.212 V16.3.0
  • 3GPP TS 29.213v16.3
  • 3GPP TS 29.214 v16.2.0
  • 3GPP TS 29.219 v16.0.0
  • 3GPP TS 29.335v16.0
SCP 25.1.2xx 3GPP TS 29.500 v17.12.0
SEPP 25.1.2xx
  • 3GPP TS 23.501 v17.6.0
  • 3GPP TS 23.502 v17.6.0
  • 3GPP TS 29.500 v17.8.0
  • 3GPP TS 29.501 v17.7.0
  • 3GPP TS 29.573 v17.6.0
  • 3GPP TS 29.510 v17.7.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 33.117 v17.1.0
  • 3GPP TS 33.210 v17.1.0
UDR 25.1.200
  • 3GPP TS 29.505 v15.4.0
  • 3GPP TS 29.504 v16.2.0
  • 3GPP TS 29.519 v16.2.0
  • 3GPP TS 29.511 v17.2.0

Note:

Refer to the Compliance Matrix spreadsheet for details on NFs' compliance with each 3GPP version mentioned in this table.

3.4 Common Microservices Load Lineup

This section provides information about common microservices and ATS for the specific NF versions in Oracle Communications Cloud Native Core Release 3.25.1.2xx.0.

Table 3-4 Common Microservices Load Lineup for Network Functions

CNC NF NF Version Alternate Route Svc App-Info ASM Configuration ATS Framework Config-Server Debug-tool Egress Gateway Ingress Gateway Helm Test Mediation NRF-Client Perf-Info
BSF 25.1.200 25.1.203 25.1.201 25.1.200 25.1.201 25.1.201 25.1.202 25.1.203 25.1.203 25.1.201 NA 25.1.202 25.1.201
CNC Console 25.1.200 NA NA NA NA NA 25.1.202 NA 25.1.203 25.1.201 NA NA NA
OCCM 25.1.200 NA NA NA NA NA 25.1.202 NA NA 25.1.201 NA NA NA
NRF 25.1.200 25.1.203 25.1.201 25.1.201 25.1.202 NA 25.1.202 25.1.203 25.1.203 25.1.201 NA NA 25.1.201
NSSF 25.1.200 25.1.203 25.1.201 25.1.200 25.1.202 25.1.201 25.1.202 25.1.203 25.1.203 25.1.201 NA 25.1.202 25.1.201
Policy 25.1.200 25.1.203 25.1.201 25.1.200 25.1.201 25.1.201 25.1.202 25.1.203 25.1.203 25.1.201 NA 25.1.202 25.1.201
SCP 25.1.201 NA NA 25.1.201 25.1.202 NA 25.1.202 NA NA 25.1.201 25.1.200 NA NA
SCP 25.1.200 NA NA 25.1.201 25.1.202 NA 25.1.202 NA NA 25.1.201 25.1.200 NA NA
SEPP 25.1.201 25.1.204 25.1.202 25.1.201 25.1.202 25.1.202 25.1.202 25.1.204 25.1.204 25.1.201 25.1.105 25.1.202 25.1.202
SEPP 25.1.200 25.1.203 25.1.202 25.1.201 25.1.202 25.1.202 25.1.202 25.1.203 25.1.203 25.1.201 25.1.105 25.1.202 25.1.202
UDR 25.1.200 25.1.203 25.1.201 25.1.201 25.1.202 25.1.201 25.1.202 25.1.203 25.1.203 25.1.201 NA 25.1.202 25.1.201

3.5 Generic Open Source Software Compatibility on Any Platform

The following table offers a comprehensive list of software necessary for the proper functioning of an NF during deployment. However, this table is indicative, and the software used may vary based on the customer's specific requirements and solution.

Note:

The Software Requirement column in the following table indicates one of the following:
  • Mandatory: Absolutely essential; the software cannot function without it.
  • Recommended: Suggested for optimal performance or best practices but not strictly necessary.
  • Conditional: Required only under specific conditions or configurations.
  • Optional: Not essential; can be included based on specific use cases or preferences.

Table 3-5 Generic Open Source Software Compatibility on Any Platform

Software Tested Software Version Software Requirement Category Sub-Category Category Requirement Usage Description
NF 25.1.2xx NF 25.1.1xx NF 24.3.x
Kubernetes 1.32.0 1.31 1.30 Mandatory Orchestration Container Orchestration Mandatory Kubernetes orchestrates scalable, automated NF deployments for high availability and efficient resource utilization.

Impact:

Preinstallation is required. Without orchestration capabilities, deploying and managing network functions (NFs) can become complex, leading to inefficient resource utilization and potential downtime.
Helm 3.17.1 3.16.2 3.15.2 Mandatory Management Kubernetes Package Management Mandatory Helm, a package manager, simplifies deploying and managing NFs on Kubernetes with reusable, versioned charts for easy automation and scaling.

Impact:

Preinstallation is required. Not using this capability may result in error-prone and time-consuming management of NF versions and configurations, impacting deployment consistency.

Podman 4.9.4 4.9.4 4.9.4 Recommended Runtime Containerized NF Image Management Mandatory Podman manages and runs containerized NFs without requiring a daemon, offering flexibility and compatibility with Kubernetes.

Impact:

Preinstallation is required. Podman is a part of Oracle Linux. Without efficient container management, the development and deployment of NFs could become cumbersome, impacting agility.

containerd 1.7.24 1.7.22 1.7.16 Recommended Runtime Container Runtime Mandatory Containerd manages container lifecycles for running NFs efficiently in Kubernetes.

Impact:

A lack of a reliable container runtime could lead to performance issues and instability in NF operations.

Velero 1.13.2 1.13.2 1.12.0 Recommended Backup Backup and Disaster Recovery for Kubernetes Optional Velero backs up and restores Kubernetes clusters for 5G NFs, ensuring data protection and disaster recovery.

Impact:

Without backup and recovery capabilities, customers would risk data loss and extended downtime, requiring a full cluster reinstall in case of failure or upgrade.

Kyverno 1.13.4 1.12.5 1.12.5 Recommended Security Kubernetes Policy Management Mandatory Kyverno is a Kubernetes policy engine that allows to manage and enforce policies for resource configurations within a Kubernetes cluster.

Impact:

Failing to implement policy enforcement could lead to misconfigurations, resulting in security risks and instability in NF operations, affecting reliability.

MetalLB 0.14.4 0.14.4 0.14.4 Recommended Networking Load Balancer for Kubernetes Mandatory MetalLB provides load balancing and external IP management for 5G NFs in Kubernetes environments.

Impact:

MetalLB is used as LB solution in CNE. LB is mandatory for the solution to work. Without load balancing, traffic distribution among NFs may be inefficient, leading to potential bottlenecks and service degradation.

CoreDNS 1.11.13 1.11.1 1.11.1 Recommended Networking Service Discovery for Kubernetes Mandatory CoreDNS is the DNS server in Kubernetes, which provides DNS resolution services within the cluster.

Impact:

DNS is an essential part of deployment. Without proper service discovery, NFs would struggle to communicate with each other, leading to connectivity issues and operational failures.

Multus 4.1.3 3.8 3.8.0 Recommended Networking Networking for Kubernetes traffic segregation Conditional Multus enables multiple network interfaces in Kubernetes pods, allowing custom configurations and isolated paths for advanced use cases such as NF deployments, ultimately supporting traffic segregation.

Impact:

Without this capability, connecting NFs to multiple networks could be limited, impacting network performance and isolation.

Fluentd 1.17.1 1.17.1 1.16.2 Recommended Logging Logging Agent Mandatory Fluentd is an open-source data collector that streamlines data collection and consumption, allowing for improved data utilization and comprehension.

Impact:

Not utilizing centralized logging can hinder the ability to track NF activity and troubleshoot issues effectively, complicating maintenance and support.

OpenSearch 2.15.0 2.11.0 2.11.0 Recommended Logging Search/ Analytics/ Logging Mandatory OpenSearch provides scalable search and analytics for 5G NFs, enabling efficient data exploration and visualization.

Lack of a robust analytics solution could lead to challenges in identifying performance issues and optimizing NF operations, affecting overall service quality.

OpenSearch Dashboard 2.15.0 2.11.0 2.11.0 Recommended Logging Dashboard/ Visualization for OpenSearch Mandatory OpenSearch Dashboard visualizes and analyzes data for 5G NFs, offering interactive insights and custom reporting.

Impact:

Without visualization capabilities, understanding NF performance metrics and trends would be difficult, limiting informed decision-making.

AlertManager 0.28.0 0.27.0 0.27.0 Recommended Alerting Alerting (Integration with Prometheus) Mandatory Alertmanager is a component that works in conjunction with Prometheus to manage and dispatch alerts. It handles the routing and notification of alerts to various receivers.

Impact:

Not implementing alerting mechanisms can lead to delayed responses to critical issues, potentially resulting in service outages or degraded performance.

prometheus-kube-state-metric 2.15.0 2.13.0 2.13.0 Recommended Monitoring Kubernetes Metrics (for Prometheus) Mandatory Kube-state-metrics is a service that generates metrics about the state of various resources in a Kubernetes cluster. It's commonly used for monitoring and alerting purposes.

Impact:

Without these metrics, monitoring the health and performance of NFs could be challenging, making it harder to proactively address issues.

Prometheus Operator 0.80.1 0.76.0 0.76.0 Recommended Monitoring Prometheus Instance Management in Kubernetes Conditional The Prometheus Operator is used for managing Prometheus monitoring systems in Kubernetes. Prometheus Operator simplifies the configuration and management of Prometheus instances.

Impact:

Not using this operator could complicate the setup and management of monitoring solutions, increasing the risk of missed performance insights.

prometheus-node-exporter 1.8.2 1.8.2 1.8.2 Recommended Monitoring Node-Level Metrics for Prometheus Mandatory Node Exporter is a Prometheus exporter for collecting hardware and OS-level metrics from Linux hosts.

Impact:

Without node-level metrics, visibility into infrastructure performance would be limited, complicating the identification of resource bottlenecks.

Prometheus 3.2.0 2.52 2.52 Mandatory Monitoring Metrics/Monitoring System Mandatory Prometheus is a popular open-source monitoring and alerting toolkit. It collects and stores metrics from various sources and allows for alerting and querying.

Impact:

Not employing this monitoring solution could result in a lack of visibility into NF performance, making it difficult to troubleshoot issues and optimize resource usage.

Grafana 9.5.3 9.5.3 9.5.3 Recommended Visualization Monitoring/Visualization Tool Mandatory Grafana is a popular open-source platform for monitoring and observability. It provides a user-friendly interface for creating and viewing dashboards based on various data sources.

Impact:

Without visualization tools, interpreting complex metrics and gaining insights into NF performance would be cumbersome, hindering effective management.

Calico 3.29.1 3.28.1 3.27.3 Recommended Networking Networking/Network Security for Kubernetes Mandatory Calico provides networking and security for NFs in Kubernetes with scalable, policy-driven connectivity.

Impact:

CNI is mandatory for the functioning of 5G NFs. Without CNI and proper plugin, the network could face security vulnerabilities and inadequate traffic management, impacting the reliability of NF communications

metrics-server 0.7.2 0.7.2 0.7.1 Recommended Monitoring Resource Metrics for Kubernetes Mandatory Metrics server is used in Kubernetes for collecting resource usage data from pods and nodes.

Impact:

Without resource metrics, auto-scaling and resource optimization would be limited, potentially leading to resource contention or underutilization.

snmp-notifier 1.6.1 1.5.0 1.4.0 Recommended Notification SNMP Notification Service Mandatory snmp-notifier sends SNMP alerts for 5G NFs, providing real-time notifications for network events.

Impact:

Without SNMP notifications, proactive monitoring of NF health and performance could be compromised, delaying response to critical issues.

Jaeger 1.65.0 1.60.0 1.60.0 Recommended Tracing Distributed Tracing Mandatory Jaeger provides distributed tracing for 5G NFs, enabling performance monitoring and troubleshooting across microservices.

Impact:

Not utilizing distributed tracing may hinder the ability to diagnose performance bottlenecks, making it challenging to optimize NF interactions and user experience.

rook 1.16.6 1.15.2 1.13.3 Recommended Storage Storage Orchestration Mandatory Rook is the Ceph orchestrator for Kubernetes that provides storage solutions. It is used in bm CNE solution.

Impact:

CSI is mandatory for the solution to work. Not utilizing Rook could increase the complexity of deploying and managing Ceph, making it difficult to scale storage solutions in a Kubernetes environment.

cinder-csi-plugin 1.32.0 1.31.1 1.30.0 Recommended Storage Block Storage Plugin Mandatory Cinder CSI (Container Storage Interface) plugin is for provisioning and managing block storage in Kubernetes. It is often used in OpenStack environments to provide persistent storage for containerized applications.

Impact:

Cinder CSI Plugin is used in OpenStack vCNE solution. Without this integration, provisioning block storage for NFs could be manual and inefficient, complicating storage management.

3.6 Security Certification Declaration

This section lists the security tests and the corresponding dates of compliance for each network function:

3.6.1 BSF Security Certification Declaration

Release 25.1.200

Table 3-6 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jun 30, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

May 28, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 09, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 09, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.2 CNC Console Security Certification Declaration

Release 25.1.200

Table 3-7 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 09, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 09, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 09, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 09, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.3 OCCM Security Certification Declaration

Release 25.1.200

Table 3-8 OCCM Security Certification Declaration

Compliance Test Description Test Completion Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 07, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 07, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 07, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 07, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.4 OCI Adaptor Security Certification

Release 25.1.200

Table 3-9 OCI Adaptor Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 May 19, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

NA No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 28, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 08, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

3.6.5 NRF Security Certification Declaration

Release 25.1.200

Table 3-10 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 09, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 09, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 09, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 09, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.6 NSSF Security Certification Declaration

Release 25.1.200

Table 3-11 NSSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 02, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 02, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 02, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 02, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.7 Policy Security Certification Declaration

Policy 25.1.200

Table 3-12 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 01, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

May 28, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 09, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 09, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.8 SCP Security Certification Declaration

Release 25.1.201

Table 3-13 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 August 29, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

August 29, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

August 29, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

August 29, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

Release 25.1.200

Table 3-14 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 06, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 06, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 06, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 06, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

3.6.9 SEPP Security Certification Declaration

Release 25.1.201

Table 3-15 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 17, 2025 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 04, 2025 No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 17, 2025 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 31, 2025 No issues found. Scan done through McAfee.
Release 25.1.200

Table 3-16 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 08, 2025 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 04, 2025 No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 08, 2025 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 08, 2025 No issues found. Scan done through McAfee.

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6.10 UDR Security Certification Declaration

Release 25.1.200

Table 3-17 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 09, 2025 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 09, 2025 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 09, 2025 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 09, 2025 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.7 Documentation Pack

All documents for Oracle Communications Cloud Native Core (CNC) 3.25.1.2xx.0 are available for download on SecureSites and MOS.

To learn how to access and download the documents from SecureSites, see Oracle users or Non-Oracle users.

To learn how to access and download the documentation pack from MOS, see Accessing NF Documents on MOS.

The NWDAF documentation is available on Oracle Help Center (OHC).