A Strategic National Milestone in Telecom Cybersecurity
Deltaphi Labs Private Limited has been formally designated as a Telecom Security Testing Laboratory (TSTL) for Network Functions Virtualization (NFV) by the National Centre for Communication Security (NCCS) under the Department of Telecommunications, Government of India.
Under Certificate No. NCCS/TSTL/05 (TSTL ID: DL0005), Deltaphi Labs is recognized as the first and currently the only NCCS-designated laboratory in India for NFV security testing.
This designation authorizes Deltaphi Labs to conduct formal conformity assessment of NFV-based telecom equipment against the Indian Telecom Security Assurance Requirements (ITSAR) as specified in Annexure-I of the designation certificate.
This milestone marks a critical evolution in India’s telecom cybersecurity ecosystem—moving security assurance decisively from hardware-centric validation to software-defined, cloud-native, and virtualized network environments that underpin modern telecom infrastructure.
Telecom Networks as Critical National Infrastructure
Telecom networks are no longer limited to voice or data transport. They form the backbone of essential services:
- National emergency and disaster-response systems
- Financial services and digital payments
- Government communications and public services
- Enterprise connectivity and industrial systems
- Cloud, IoT, and smart infrastructure
Any compromise of telecom infrastructure can have cascading national impact, affecting service continuity, public trust, and economic stability. For this reason, telecom cybersecurity is treated as a national security concern, not merely a technical compliance activity.
As India transitions rapidly toward 4G, 5G, and cloud-native architectures, the security assurance framework must evolve accordingly. NFV accreditation directly addresses this requirement.
NFV: Redefining How Telecom Networks Are Built
Network Functions Virtualization (NFV) fundamentally changes how telecom networks are designed, deployed, and operated.
Instead of relying on fixed, proprietary hardware appliances, NFV enables telecom functions to run as software instances on shared, virtualized infrastructure. These functions may be deployed in central data centers, regional hubs, or at the network edge.
NFV is used extensively for:
- 4G and 5G core network functions (EPC and 5GC components such as AMF, SMF, UPF)
- Virtual routers, firewalls, and gateways
- SD-WAN and secure edge platforms
- Virtualized IMS, SBC, and service gateways
- Cloud-native telecom services supporting enterprise and consumer networks
This architectural shift delivers agility, scalability, and faster innovation cycles—but it also introduces new and complex security risks.
Why NFV Introduces New Cybersecurity Challenges
NFV expands the attack surface well beyond traditional telecom equipment. Security assurance must now account for:
- Virtualization layers and hypervisors
- Container runtimes and orchestration platforms
- Management and orchestration (MANO) components
- APIs exposed for automation and lifecycle management
- Shared infrastructure and multi-tenant environments
- Continuous software updates and CI/CD pipelines
Unlike hardware devices, NFV components are dynamic, frequently updated, and deeply integrated with cloud platforms. A vulnerability in one layer can propagate across multiple network functions, potentially affecting large parts of the telecom network.
Because NFV components directly process control-plane, signaling, and user-plane traffic, any weakness can compromise confidentiality, integrity, or availability of national communications.
As a result, NFV security testing is no longer optional—it is a strategic national requirement for India’s telecom ecosystem.
NCCS and the National Telecom Security Framework
The National Centre for Communication Security (NCCS) is the nodal center under the Department of Telecommunications responsible for implementing India’s Communication Security Certification Scheme.
NCCS’s mandate includes:
- Defining India-specific telecom cybersecurity requirements through ITSARs
- Designating qualified Telecom Security Testing Laboratories (TSTLs)
- Ensuring independent, regulator-recognized security evaluation
- Supporting secure deployment of telecom products across Indian networks
Under this framework, only NCCS-designated laboratories are authorized to perform security testing for notified telecom product categories.
NFV’s complexity and strategic importance led NCCS to introduce a dedicated NFV security designation, recognizing that conventional testing approaches are insufficient for virtualized telecom environments.
TEC, CABs, and Alignment with the Broader Certification Ecosystem
India’s telecom certification ecosystem is also anchored by the Telecommunication Engineering Centre (TEC), which oversees conformity assessment and certification of telecom equipment under the Mandatory Testing and Certification of Telecom Equipment (MTCTE) framework through accredited Conformity Assessment Bodies (CABs).
Deltaphi Labs operates within this broader regulatory ecosystem, ensuring that its NCCS-designated security testing activities align with TEC-led conformity assessment and certification processes, enabling seamless integration of security evaluation into the overall regulatory approval lifecycle.
What the NCCS NFV Designation Authorizes
Under its NFV designation, Deltaphi Labs is authorized to conduct security testing in line with:
- ITSAR404042308 – Security requirements for Network Functions Virtualization
- ITSAR001962009 – Cryptographic controls applicable to ITSAR-governed products
This enables Deltaphi Labs to perform end-to-end NFV security conformity assessment, covering the full lifecycle of virtualized telecom functions—from design and deployment to operation and update.
The resulting test reports are regulator-accepted artefacts used for NCCS security certification and downstream approval processes within India’s telecom regulatory ecosystem.
Deltaphi Labs’ NCCS Designation Portfolio
The NFV scope builds upon Deltaphi Labs’ existing NCCS designations under Certificate NCCS/TSTL/05 (as per Annexure-I of the designation certificate), which include:
- IP Routers – ITSAR-IPR-001
- Wi-Fi CPEs – ITSAR402122401
- ONT (PON family) – ITSAR403012311
- OLT (PON family) – ITSAR307072311
- NFV (Network Function Virtualization) – ITSAR404042308 [NEW]
In addition, Deltaphi Labs operates as a NABL-accredited cybersecurity testing laboratory, delivering both regulatory compliance testing and advanced risk-based security assessments.
This dual foundation—government designation and independent accreditation—positions Deltaphi Labs as a trusted national capability for telecom cybersecurity assurance.
What NFV Security Testing Covers in Practice
NFV security testing under ITSAR404042308 spans multiple critical domains, including:
- Management and control traffic protection using approved cryptographic mechanisms
- Strong authentication and authorization, including multi-attribute identity validation and secure AAA integration
- System and software integrity, covering secure boot, image integrity, patching, and hardening
- Network and data protection, including segmentation, filtering, and prevention of lateral movement
- Monitoring and attack prevention, ensuring effective logging, auditability, and resistance to brute-force, replay, and protocol-level attacks
Deltaphi Labs translates these requirements into architecture-aware test cases, aligned with real-world NFV deployments used by telecom operators and OEMs.
Deltaphi’s Methodology for NFV Security Evaluation
NFV security assessments at Deltaphi Labs follow a structured, telecom-grade methodology:
1. Architecture Review and Threat Modeling
Analysis of VNFs/CNFs, MANO components, virtualization layers, trust boundaries, and attack surfaces.
2. Configuration and Hardening Validation
Review of RBAC, API exposure, cryptographic settings, key management, logging, and secure configuration baselines.
3. Vulnerability Assessment and Penetration Testing
Combination of automated and manual techniques, including injection attacks, authentication bypass, replay attacks, fuzzing, and privilege escalation attempts.
4. Compliance Mapping and Reporting
Clear traceability between findings, ITSAR clauses, risk severity, and actionable remediation guidance.
This approach is supported by professionals with deep expertise in telecom protocols, offensive security, and secure system design.
Benefits for OEMs, Operators, and National Security
For OEMs and Solution Providers: The NFV designation offers a clear, regulator-recognized pathway to validate NFV products early, reducing certification risk, re-engineering effort, and late-stage delays. Engagement with Deltaphi Labs also helps stakeholders align early with NCCS guidelines and ITSAR updates, reducing approval timelines.
For Telecom Operators: It enables trusted, domestic evaluation of virtualized network functions forming the backbone of national networks.
At the National Level: This capability strengthens India’s trusted telecom ecosystem, supports Digital India and Atmanirbhar Bharat, and ensures that sensitive security testing artefacts remain within Indian jurisdiction.
Looking Ahead: Securing the Virtualized Future
As telecom networks continue evolving toward disaggregated, cloud-native, and software-defined architectures, NFV security testing will be central to protecting 5G, enterprise connectivity, and critical services.
With NFV added to its NCCS designation, Deltaphi Labs is positioned as a long-term partner to operators, OEMs, and policymakers in building a secure, resilient, and future-ready telecom infrastructure for India.
Deltaphi Labs’ Three National Accreditations
Deltaphi Labs operates within India’s official telecom and cybersecurity assurance ecosystem, supported by three national accreditations:
1. Telecommunication Engineering Centre (TEC)
Alignment with TEC-led conformity assessment and MTCTE certification frameworks, ensuring security testing integrates with national telecom approval processes.
2. National Centre for Communication Security (NCCS)
Designation as a Telecom Security Testing Laboratory (TSTL) for ITSAR-based security testing, including NFV, where Deltaphi Labs is India’s first and only designated lab.
3. NABL Accreditation
Recognition as a NABL-accredited cybersecurity testing laboratory, ensuring technical competence, impartiality, and internationally aligned testing practices.
Together, these accreditations establish Deltaphi Labs as a trusted national institution for telecom cybersecurity assurance.
About Deltaphi Labs
Deltaphi Labs Private Limited is a NABL-accredited cybersecurity testing laboratory (TSTL ID: DL0005, Certificate No. NCCS/TSTL/05) operating within India’s telecom conformity assessment ecosystem.
The laboratory supports NCCS-designated security testing and alignment with TEC-led certification frameworks, specializing in ITSAR-based telecom security, cloud security, and VAPT for critical infrastructure and telecom equipment.
Contact: info@deltaphi.in