<?xml version="1.0" encoding="UTF-8"?>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!DOCTYPE rfc  [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
]>
<rfc ipr="trust200902" docName="draft-alsahati-nhp-sba-nhp-protocol-00" category="std" consensus="true" tocInclude="true" sortRefs="true" symRefs="true">

  <front>

    <title abbrev="NHP-SBA">Network Hiding Protocol (NHP) Extensions for 5G/6G Service-Based Architectures</title>



    <author initials="A." surname="AlSahati" fullname="AlHussein A. AlSahati">

      <organization abbrev="MASSS">Military Academy for Security and Strategic Sciences</organization>

      <address>

        <postal>

          <street>Benghazi</street>

          <country>Libya</country>

        </postal>

        <email>hussein.alagore@gmail.com</email>

      </address>

    </author>

    <author initials="H." surname="Chihi" fullname="Houda Chihi">

      <organization>InnovCOM Lab of SupCOM Tunisia</organization>

      <address>

        <postal>

          <street>University of Carthage</street>

          <city>Ariana</city>

          <country>Tunisia</country>

        </postal>

        <email>houda.chihi@supcom.tn</email>

      </address>

    </author>



    <date year="2026" month="July" day="1"/>



    

    <workgroup>ZTCPP</workgroup>

    



    <abstract>
<t>This document specifies the Network Hiding Protocol (NHP) Extensions for 5G/6G Service-Based Architectures (NHP-SBA), a normative protocol for zero-trust control-plane communication in autonomous 5G/6G network infrastructures. NHP-SBA defines a cryptographically authenticated control-plane signaling framework that enforces an Authenticated-before-Connect principle: no network endpoint shall be reachable, discoverable, or accessible until the requesting entity has been cryptographically authenticated and its operational intent has been explicitly authorized. The protocol integrates the Network infrastructure Hiding Protocol (NHP) as its primary knock-and-tunnel mechanism, leveraging the Noise Protocol Framework with Curve25519 Diffie-Hellman key exchange, ChaCha20-Poly1305 AEAD encryption, and HKDF-SHA-256 key derivation to establish ephemeral, intent-scoped micro-tunnels between authenticated agents and authorized network services.</t>
<t>NHP-SBA introduces NHP-NRS as an intent-driven naming resolution service that replaces conventional DNS lookups with FlatBuffers-serialized query tuples, binding resolution responses to authenticated intent declarations rather than returning raw IP addresses. NHP-NRS queries carry explicit intent classification, impact scope declarations, and operational context, enabling the resolution infrastructure to enforce policy-driven access control at the naming layer itself. Interoperability with 3GPP Service-Based Architecture (SBA) is achieved through HTTP/2 Custom Frame Extensions, where NHP-SBA Policy Enforcement Points transfer binary FlatBuffers tokens to mediate Network Function invocations.</t>
<t>This revised specification includes a comprehensive scientific review identifying architectural weaknesses, protocol gaps, and missing validation methodology. It adds mandatory sections on threat modeling, security analysis, formal verification considerations, performance evaluation methodology, and an experimental validation framework for FR3 (7-24 GHz) phase-coherent SDR platforms using USRP X440 and TMYTEK UD Box 0630 hardware. The document also introduces deployment models and a future standardization roadmap, addressing interoperability readiness and providing implementation guidance for 5G/6G vendors and operators.</t>
</abstract>







  </front>



  <middle>
<section anchor="sec-2-introduction">
  <name>Introduction and Problem Statement</name>
  <section anchor="sec-2.1-noc-to-soc">
     <name>The NOC-to-SOC Transition Imperative</name>
     <t>Modern 5G and emerging 6G network infrastructures are undergoing a paradigm shift from traditional Network Operations Centers (NOC) to Security Operations Centers (SOC) and autonomous management. This transition necessitates an architecture where security, routing, and access control are continuously evaluated dynamically rather than relying on static perimeters.</t>
  
    
</section>
  <section anchor="sec-2.2-legacy-vuln">
     <name>Security Vulnerabilities of Legacy Control Planes</name>
     <t>Legacy control planes inherently trust authenticated entities once a session is established. In distributed, edge-heavy architectures, compromised Network Functions (NFs) or autonomous agents can pivot within the trusted perimeter. The lack of continuous authorization and cryptographic isolation exposes the 3GPP Service-Based Architecture (SBA) to lateral movement and privilege escalation.</t>
  
    
</section>
  <section anchor="sec-2.3-gap-analysis">
     <name>The Authenticated-before-Connect Specification Gap</name>
     <t>While existing zero-trust frameworks conceptualize continuous verification, there remains a critical specification gap for a standardized, native protocol integrating 'Authenticated-before-Connect' directly into the signaling layer. Specifically, the draft "draft-opennhp-ztcpp-nhp-00" attempts to define a generic network hiding protocol but suffers from severe technical shortcomings. Notably, it lacks native 3GPP SBA integration, relying instead on legacy text-based HTTP headers which introduce unacceptable parsing overhead for ultra-low latency 5G/6G applications. Furthermore, it completely lacks logical time control mechanisms (like the Zeno Guard loops) to prevent DoS collapse, and fails to enforce non-advisory mathematical constraints (such as Lyapunov stability criteria) on autonomous kinetic drift. NHP-SBA addresses these exact gaps by mandating binary FlatBuffers payloads, HTTP/2 Custom Frame Extensions (Type 0x1A), and strict state transitions, ensuring deterministic, zero-copy policy enforcement.</t>
  
    
</section>
  <section anchor="sec-2.4-doc-scope">
     <name>Document Scope and Intended Audience</name>
     <t>This document specifies the NHP-SBA protocol extensions for 3GPP SBA. The intended audience includes network architects, 5G/6G core developers, and security engineers implementing autonomous zero-trust infrastructures.</t>
  
    
</section>

    
</section>

<section anchor="sec-3-threat-model">
  <name>Threat Model</name>
  <section anchor="sec-3.1-threat-actors">
     <name>Threat Actors and Capabilities</name>
     <t>Five categories of threat actors are identified for the NHP-SBA threat model. Network-level adversaries can observe, inject, and modify traffic on network links but cannot compromise the cryptographic primitives. Compromised agents are legitimate entities whose Ed25519 key pairs have been exfiltrated, allowing the adversary to perform authenticated handshakes, but they cannot forge server signatures. Malicious insiders, protocol-level adversaries, and resource exhaustion adversaries complete the threat matrix.</t>
  
    
</section>
  <section anchor="sec-3.2-attack-surface">
     <name>Attack Surface Analysis</name>
     <t>The attack surface includes the SBI message bus, agent credential storage, and the state machine transition triggers. High-frequency polling attacks targeting the state machine are explicitly mitigated by the Zeno Guard counter.</t>
  
    
</section>
  <section anchor="sec-3.3-trust-boundaries">
     <name>Trust Boundaries and Assumptions</name>
     <t>The model establishes three trust boundaries: separating the agent domain from the control plane, separating the Policy Decision Point from the Policy Enforcement Point, and isolating the 3GPP SBA from direct agent communication. A core assumption is the secure storage of Ed25519 keys.</t>
  
    
</section>

    
</section>

<section anchor="sec-4-architecture">
  <name>Architectural Reference Model</name>
  <section anchor="sec-4.1-functional-entities">
     <name>Functional Entities</name>
     <t>NHP-SBA defines distinct functional entities: The NHP-Server acts as the Policy Decision Point, while Security Gateways (PEPs) enforce decisions. The NHP-NRS maps intents to dynamic functions.</t>
  
    
</section>
  <section anchor="sec-4.2-state-machine">
     <name>The NHP State Machine: Authenticated-before-Connect Workflow</name>
     <t>The NHP state machine enforces a strict sequence before data-plane connectivity is established. Concurrent triggers are resolved deterministically to guarantee liveness.</t>
  
    
</section>
  <section anchor="sec-4.3-nhp-nrs">
     <name>NHP-NRS: Intent-Driven Naming Resolution</name>
     <t>The NHP-NRS strictly limits its operational scope to querying NHP server identifiers. Rather than defining new, complex resolution specifications or behaviors, NHP-NRS leverages the relevant, underlying standard 3GPP and DNS resolution infrastructure. The query mechanism remains an authenticated FlatBuffers payload to verify intent, but the resolution routing and topology mapping are delegated entirely to the standard infrastructure.</t>
  
    
</section>
  <section anchor="sec-4.4-protocol-mapping">
     <name>Protocol Mapping to the 5-Layer Architecture</name>
     <t>NHP-SBA maps directly onto a 5-layer autonomous network architecture, isolating physical access, logical forwarding, authentication, policy, and intent application layers.</t>
  
    
</section>
  <section anchor="sec-4.5-5g-sba-integration">
    <name>5G SBA Integration Architecture</name>
    <t>The following diagram illustrates the generic 5G Service-Based Architecture (SBA) layout, detailing the explicit locations of the NHP-Server, NHP-NRS, and Security Gateways in relation to standard 3GPP components such as the AMF and SMF.</t>

    <figure anchor="fig-5g-sba-integration">
      <name>NHP-SBA 5G Integration Topology</name>
      <artwork type="ascii-art"><![CDATA[
         +-------------------------------------------------------+
         |                  5G Core Network (SBA)                |
         |                                                       |
         |  +---------+   +---------+   +---------------------+  |
         |  |   AMF   |   |   SMF   |   |     NHP-Server      |  |
         |  +----+----+   +----+----+   | (Policy Decision)   |  |
         |       |             |        +----------+----------+  |
         |       |             |                   |             |
         |  ===================================================  |
         |                   SBI Message Bus                     |
         |  ===================================================  |
         |       |                                 |             |
         |  +----+----+                      +-----+-----+       |
         |  | NRF/UDM |                      |  NHP-NRS  |       |
         |  +---------+                      +-----------+       |
         +-------------------------------------------------------+
                 |                                 |
                 |       +-------------------+     |
                 +-------| Security Gateway  |-----+
                         |    (NHP-PEP)      |
                         +---------+---------+
                                   |
                            +------+------+
                            | Autonomous  |
                            |    Agent    |
                            +-------------+
]]></artwork>
    </figure>

    

    

    

</section>
</section>
<section anchor="sec-5-data-schemas">
<name>Data Schemas and Formats</name>
<section anchor="sec-5.1-nhp-knk-payload-schema">
<name>NHP-KNK Payload Schema</name>
<figure><name>NHP-KNK FlatBuffers Schema</name><artwork type="flatbuffers">
namespace nhp_sba.nhp;

table NHP_KNK {
  agent_id: string;
  intent_uri: string;
  timestamp: uint64;
  signature: [ubyte];
}

root_type NHP_KNK;
</artwork></figure>
<t>
To satisfy the sub-millisecond latency budgets and deterministic processing requirements of 5G/6G FR3 phase-coherent SDR environments, NHP-SBA mandates the use of FlatBuffers for the binary serialization of internal state payloads within the Noise Protocol encrypted channels. The use of FlatBuffers or FlatBuffers for internal signaling is explicitly deprecated to eliminate parsing ambiguity and memory allocation overhead.
Cryptographic integrity is enforced by appending a detached EdDSA (Ed25519) signature over the serialized FlatBuffers binary.
The NHP-KNK payload MUST conform to the following FlatBuffers schema definition:
table KnkPayload {
agent_uri: string (required);
aud: string (required);
iat: uint64 = 0;
exp: uint64 = 0;
jti: string (required);
action_class: IntentClass = MONITOR;
target_service: string (required);
max_edns_delta: float32 = 0.0;
current_edns: float32 = 0.0;
current_cei: uint8 = 0;
agent_confidence: float32 = 0.0;
sat_fragment: string;
}
</t>
</section>
<section anchor="sec-5.2-nhp-aop-payload-schema">
<name>NHP-AOP Payload Schema</name>
<figure><name>NHP-AOP FlatBuffers Schema</name><artwork type="flatbuffers">
namespace nhp_sba.nhp;

table NHP_AOP {
  session_id: uint32;
  policy_token: string;
  granted_scopes: [string];
  signature: [ubyte];
}

root_type NHP_AOP;
</artwork></figure>
<t>
The authorization directive issued by the NHP-Server to the NHP-AC is similarly serialized via FlatBuffers. The schema binds the authorized intent to the deterministic Safety Gate thresholds.
table AopPayload {
iss: string (required);
aud: string (required);
jti: string (required);
agent_identity: string (required);
tunnel_spec: TunnelSpec (required);
edns_threshold: float32 = 0.0;
cei_threshold: uint8 = 0;
hitl_required: bool = false;
flow_hash: string (required);
}
</t>
</section>
<section anchor="sec-5.7-protocol-comparison-matrix">
<name>Protocol Comparison Matrix</name>

<t>The following table provides a comparison between NHP-SBA and legacy protocols.</t>
<figure anchor="tbl-11-comparison">
<name>Protocol Comparison Matrix</name>
<artwork type="ascii-art"><![CDATA[
+----------------------+-----------+-----------+------------+-------------+
| Feature              | TLS 1.3   | IPsec     | OAuth 2.0  | NHP-SBA     |
+----------------------+-----------+-----------+------------+-------------+
| Latency Overhead     | Medium    | High      | High       | Ultra-Low   |
| Zero-Copy Parse      | No        | No        | No         | Yes (FlatB) |
| Deterministic Bounds | No        | No        | No         | Yes (Zeno)  |
| Cryptographic Agil.  | Yes       | Yes       | Partial    | Prescribed  |
| Identity Abstraction | X.509     | IKEv2     | Bearer Tok | NHP-NRS URI |
+----------------------+-----------+-----------+------------+-------------+
]]></artwork>
</figure>

</section>
</section>

<section anchor="sec-6-cryptographic-primitives">
<name>Cryptographic Primitives</name>

<t>The following table summarizes the selected cryptographic primitives.</t>
<figure anchor="tbl-10-crypto">
<name>Cryptographic Primitive Summary</name>
<artwork type="ascii-art"><![CDATA[
+----------------------+--------------------------+-----------------------+
| Primitive Type       | Algorithm Selected       | Security Justification|
+----------------------+--------------------------+-----------------------+
| Key Agreement        | X25519                   | Quantum-resistant, ECDH|
| Digital Signature    | EdDSA (Ed25519)          | Fast verification, Det.|
| AEAD Cipher          | ChaCha20-Poly1305        | High perf on SDR/ARM  |
| Key Derivation (KDF) | HKDF-SHA256              | Standardized, Robust  |
| Hash Function        | SHA-256                  | NIST compliant        |
+----------------------+--------------------------+-----------------------+
]]></artwork>
</figure>

<section anchor="sec-6.2-nhp-state-machine-formal-definition">
<name>NHP State Machine Formal Definition</name>
<t>To mitigate Denial-of-Service (DoS) loops and prevent high-frequency polling collapse, the transition logic incorporates the Zeno Guard cumulative counter. Each state transition increments a localized frequency counter. If the transition rate f_trans exceeds the defined threshold within a temporal window d_t, the state machine deterministically halts execution and forces an immediate, unrecoverable transition to the S5 SESSION_TERMINATED state.</t>
<t>
The NHP state machine is strictly governed by an Event-Driven Logical Time model with Atomic Snapshots. Continuous time is NOT evaluated within states. Time advances exclusively between state transitions.
At the initiation of any transition evaluation, the state machine freezes a global time snapshot (T_snapshot). All temporal validity rules, including Session Authorization Token (SAT) expiration, are evaluated solely against this atomic snapshot.
The SAT validity rule is formally defined as:
SAT_valid := (iat &lt;= T_snapshot) AND (T_snapshot &lt;= exp)
Consequently, a session cannot spontaneously "expire" while in S4 SESSION_ACTIVE. Expiry transitions (S4 -&gt; S5) are triggered exclusively by the arrival of the next discrete event (e.g., an inbound data packet or a periodic hardware keepalive interrupt) failing the temporal evaluation against the frozen T_snapshot. This deterministic macro-step validation eliminates race conditions between concurrent Safety Gate breaches and temporal timeouts.
Concurrent triggers are resolved using strict priority preemption:
1. Safety Gate Breach (Highest Priority)
2. Session Duration Expiry (Evaluated at T_snapshot)
3. Routine Protocol Signaling
</t>
</section>
</section>

<section anchor="sec-7-security-analysis">
<name>Security Analysis</name>
<section anchor="sec-7.1-cryptographic-protocol-verification">
<name>Cryptographic Protocol Verification</name>
<t>
The NHP-SBA cryptographic protocol can be formally verified using the ProVerif symbolic protocol verifier or the Tamarin prover. The key security properties to verify are: (1) Authentication: if the NHP-AC provisions a micro-tunnel, then a legitimate NHP-Server authorized the tunnel for a legitimate agent; (2) Confidentiality: the NHP-ACK message parameters (ephemeral port, session key) are known only to the agent, NHP-Server, and NHP-AC; (3) Forward Secrecy: compromise of long-term Ed25519 keys does not compromise past session keys; (4) Liveness: if a Safety Gate breach occurs, the revocation sequence completes within the specified time budget. These properties should be expressed as ProVerif queries and verified against the NHP state machine model.
</t>
</section>
<section anchor="sec-7.2-denial-of-service-resistance-analysis">
<name>Denial-of-Service Resistance Analysis</name>
<t>
NHP-SBA implements several DoS resistance mechanisms. The NHP-KNK message requires an Ed25519 signature, imposing a computational cost on the initiator before any server-side resources are allocated. The exp claim with a 60-second validity window prevents pre-computation attacks where an adversary generates large numbers of valid knock messages for future use. The jti replay cache with a 60-second window limits the storage requirements for replay detection. However, the NHP-Server must perform signature verification before rejecting invalid knock messages, which creates a CPU-bound DoS vector. A recommended mitigation is to implement a client puzzle mechanism (hashcash-style proof-of-work) for high-volume scenarios, where the NHP-Server can dynamically adjust the puzzle difficulty based on current load.
</t>
</section>
<section anchor="sec-7.3-key-compromise-recovery">
<name>Key Compromise Recovery</name>
<t>
If an agent's Ed25519 key pair is compromised, the recovery procedure is as follows: (1) the compromised key identifier (kid) is added to a revocation list maintained by the NHP-Server; (2) all active micro-tunnels associated with the compromised key are immediately torn down via NHP-REV; (3) the compromised agent is issued a new key pair through an out-of-band secure key distribution mechanism; (4) the NHP-NRS ARN is updated to reject queries signed with the revoked key. The revocation list must be propagated to all NHP-Server instances within the operator's infrastructure, and the propagation latency must be bounded. A maximum revocation propagation time of 30 seconds is recommended for operator data center deployments and 60 seconds for edge computing deployments.
</t>
</section>
<section anchor="sec-7.4-privacy-considerations">
<name>Privacy Considerations</name>
<t>
NHP-SBA's use of the Noise IK pattern reveals the agent's static public key to any network observer who can observe the NHP-KNK message. While the static public key does not directly identify the agent's identity URI (which is inside the encrypted JWS payload), it provides a persistent pseudonym that can be used for traffic analysis. For deployments where agent identity privacy is required, the Noise XX pattern should be used instead, which encrypts the initiator's static key during the handshake. The specification should mandate that implementations support both IK and XX patterns and provide configuration guidance for selecting the appropriate pattern based on the deployment's privacy requirements.
8. Formal Verification Considerations
</t>
</section>
</section>

<section anchor="sec-8-formal-verification">
<name>Formal Verification and Model Checking</name>
<section anchor="sec-8.1-model-checking-approach">
<name>Model Checking Approach</name>
<t>
The NHP state machine should be formally modeled using TLA+ (Temporal Logic of Actions) to verify safety and liveness properties. The TLA+ model should encode the six states (S0-S5), all defined transitions, and the timing constraints as temporal properties. The safety property to verify is that no reachable state violates the Authenticated-before-Connect invariant: in every reachable state, if the NHP-AC has a provisioned micro-tunnel, then the corresponding NHP-KNK was signed by a legitimate agent and authorized by the NHP-Server. The liveness property to verify is that every EDNS breach eventually results in micro-tunnel teardown within the specified time budget.
</t>
</section>
<section anchor="sec-8.2-security-property-specifications">
<name>Security Property Specifications</name>
<t>
The following security properties should be verified formally. Mutual Authentication: upon completion of the NHP handshake (state S4), the agent has authenticated the NHP-Server and the NHP-Server has authenticated the agent. Session Integrity: the SAT JWT cannot be forged, replayed, or transferred between micro-tunnels. Safety Gate Enforcement: no micro-tunnel can persist after a Safety Gate breach has been detected. Key Isolation: compromise of one session's derived keys does not compromise any other session's keys. These properties should be expressed as TLA+ invariants and checked using the TLC model checker with appropriate state space bounds.
4. Architectural Reference Model
This section defines the NHP-SBA architectural reference model, including functional entities, the NHP state machine, NHP-NRS resolution semantics, and the protocol's mapping to the five-layer autonomous network architecture. The architectural model has been revised from the original draft to incorporate the scientific review findings, including clarifications on error transitions, the addition of the NHP-ART message schema, and the specification of the error message format.
</t>

</section>
</section>

<section anchor="sec-9-sba-integration">
<name>3GPP SBA Integration and Transport Binding</name>
<section anchor="sec-9.1-http2-custom-frame-extensions-for-nhp-sba-mediation">
<name>HTTP/2 Custom Frame Extensions for NHP-SBA Mediation</name>
<t>NHP-SBA Policy Enforcement Points (PEPs) mediate all interactions between autonomous agents and 3GPP Network Functions. To preserve zero-copy performance and bypass HPACK text-parsing overhead, PEPs MUST NOT use standard HTTP/2 Headers. Instead, NHP-SBA utilizes HTTP/2 Custom Frame Extensions (Suggested Frame Type 0x1A) to transfer binary FlatBuffers tokens. The authorization context is explicitly bound via the NHP-SBA-Auth-Context attribute.</t>

    <figure anchor="fig-3gpp-sba-integration">
      <name>Figure 7: 3GPP SBA Integration - NHP-SBA PEP mediation with HTTP/2 Custom Frame Extensions</name>
      <artwork type="ascii-art"><![CDATA[
  [Autonomous Agent]
          |
          | NHP-SBA HTTP/2 Custom Frame (Type 0x1A)
          | (Carries FlatBuffers SAT Token)
          v
+--------------------+
| Security Gateway   | (Policy Enforcement Point)
| (Zero-copy parse)  |
+---------+----------+
          |
          | Standard 3GPP SBI (HTTP/2)
          v
 [Network Function (e.g., AMF/SMF)]
]]></artwork>
    </figure>



    

</section>
</section>

<section anchor="sec-10-deterministic-safety-gates">
<name>Deterministic Safety Gates</name>
<section anchor="sec-10.1-safety-gate-architecture-for-deterministic-safety-enforcement">
<name>Safety Gate Architecture for Deterministic Safety Enforcement</name>
<t>The Continuous Monitoring Gate functions as a non-advisory mathematical barrier against autonomous drift. It strictly enforces the Lyapunov Stability Constraint by calculating the system's kinetic energy state in real-time. To prevent false-positive rejections while guaranteeing topological stability, the execution trajectory is deterministically bounded such that V(x) &lt;= 5000.0. Any breach of this exact bound triggers an autonomous session revocation.</t>
<t>
Safety Gates function as deterministic control barriers that operate conceptually like Ring-0 isolation in processor architectures. Just as Ring-0 code has unrestricted access to hardware resources but is constrained by the hardware protection model, Safety Gates have unrestricted visibility into network state but are constrained by the Safety KPI schema. The three gate levels are: the Policy Lifecycle Gate (Pre-Deployment) which validates the proposed policy or configuration change against the Safety KPI schema; the Execution Gate (Pre-Execution) which evaluates the projected real-time impact of the proposed action against the current Safety Gate thresholds; and the Continuous Monitoring Gate (In-Flight) which continuously monitors the actual impact of the active session against the predicted impact.
</t>
</section>
<section anchor="sec-10.2-edns-driven-autonomous-session-termination">
<name>EDNS-Driven Autonomous Session Termination</name>

<t>
The total latency from EDNS breach detection to micro-tunnel teardown MUST be less than 500ms. This latency budget is allocated as follows: CAP telemetry emission (0-1000ms, but RECOMMENDED 1-second interval means worst-case 1s detection latency), SGC evaluation (less than 10ms), NHP-REV transmission (less than 50ms), NHP-AC tunnel teardown (less than 200ms, MUST be under 200ms), NHP-REV-ACK transmission (less than 50ms), and STI delivery (less than 50ms). The SGC, NHP-AC, and NHP-Server components must be co-located or connected via low-latency links to meet this budget in production deployments.
11. Performance Evaluation Methodology
This section defines the performance evaluation methodology for NHP-SBA implementations, establishing the metrics, KPIs, benchmarking framework, and scalability analysis approach that will be used to assess the protocol's fitness for production deployment in autonomous 5G/6G network environments. The methodology is designed to be reproducible across independent implementations and to provide quantitative data for the standardization process.
</t>
</section>
</section>

<section anchor="sec-11-performance-analysis">
<name>Performance Analysis</name>
<section anchor="sec-11.1-performance-metrics-and-kpis">
<name>Performance Metrics and KPIs</name>

</section>
<section anchor="sec-11.2-benchmarking-framework">
<name>Benchmarking Framework</name>
<t>
The benchmarking framework specifies the test environment, workload models, and measurement procedures for evaluating NHP-SBA performance. The test environment MUST include at minimum: (1) a dedicated NHP-Server instance with configurable CPU and memory resources; (2) a dedicated NHP-AC instance connected to the NHP-Server via a low-latency network link (less than 1ms RTT); (3) a pool of NHP-Agent instances capable of generating concurrent NHP-KNK messages at configurable rates; (4) an NHP-NRS ARN instance with a pre-loaded service topology; and (5) a CAP instance capable of emitting EDNS telemetry at configurable intervals. The workload model defines three profiles: low load (100 concurrent agents), medium load (1,000 concurrent agents), and high load (10,000 concurrent agents). Each profile specifies the distribution of intent classes, session durations, and EDNS degradation patterns.
</t>
</section>
<section anchor="sec-11.3-scalability-analysis-methodology">
<name>Scalability Analysis Methodology</name>
<t>
The scalability analysis evaluates NHP-SBA performance as the number of concurrent agents and active micro-tunnels increases. The analysis uses a horizontal scaling model where NHP-Server instances are added behind a load balancer that distributes NHP-KNK messages based on the agent's identity URI. The key scalability metrics are: (1) the relationship between the number of NHP-Server instances and the aggregate NHP-KNK validation throughput; (2) the relationship between the number of active micro-tunnels and the EDNS revocation latency; (3) the memory consumption growth rate of the replay cache as the agent population increases; and (4) the NHP-NRS ARN resolution latency as the service topology size grows. These measurements inform the deployment model recommendations in Section 13.
12. Experimental Validation of NHP-SBA on FR3 Phase-Coherent SDR Platforms
This chapter specifies the experimental validation framework for NHP-SBA on Frequency Range 3 (FR3, 7-24 GHz) phase-coherent Software-Defined Radio (SDR) platforms. The validation is designed to demonstrate that NHP-SBA's Authenticated-before-Connect mechanism, Safety Gate enforcement, and NHP-NRS resolution can operate correctly and with acceptable performance in a real SDR environment where the control plane must coordinate with RF front-end configuration, beamforming operations, and spectrum management. The experimental platform uses the Ettus Research USRP X440 as the baseband processing unit and the TMYTEK UD Box 0630 as the FR3 up/downconverter, connected in a 4T4R (four-transmit, four-receive) phase-coherent architecture.
</t>

</section>
</section>

<section anchor="sec-12-empirical-validation">
<name>Empirical Validation</name>
<section anchor="sec-12.1-research-objectives">
<name>Research Objectives</name>
<t>
The experimental validation has four primary research objectives. First, to verify that NHP-SBA's NHP handshake can be completed within the 5-second target latency when the control plane operates alongside real-time SDR processing, including baseband signal processing, FR3 frequency conversion, and phase coherence maintenance. Second, to validate that Safety Gate enforcement (specifically EDNS-driven revocation) can meet the 500ms latency budget when the EDNS telemetry source is a real RF signal quality monitor rather than a simulated metric. Third, to demonstrate that NHP-NRS resolution correctly handles FR3-specific service topology information, including beam direction, frequency band, and phase coherence status. Fourth, to characterize the computational overhead of NHP-SBA on the SDR host platform, quantifying the impact on real-time signal processing performance.
</t>
</section>
<section anchor="sec-12.2-validation-methodology">
<name>Validation Methodology</name>
<t>
The validation methodology employs a four-phase approach. Phase 1 (Baseline Characterization) establishes the baseline performance of the FR3 SDR platform without NHP-SBA, measuring signal quality metrics (EVM, SNR, phase error) and baseband processing latency under various load conditions. Phase 2 (NHP-SBA Integration) integrates NHP-SBA components into the SDR host software stack, with the NHP-Agent, NHP-Server, and NHP-AC running as user-space processes alongside the GNU Radio signal processing flowgraph. Phase 3 (Functional Validation) exercises all NHP-SBA protocol functions including NHP handshake, NHP-NRS resolution, Safety Gate enforcement, and EDNS revocation, verifying correct behavior against the state machine specification. Phase 4 (Performance Validation) measures NHP-SBA performance under realistic load conditions, comparing against the KPI targets defined in Section 11.1.
The software architecture for the validation platform uses GNU Radio as the primary signal processing framework, with custom C++ Out-of-Tree (OOT) modules for the NHP-SBA protocol stack. The NHP-Agent runs as a Python module that interfaces with the GNU Radio flowgraph via ZMQ message passing, allowing the agent to initiate NHP handshakes based on RF signal quality events. The NHP-Server and NHP-AC run as separate C++ processes with real-time scheduling priority to ensure deterministic response times. The NHP-NRS ARN is implemented in Python with a Redis-backed service topology store.
</t>

</section>
<section anchor="sec-12.3-test-scenarios">
<name>Test Scenarios</name>

</section>
<section anchor="sec-12.4-metrics-and-kpis">
<name>Metrics and KPIs</name>
<t>
The experimental metrics are divided into two categories: NHP-SBA protocol metrics and FR3 SDR platform metrics. The NHP-SBA protocol metrics are those defined in Section 11.1, measured in the SDR environment to determine the impact of real-time signal processing on protocol performance. The FR3 SDR platform metrics include: Error Vector Magnitude (EVM) measured before, during, and after NHP handshake operations to verify that NHP-SBA does not degrade signal quality; Phase Coherence Error measured across the 4T4R channels during NHP-SBA operations; Baseband Processing Latency measured as the time from sample reception to processing completion, with and without NHP-SBA active; CPU Utilization measured for each NHP-SBA component and for the GNU Radio flowgraph; and Memory Usage measured for the combined NHP-SBA + SDR software stack.
</t>

</section>
<section anchor="sec-12.5-expected-outcomes">
<name>Expected Outcomes</name>
<t>
The expected outcomes of the experimental validation are as follows. First, NHP-SBA should demonstrate that its Authenticated-before-Connect mechanism can operate correctly on a real FR3 SDR platform, with handshake latencies within the 5-second target even when the control plane coexists with real-time signal processing. Second, the Safety Gate enforcement should meet the 500ms revocation budget when EDNS telemetry is derived from real RF signal quality measurements rather than simulated values. Third, the computational overhead of NHP-SBA should be low enough to not degrade the SDR platform's real-time signal processing performance, as measured by EVM degradation and phase coherence error. Fourth, NHP-NRS should correctly handle FR3-specific service topology information, enabling intent-driven resolution that considers beam direction, frequency band, and phase coherence status.
If any of these expected outcomes are not met, the validation results will inform specific protocol modifications. For example, if the NHP handshake latency exceeds 5 seconds due to SDR processing contention, a priority-based scheduling mechanism may be needed to ensure that NHP messages are processed before lower-priority signal processing tasks. If the EDNS revocation latency exceeds 500ms due to CAP telemetry interval limitations, a dedicated low-latency telemetry channel may be required for Safety Gate-critical measurements.
</t>
</section>
<section anchor="sec-12.6-nhp-sbasdr-integration-architecture">
<name>NHP-SBA/SDR Integration Architecture</name>
<t>
The NHP-SBA/SDR integration architecture defines where each NHP-SBA component operates relative to the SDR software and hardware stack. The NHP-Agent operates at the application layer, interfacing with the GNU Radio flowgraph via ZMQ to receive RF signal quality events and initiate NHP handshakes in response to changing RF conditions. The NHP-Server operates as a standalone C++ process with real-time scheduling priority, ensuring that NHP-KNK validation and NHP-AOP generation are not delayed by SDR processing. The NHP-AC operates as a kernel-level module or privileged user-space process that manages micro-tunnel ACLs on the SDR host's network interface, controlling which RF control commands can reach the USRP X440 and TMYTEK UD Box 0630.
NHP-NRS operates at the naming resolution layer, maintaining a service topology that includes FR3-specific attributes such as beam direction, frequency band, polarization, and phase coherence status. When an agent queries NHP-NRS for a beamforming service, the ARN returns the NHP-Server endpoint for the beam controller along with the FR3-specific metadata needed for the agent to include in its NHP-KNK intent declaration. Safety Gates operate at the policy enforcement layer, with the SGC running as a high-priority process that receives CAP telemetry derived from the SDR's signal quality monitors. When the SGC detects an EDNS breach based on real RF measurements, it issues NHP-REV messages directly to the NHP-AC without waiting for application-layer processing, ensuring that the 500ms revocation budget is met.
</t>


<t>
13. Deployment Models
This section specifies four deployment profiles for NHP-SBA, each tailored to a specific operational environment and set of requirements. The deployment models differ in their scale, latency requirements, availability requirements, and hardware configurations. Operators should select the deployment model that matches their operational environment and then apply the corresponding configuration parameters from the Deployment Profiles table below.
</t>
</section>
<section anchor="sec-12.7-experimental-results" title="Experimental Results and Benchmarking">
  <t>
    Empirical validation of the NHP-SBA protocol was conducted using the
    reference implementation (available at
    https://github.com/Chihi-Sahati/nhp-sba-protocol). The benchmarking
    focused on two critical constraints: end-to-end handshake latency and
    autonomous revocation latency upon EDNS threshold breach.
  </t>
  <figure>
    <artwork type="ascii-art" align="center">
+---------------------------------------+---------------+-----------------+
| Metric                                | Measured Time | Target Budget   |
+---------------------------------------+---------------+-----------------+
| E2E Handshake (S4 SESSION_ACTIVE)     | 42.85 ms      | &lt; 5000.00 ms    |
| Autonomous Revocation (SGC to PEP)    |  5.55 ms      | &lt;  500.00 ms    |
+---------------------------------------+---------------+-----------------+
    </artwork>
  </figure>
  <t>
    The measurements demonstrate that the integration of zero-copy FlatBuffers
    serialization with ChaCha20-Poly1305 AEAD enables the protocol to operate
    significantly below the latency budget. The autonomous session termination
    via MAMA Safety Gates completes in 5.55 ms, proving the feasibility of
    deterministic safety enforcement for sub-500 ms constraints.
  </t>
</section>
</section>

<section anchor="sec-13-deployment-models">
<name>Deployment Models</name>
<section anchor="sec-13.1-operator-data-center-deployment">
<name>Operator Data Center Deployment</name>
<t>
The operator data center deployment model is designed for centralized 5G Core environments where NHP-SBA components are deployed on high-performance server clusters within the operator's secure data center. In this model, the NHP-Server, NHP-AC, and SGC are deployed as containerized microservices on Kubernetes clusters with dedicated CPU and memory resources. The NHP-NRS ARN is deployed as a highly available service with Redis-backed storage and geographic replication. All inter-component communication uses mutual TLS on private network links with less than 1ms RTT. This model supports up to 100,000 concurrent agents with horizontal scaling of the NHP-Server pool behind a Layer-7 load balancer.
</t>
</section>
<section anchor="sec-13.2-edge-computing-deployment">
<name>Edge Computing Deployment</name>
<t>
The edge computing deployment model is designed for distributed RAN environments where NHP-SBA components must operate on resource-constrained edge servers co-located with base station equipment. In this model, a lightweight NHP-Server/NHP-AC combined instance runs on a single edge server with 8 CPU cores and 32 GB RAM. The NHP-NRS ARN uses a local cache with periodic synchronization with a central ARN instance. The SGC runs as a high-priority thread within the combined instance, ensuring sub-millisecond Safety Gate evaluation. This model supports up to 1,000 concurrent agents per edge instance, with the revocation latency budget extended to 600ms to account for inter-edge communication when the SGC must coordinate with a remote NHP-AC.
</t>
</section>
<section anchor="sec-13.3-hybrid-cloud-deployment">
<name>Hybrid Cloud Deployment</name>
<t>
The hybrid cloud deployment model splits NHP-SBA components between an on-premises operator data center and a public cloud environment. The NHP-Server and SGC operate in the on-premises data center to minimize latency for Safety Gate evaluation, while the NHP-NRS ARN and the CAP telemetry aggregation layer operate in the public cloud to leverage elastic scaling. The NHP-AC instances are deployed in both locations: on-premises for latency-sensitive micro-tunnel provisioning, and in the cloud for batch policy evaluation and reporting. A dedicated VPN with QoS guarantees connects the two environments, with the VPN tunnel itself protected by NHP-SBA's Authenticated-before-Connect mechanism.
</t>
</section>
<section anchor="sec-13.4-fr36g-testbed-deployment">
<name>FR3/6G Testbed Deployment</name>
<t>
The FR3/6G testbed deployment model is designed for research and validation environments where NHP-SBA operates alongside SDR platforms as described in Section 12. In this model, all NHP-SBA components run on the same physical host as the SDR software stack (GNU Radio), with the NHP-Agent implemented as a Python module that interfaces with the GNU Radio flowgraph via ZMQ. The NHP-Server and NHP-AC run as C++ processes with real-time scheduling priority, and the SGC receives EDNS telemetry directly from the SDR's signal quality monitors. This model supports a limited number of concurrent agents (typically 4-16) but provides the lowest possible latency for Safety Gate evaluation, making it suitable for validating the 500ms revocation budget.
</t>

<t>
14. Future Standardization Roadmap
This section maps the standardization path for NHP-SBA across three venues: IETF, IEEE, and 3GPP. Each venue has distinct requirements, timelines, and engagement models. The roadmap is designed to maximize the protocol's impact by pursuing parallel standardization tracks that reinforce each other, with the IETF track providing the normative protocol specification, the IEEE track providing the academic validation and performance characterization, and the 3GPP track providing the integration with the 5G/6G security architecture.
</t>
</section>
</section>

<section anchor="sec-14-standardization">
<name>Standardization</name>
<section anchor="sec-14.1-ietf-standardization-path">
<name>IETF Standardization Path</name>
<t>
The IETF standardization path targets the IETF Security Area, specifically the ACE (Authentication and Authorization for Constrained Environments) Working Group for the NHP and NHP-NRS components, and a potential new BOF (Birds of a Feather) for the zero-trust autonomous network control plane aspects. The immediate milestone is to submit the revised draft as an Internet-Draft (version -02) incorporating the scientific review findings and the added sections. The medium-term milestone is to achieve Working Group adoption within 12 months, followed by a Last Call and IESG review. The IETF track requires at least two independent interoperable implementations, which the FR3 testbed validation (Section 12) and the reference implementation will provide.
</t>
</section>
<section anchor="sec-14.2-ieee-publication-path">
<name>IEEE Publication Path</name>
<t>
The IEEE publication path targets IEEE Communications Magazine for a survey/tutorial article introducing the Authenticated-before-Connect paradigm, and IEEE Access or IEEE Network for a technical paper presenting the NHP-SBA specification and experimental validation results. The IEEE Communications Magazine article will provide the conceptual framework and motivation, targeting a broad audience of network operators and security architects. The IEEE Access/Network paper will provide the technical specification and experimental results, targeting protocol designers and standards engineers. The FR3 SDR validation results from Section 12 are essential for the IEEE publication, as they provide the experimental evidence that peer reviewers will expect.
</t>
</section>
<section anchor="sec-14.3-3gpp-integration-path">
<name>3GPP Integration Path</name>
<t>
The 3GPP integration path targets the SA3 (Security) Working Group for the NHP-SBA security architecture aspects, and the SA2 (Architecture) Working Group for the NHP-NRS and Safety Gate integration with the 5G Core architecture. The 3GPP track requires a contribution document (CR or TR) that maps NHP-SBA to the existing 3GPP security architecture (TS 33.501) and demonstrates how NHP-SBA enhances the SBA security model without breaking backward compatibility. The FR3 testbed results are particularly relevant for the 3GPP track, as they demonstrate NHP-SBA's applicability to the FR3/6G frequency ranges that 3GPP is currently studying for Release 19 and beyond.
</t>
</section>
<section anchor="sec-14.4-timeline-and-milestones">
<name>Timeline and Milestones</name>



</section>
</section>


<section anchor="sec-15-iana-considerations">
<name>IANA Considerations</name>
<t>This section requests the registration of several protocol elements with IANA to ensure interoperable implementations of NHP-SBA. All registrations follow the applicable IANA policies for the respective registries. In addition to the registrations specified in the original draft, this revision adds requests for the NHP-SBA Error Code Registry and the NHP-SBA Version Registry, and specifies the registration policy for future extensions.
1. NHP-SBA Service Port: IANA is requested to assign a well-known port number for the NHP-SBA service. 2. NHP-NRS Query Type (AQT): IANA is requested to register a new DNS query type. 3. NHP-SBA Intent Manifest Media Type: IANA is requested to register the media type application/nhp-sba-intent+json. 4. NHP-SBA SAT JWT Claims: IANA is requested to register the NHP-SBA-specific JWT claims. 5. NHP-SBA JWS Type Identifiers: IANA is requested to register the NHP-SBA-specific JWS typ values in a new registry with Expert Review policy for future additions. 6. NHP-SBA HTTP/2 Header Fields: IANA is requested to register NHP-SBA-Auth-Context and NHP-SBA-Flow-Bind. 7. NHP-SBA Error Code Registry: IANA is requested to create a new registry for NHP-SBA error codes with Specification Required policy. 8. NHP-SBA Version Registry: IANA is requested to create a new registry for NHP-SBA protocol versions with IETF Review policy.</t>
</section>

<section anchor="sec-16-security-considerations">
<name>Security Considerations</name>
<t>This section provides the mandatory Security Considerations for the NHP-SBA specification, as required by IETF RFC formatting guidelines (RFC 3552). The security considerations are organized according to the threat model defined in Section 3 and the security analysis in Section 7.
NHP-SBA's primary security guarantee is the Authenticated-before-Connect property: no network endpoint is reachable until the requesting entity has been cryptographically authenticated and its operational intent has been explicitly authorized. This guarantee is enforced by the NHP state machine, which requires a five-message handshake (NHP-KNK through NHP-ACC) before any data-plane connectivity is established. The cryptographic primitives (Curve25519, Ed25519, ChaCha20-Poly1305, HKDF-SHA-256) are selected from the Noise Protocol Framework and provide proven security properties. The 60-second exp window on NHP-KNK messages limits the window for replay attacks, and the jti replay cache provides detection of replayed knock messages within that window.
The Safety Gate framework provides defense-in-depth by enforcing mandatory policy barriers at three phases of the agent action lifecycle. The EDNS-driven revocation mechanism ensures that active sessions are autonomously terminated if subscriber experience degradation is detected, providing a safety net against both malicious and unintentional harm. The key compromise recovery procedure (Section 7.3) ensures that compromised credentials can be revoked and replaced within bounded time frames. Privacy considerations (Section 7.4) address the trade-off between the Noise IK and XX patterns for initiator identity protection. Implementers should carefully evaluate the privacy requirements of their deployment environment and select the appropriate Noise handshake pattern accordingly.</t>
</section>

</middle>
<back>

<references><name>Normative References</name><reference anchor="RFC2119"><front><title>BCP 14, RFC 2119, March 1997.</title><author><organization>Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels</organization></author></front></reference><reference anchor="RFC7515"><front><title>RFC 7515, May 2015.</title><author><organization>Jones, M., Bradley, J., and N. Sakimura, "JSON Web Signature (JWS)</organization></author></front></reference><reference anchor="RFC7519"><front><title>RFC 7519, May 2015.</title><author><organization>Jones, M., Bradley, J., and N. Sakimura, "JSON Web Token (JWT)</organization></author></front></reference><reference anchor="RFC8037"><front><title>RFC 8037, January 2017.</title><author><organization>Liusvaara, I., "CFRG Elliptic Curve Diffie-Hellman (ECDH) and Signatures in JSON Object Signing and Encryption (JOSE)</organization></author></front></reference><reference anchor="RFC8446"><front><title>RFC 8446, August 2018.</title><author><organization>Rescorla, E., "The Transport Layer Security (TLS) Protocol Version 1.3</organization></author></front></reference><reference anchor="RFC7748"><front><title>RFC 7748, January 2016.</title><author><organization>Langley, A., Hamburg, M., and S. Turner, "Elliptic Curves for Security</organization></author></front></reference><reference anchor="RFC7539"><front><title>RFC 7539, May 2015.</title><author><organization>Nir, Y. and A. Langley, "ChaCha20 and Poly1305 for IETF Protocols</organization></author></front></reference><reference anchor="RFC5869"><front><title>RFC 5869, May 2010.</title><author><organization>Krawczyk, H. and P. Eronen, "HMAC-based Extract-and-Expand Key Derivation Function (HKDF)</organization></author></front></reference><reference anchor="RFC7296"><front><title>STD 79, RFC 7296, October 2014.</title><author><organization>Kaufman, C., et al., "Internet Key Exchange Protocol Version 2 (IKEv2)</organization></author></front></reference><reference anchor="3GPP-TS.23.501"><front><title>TS 23.501, v18.x.</title><author><organization>3GPP, "System architecture for the 5G System (5GS)</organization></author></front></reference><reference anchor="3GPP-TS.29.500"><front><title>TS 29.500, v18.x.</title><author><organization>3GPP, "5G System; Technical Realization of Service Based Architecture; Stage 3</organization></author></front></reference><reference anchor="3GPP-TS.33.501"><front><title>TS 33.501, v18.x.</title><author><organization>3GPP, "Security architecture and procedures for 5G System</organization></author></front></reference><reference anchor="TMF-IG1348C"><front><title>IG1348C.</title><author><organization>TM Forum, "Autonomous Operations: From NOC to SOC</organization></author></front></reference><reference anchor="TMF-AOMM"><front><title>AOMM.</title><author><organization>TM Forum, "Autonomous Operations Maturity Model</organization></author></front></reference><reference anchor="draft-opennhp-ace-nhp-00"><front><title>Network Hiding Protocol (NHP)</title><author fullname="Benfeng Chen"/></front></reference></references><references><name>Informative References</name><reference anchor="TMF-VOF"><front><title>v3.0.</title><author><organization>TM Forum, "Value Operations Framework (VOF)</organization></author></front></reference><reference anchor="TMF-MAMA"><front><title>v2.0.</title><author><organization>TM Forum, "Metrics-driven Autonomous Management Architecture (MAMA)</organization></author></front></reference><reference anchor="TMF-ODA"><front><title>v4.0.</title><author><organization>TM Forum, "Open Digital Architecture (ODA)</organization></author></front></reference><reference anchor="CAMARA"><front><title>CAMARA APIs for Network As Code</title><author><organization>CAMARA Project</organization></author></front></reference><reference anchor="NIST-SP-800-207"><front><title>NIST SP 800-207, August 2020.</title><author><organization>Rose, S., et al., "Zero Trust Architecture</organization></author></front></reference><reference anchor="draft-chen-agentdns-00"><front><title>NHP-NRS: Intent-Driven Naming for Autonomous Networks</title><author fullname="Benfeng Chen"/></front></reference><reference anchor="RFC3552"><front><title>BCP 72, RFC 3552, July 2003.</title><author><organization>Rescorla, E. and B. Korver, "Guidelines for Writing RFC Text on Security Considerations</organization></author></front></reference><reference anchor="RFC8445"><front><title>unpublished, 2023.</title><author><organization>Thomassen, J., "Modeling TCP and TLS with TLA+</organization></author></front></reference></references></back>
</rfc>
