No full-text available
To read the full-text of this research,
you can request a copy directly from the authors.
The potential of 5G experimentation-as-a-service paradigm for operators and vertical industries: the case of 5G-VINNI facility
... The technology world is continually changing and developing to advance the current technologies with new services and features that make people's lives easier, faster, and better. As an advancement of 4G, 5G technology opens up the horizon to improve many other services and technologies, owing to its superior bandwidth and download speeds [1]. The number of subscribers of 5G technology is predicted to increase 10 times by 2025 and reach 1.7 billion [2]. ...
5G technology is spreading extremely quickly. Many services, including Voice Over Internet Protocol (VoIP), have utilized the features of 5G technology to improve their performance. VoIP service is gradually ruling the telecommunication sector due to its various advantages (e.g., free calls). However, VoIP service wastes a substantial share of the VoIP 5G network’s bandwidth due to its lengthy packet header. For instance, the share of the packet header from bandwidth and channel time reaches 85.7% of VoIP 5G networks when using the IPv6 protocol. VoIP designers are exerting considerable efforts to solve this issue. This paper contributes to these efforts by designing a new technique named Zeroize (zero sizes). The core of the Zeroize technique is based on utilizing the unnecessary fields of the IPv6 protocol header to keep the packet payload (voice data), thereby reducing or “zeroizing” the payload of the VoIP packet. The Zeroize technique substantially reduces the expanded bandwidth of VoIP 5G networks, which is reflected in the wasted channel time. The results show that the Zeroize technique reduces the wasted bandwidth by 20% with the G.723.1 codec. Therefore, this technique successfully reduces the bandwidth and channel time of VoIP 5G networks when using the IPv6 protocol.
... The world of technology world is continually changing and developing to advance the current technologies with new services and features that make people's lives easier, faster, and better. As an advancement of 4G, 5G technology opens up the horizon to improve many other services and technologies owing to its superior bandwidth and download speeds [1]. The number of subscribers of 5G technology is predicted to increase 10 times by 2025 and reach 1.7 billion [2]. ...
5G technology propagation curve is ascending rapidly. 5G will open up the horizon to improve the performance of many other IP-based services such as voice over IP (VoIP). VoIP is a worldwide technology that is expected to rule the telecommunication world in the near future. However, VoIP has expended a significant part of the 5G technology bandwidth with no valuable use owing to its lengthy packet header. This issue even worsens when VoIP works in IPv6 networks, where the wasted bandwidth and airtime may reach 85.7% of 5G networks. VoIP developers have exerted many efforts to tackle this snag. This study adds to these efforts by proposing a new method called Zeroize (zero sizes). The main idea of the Zeroize method is to use superfluous fields of the IPv6 protocol header to carry the digital voice data of the packet and, thus, reduce or zeroize the VoIP packet payload. Although simple, the Zeroize method achieves a considerable reduction of the wasted bandwidth of 5G networks, which also directly affects the consumed airtime. The performance analysis of the Zeroize method shows that the consumed bandwidth is saved by 20% with the G.723.1 codec. Thus, the Zeroize method is a promising solution to reduce the wasted bandwidth and airtime of 5G networks when running VoIP over IPv6.
... (1) A hierarchical identification data structure for the 5G application layer is designed. (2) A composable and potent multifactor service authentication and session key agreement protocol is proposed, which provides 4 grades of security levels of authentication. Furthermore, the proposed protocol is not the simple combination of three authentication factors but flexibly integrates them to ensure the security and the feasibility of the 5G service system. ...
The fifth-generation (5G) mobile communication technology has already deployed commercially and become a global research focus. The new features of 5G include unlimited information exchange, a large variety of connections with independent energy, and diversified high transmission rate services. Collective synergy of services is expected to change the way of life and future generations and introduce new converged services to the ICT industry. Different application services have to meet differentiated security demands. From the perspective of security, in order to support the multiservice of 5G services, it is necessary to consider the new security mechanism driven by the service. Based on 5G massive data stream, the 5G system can provide customized real-world services for potential users and reduce the user experience gap in different scenarios. However, 3GPP Extensible Authentication Protocol (EAP), which is the present entity authentication mechanism for the 5G service layer, is only an individual authentication architecture and unable to fulfill the flexible security objectives of differentiated services. In this paper, we present a new hierarchical identity management framework as well as an adaptable and composable three-factor authentication and session key agreement protocol for different applications in 5G multiservice systems. Finally, we propose an authorization process by combining with the proposed three-factor authentication mechanism and Service-Based Architecture (SBA) proposed by the 3GPP committee. The proposed mechanism can concurrently provide diverse identity authentication schemes corresponding to four different security levels by easily splitting or assembling three-factor authentication protocol blocks. The proposed scheme can be simultaneously applied to a variety of applications to improve the efficiency and quality of service and reduce the complexity of the whole 5G multiservice system, instead of designing or adopting several different authentication protocols. The performance evaluation results indicate that the proposed scheme can guarantee the multiple security of the system with ideal efficiency.
1. Introduction
At present, the global 5th generation mobile communication technology (5G) commercial development has begun to take shape and been recognized as main supporting technologies of mobile networks. It has become the focus of global mobile communication research and technology competition. Compared with the existing 4G network, 5G network aims to provide high quality and reliable services such as higher data rate, ultralower latency, massive connectivity, high energy efficiency, and accurate quality of experience (QoE) [1]. The 5G network can realize more kinds of dynamic customization and scalable network services by adopting software-defined network (SDN) and network function virtualization (NFV) technologies. Due to its powerful bandwidth and service capability, a significant number of new applications are introduced into the 5G network platform, such as augmented reality, multimedia video business, mobile industrial internet, autonomous driving, and mobile electronic health services.
There are new security requirements and challenges in 5G, so it is not enough to provide the traditional security mechanism. 5G network will support massive smart devices and various forms of terminals; thus, 5G network is driven to introduce new identity management methods. The generation, distribution, and other lifecycle management of users’ identification involved in the identity management method will change [2].
The growing demand for diversified applications has brought about widely different services, as well as security issues such as service authentication. Moreover, due to the openness of services, a variety of different mobile terminals need to be connected to the 5G network, which also raises corresponding security trust issues and attacks [3, 4]. In diverse application scenarios, different kinds of terminals have different security demands. For example, large-scale machine-type communication (MTC) devices need lightweight security mechanisms to adapt to low energy storage; meanwhile, high-speed mobile services need more efficient and secure authentication schemes, and video services need to meet the security requirements of low latency and high reliability. If the same security scheme is used for differentiated applications, it may seriously affect the user’s service experience. The 5G intelligent computing technology, which is user centric, reconfigures the appropriate security scheme after collecting user and scene data, so as to provide better services. It is significant to provide hierarchical security protection for different services in order to better provide security services for the vertical industry. In the traditional networks, multiservice system adopts different authentication schemes for different kinds of terminals, which increases the complexity of the system and reduces the quality of user experience. According to the current 3GPP standard [5], 5G employs Extensible Authentication Protocol (EAP) to realize the entity identity authentication for third-party services and applications, yet EAP is an identity authentication architecture that can merely adopt unitary authentication schemes such as symmetric key cryptography or digital certificate system alone. Diverse services and applications in EAP adopt a variety of independent authentication mechanisms, which cannot support differentiated and adventurous 5G services. Consequently, a flexible and secure composable authentication and service authorization framework is urgently needed to provide comprehensive and fine-grained entity trusted security support for the vertical industry in the 5G network.
In this paper, we design a new flexible and composable multifactor authentication and session key agreement protocol under a diversified identity management architecture in 5G multiservice systems and finally give an authorization process based on the 5G unified authentication and service authorization framework. In our scheme, a new diversified identity, which includes the security levels of services and applications, is assigned by the 5G Network Repository Function (NRF) and deployed to 5G user equipment (UE) in the initial stages. Subsequently, the biometrics and password are employed in conjunction with the smart card to construct the multifactor service authentication and session key agreement protocol, which can be separated or combined according to 4 different security levels or requirements. Finally, the improved service authorization process based on the 5G service architecture is executed to provide required services for users. Without the separate implementation of different identity authentication protocols, this scheme can greatly improve the quality of service of users and reduce the complexity of the whole 5G multiservice system.
The main contributions of the paper are threefold. (1) A hierarchical identification data structure for the 5G application layer is designed. (2) A composable and potent multifactor service authentication and session key agreement protocol is proposed, which provides 4 grades of security levels of authentication. Furthermore, the proposed protocol is not the simple combination of three authentication factors but flexibly integrates them to ensure the security and the feasibility of the 5G service system. (3) We give an authorization process based on the proposed authentication mechanism and SBA architecture. (4) The BAN logic and the formal verification tool, Scyther tool, have been employed to prove that the proposed scheme can achieve multiple security functions and resist attacks.
Compared with the conference version [6], which barely proposed a conceptual classified mutual authentication scheme without high efficiency, formal security analysis, or detailed performance evaluation in the 5G multiservice system, we optimize the multifactor authentication scheme and provide key agreement and service authorization protocol in new design. Moreover, the formal analysis including BAN logic and CK model security analysis are employed to verify the scheme security. Then, we evaluate the computational cost, communication cost, and storage cost of our proposed scheme by comparing it with the typical EAP protocol based on the NIST standard and show the protocol performance under unknown attacks.
The rest of the paper is organized as follows. In Section 2, we investigate the related work. Section 3 introduces the biometric authentication fuzzy extractor function. Section 4 presents the security and network model. Section 5 details the processes of the proposed scheme. The security and performance analysis are revealed in Section 6 and Section 7, respectively. Finally, Section 8 summarizes the paper.
2. Related Work
The research works on the network entity authentication and process for services and applications in 4G/5G networks [7, 8] were very lacking. Shin and Kwon [9] proposed an anonymous three-factor authentication and access control scheme for real-time applications in WSNs. However, the scheme is liable to user collusion and desynchronization attacks. Ni et al. [8] designed a service-oriented anonymous authentication mechanism for enabling 5G IoT. In the scheme, an anonymous authenticated key agreement mechanism is proposed to ensure the secure connection and authentication for IoT devices and will not disclose user privacy. However, both of the schemes in [7, 8] employ the complex public key cryptosystem to design the related protocol and only achieve the single authentication method, which is not fit for 5G multiservice systems. Due to the introduction of the IoT service, users can also interactively control other devices in the 5G network, such as controlling the startup of the home appliance in the smart home scenario, so stricter authentication methods, such as biometric authentication, are required to ensure that the identity is true. Besides, there are a large number of authentication schemes based on the same authentication factors proposed in [10–14]. These schemes can achieve efficient and high-strength entity authentication, but cannot complete dynamic multifactor authentication which can adjust the security strength in the 5G multiservice network. Furthermore, some authentication mechanisms for the multiserver environment have been proposed in [15, 16]. Huang et al. [15] proposed a robust multifactor authentication protocol for fragile communications which can be separated to finish dynamical authentication. However, this scheme can only discuss two stand-alone schemes but cannot be composable or achieve the mutual authentication. Liao and Wang [16] proposed a dynamic ID-based remote user authentication scheme based on the smart card and password for the multiserver architecture. This scheme can achieve the mutual authentication and key agreement between the user and server by the use of hash function. However, Li et al. [17] pointed out that the scheme [16] is vulnerable to masquerade attacks.
3. Preliminary
Biometrics with certain probability distribution characteristics such as facial recognition are not completely random and limited. In order to protect the user’s biometric data and privacy, biometrics cannot be stored on the remote server and must be fuzzed. Fuzzy extractor can compact a pseudo-random eigenvalue string from a low-entropy string and is generally used to extract and recover secret features from biometrics. Based on the definition in [18], a fuzzy extractor can be described as a quintuple of including the following functions.
3.1. Metric Space
It is a set with a distance function : . The function is a measure of the difference between two variables, for example, Hamming distance.
3.2. Min Entropy
is the minimum-case entropy of a random variable A.
3.3. Statistic Distance
The statistical distance between two probability distributions and is defined as .
3.4. Fuzzy Extractor
A fuzzy extractor is represented as a quintuple of including a pair of procedures, “generate” (Gen) and “reproduce” (Rep).(1)The probabilistic generation procedure is Any input is a low-entropy string. In the output pair, is called as a characteristic string, and is an auxiliary string. For any distribution on of min-entropy , the string is nearly random even for those who observe : if ; then, we have SD , where represents the uniform distribution on bit binary strings.(2)The deterministic reproduction procedure is For all , if and , the fuzzy extractor can recover the pseudo-random string from by computing .
Thus, fuzzy extractors are capable of extracting pseudo-random string from a low-entropy string such as biometrics and then reproduce from any string extremely similar to with the unclassified auxiliary string .
4. System and Security Model
4.1. Network Model
5G network needs to establish different trust models according to the characteristics of different services and provide flexible management modes according to the demands of industry users. Operators already have relatively complete security capabilities, such as authentication, ID management, and key management. In order to reduce operating and maintenance costs, vertical industries can entrust service authentication to operators. Operators can perform network and service authentication in a unified manner to achieve direct network access to multiple services. The authentication capability of the operator not only greatly facilitates the user but also provides a vertical industry as a value-added service to help it rapidly deploy the service.
Based on the principle of the service center, the 3GPP committee has designed a new 5G service secure architecture which describes the authentication and authorization of 5G services and applications: Service-Based Architecture (SBA) [19], as shown in Figure 1. There are 3 roles of the 5G SBA authentication and authorization framework including user equipment (UE), network repository function (NRF), and network function (NF) service producer. PLMN and gNB in Figure 1 are the public land mobile network and 5G base station, respectively.
... In Europe, many projects have been funded by the European Union to provide 5G experimentation facilities and foster the adoption of 5G technologies by vertical sectors. These projects include 5G-VINNI [10], the 5GINFIRE [11], the 5Growth [12], the 5G-DIVE [13], or the 5G-EVE [14]. ...
Presently, a significant part of the world population does not have Internet access. The fifth-generation cellular network technology evolution (5G) is focused on reducing latency, increasing the available bandwidth, and enhancing network performance. However, researchers and companies have not invested enough effort into the deployment of the Internet in remote/rural/ undeveloped areas for different techno-economic reasons. This article presents the result of a collaboration between Brazil and the European Union, introducing the steps designed to create a fully operational experimentation scenario with the main purpose of integrating the different achievements of the H2020 5G-RANGE project so that they can be trialed together into a 5G networking use case. The scenario encompasses (i)a novel radio access network that targets a bandwidth of 100 Mb/s in a cell radius of 50 km, and (ii) a network of Small Unmanned Aerial Vehicles (SUAV). This set of SUAVs is NFV-enabled, on top of which Virtual Network Functions (VNF) can be automatically deployed to support occasional network communications beyond the boundaries of the 5G-RANGE radio cells. The whole deployment implies the use of a virtual private overlay network enabling the preliminary validation of the scenario components from their respective remote locations, and simplifying their subsequent integration into a single local demonstrator, the configuration of the required GRE/IPSec tunnels, the integration of the new 5G-RANGE physical, MAC and network layer components and the overall validation with voice and data services.
... This reference shall include a standard deployment but also a golden reference device. Toward that direction, some initiatives for supporting 5G trial platforms have been established in Europe, supporting experimentation in an automated environment [39], [40], [41]. ...
Executive Summary This white paper discusses the different business verticals that are expected to gain productivity enhancements with the introduction of B5G/6G wireless services. It is evident that wireless offers benefits when the use case exhibits mobility, requires nomadic behavior or flexibility and in some situation, cost may be favoring wireless solutions (e.g. retrofitting). In many cases, however, fiber optic solution is still a viable approach. Based on revenue expansion potential as well as most opportunity rich verticals, we have chosen seven vertical businesses and future software based testing to be singled out for discussion. These include industry4.0, future mobility, eHealth, energy, finance and banking, public safety and agribusiness. We describe drivers in the respective verticals and the change expected. We also highlight the features within verticals that may require 6G capabilities and make a very first attempt to provide some key performance and value indicators for vertical businesses highlighting the divergence in requirements to be experienced in the 2030's. We conclude the discussion with proposing some guidelines for trialing and validation activities within verticals to agree golden references that give a reference baseline against which any system provider can test their solutions. Out of the white paper, we have finally formulated critical research questions to be answered during this decade to provide the vertical specific solutions foreseen. 1. Introduction The development of mobile cellular technology has been incredibly fast and immense new opportunities are arising. Where 1G/2G offered speech services, the 3G/4G brought broadband internet to our pocket. 5G/6G technological and architectural features that will shape the new access, networking, and management domains in mobile communications are promising countless opportunities for service innovation and business efficiencies, creating an unprecedented impact on multiple vertical sectors. The role of 5G/6G is to connect all feasible devices, processes as well as humans to a global information grid in a cognitive fashion. Therefore, we are only now at the brink of information revolution and new digitalization markets shall offer significant revenue expansion possibilities for those who are reacting fastest to new opportunities.
With the visions and high ambitions for the 5G ecosystem, mobile network operators (MNOs) and communication service providers (CSPs) embark on increased market complexity, with regard to volume and variety of users, customers, services, and partners. Digitalized, frictionless, and growth-enabling support system journeys become imperative. This article builds on the analysis of users' challenges and requirements when accessing support systems and proposes an architectural design for the 5G platforms' system support stack. It suggests the most important capabilities that 5G business support systems and operation support systems should have and explains why they are important from the perspective of pre-commercial 5G testbeds/experimental platforms. Our study focuses on the three main actors interacting with such platforms, namely the MNO/CSP, which operates and contributes infrastructure to the testbed; the vertical enterprise customer, who consumes services for performing experiments; and the third-party service provider, which complements the testbed by offering its own services through the platform or performs testing of its services under realistic conditions.
The advent of the 5G network is a key enabler to the growth of IoT, with the promise to innovate and revolutionize contemporary architectures by enabling new IoT-optimized services. Far from being just a bandwidth and latency improvement, the real potential of 5G lies in the intelligent management of network resources, and in the possibility of offering new services at the network level. Developers of IoT applications will no longer be forced to adopt a cloud-centric approach, where all storage and computation is centralized, but will be able to exploit network-provided resources, adopting Edge or Fog computing approaches, with numerous advantages such as higher locality, increased computation power and reliability, reduced latency and power consumption. Network operators, on the other hand, need to offer a compelling set of services while designing the intelligent components of their 5G networks, which would drive IoT developers to prefer their network-hosted services to cloud-based ones managed by over-the-top players. This paper aims at identifying which sets of services may be offered by a 5G network, by analyzing the computing, storage, and communication services that are currently offered by 11 major IoT platform providers, as well as those that are currently not being provided due to limitations of the cloud computing paradigm.
Despite 5G still being embryonic in its development, there is already a quest for evidence to support decision-making in government and industry. Although there is still considerable technological, economic and behavioural uncertainty, exploration of how the potential rollout may take place both spatially and temporally is required for effective policy formulation. Consequently, the cost, coverage and rollout implications of 5G networks across Britain are explored by extrapolating 4G LTE and LTE-Advanced characteristics for the period 2020–2030. We focus on ubiquitous ultrafast broadband of 50 Mbps and test the impact of annual capital intensity, infrastructure sharing and reducing the end-user speed in rural areas to either 10 or 30 Mbps. For the business-as-usual scenario we find that 90% of the population is covered with 5G by 2027, but coverage is unlikely to reach the final 10% due to exponentially increasing costs. Moreover, varying annual capital intensity or deploying a shared small cell network can greatly influence the time taken to reach the 90% threshold, with these changes mostly benefiting rural areas. Importantly, simply by integrating new and existing spectrum, a network capable of achieving 10 Mbps per rural user is possible, which is comparable to the UK's current fixed broadband Universal Service Obligation. We contribute to the literature by quantifying the effectiveness of the spatial and temporal rollout of 5G under different policy options.
The fifth generation of mobile communications is anticipated to open up innovation opportunities for new industries such as vertical markets. However, these verticals originate myriad use cases with diverging requirements that future 5G networks have to efficiently support. Network slicing may be a natural solution to simultaneously accommodate over a common network infrastructure the wide range of services that vertical-specific use cases will demand. In this article, we present the network slicing concept, with a particular focus on its application to 5G systems. We start by summarizing the key aspects that enable the realization of so-called network slices. Then, we give a brief overview on the SDN architecture proposed by the ONF and show that it provides tools to support slicing. We argue that although such architecture paves the way for network slicing implementation, it lacks some essential capabilities that can be supplied by NFV. Hence, we analyze a proposal from the ETSI to incorporate the capabilities of SDN into the NFV architecture. Additionally, we present an example scenario that combines SDN and NFV technologies to address the realization of network slices. Finally, we summarize the open research issues with the purpose of motivating new advances in this field.
We argue for network slicing as an efficient solution that addresses the diverse requirements of 5G mobile networks, thus providing the necessary flexibility and scalability associated with future network implementations. We elaborate on the challenges that emerge when we design 5G networks based on network slicing. We focus on the architectural aspects associated with the coexistence of dedicated as well as shared slices in the network. In particular, we analyze the realization options of a flexible radio access network with focus on network slicing and their impact on the design of 5G mobile networks. In addition to the technical study, this paper provides an investigation of the revenue potential of network slicing, where the applications that originate from such concept and the profit capabilities from the network operator’s perspective are put forward.
Innovation policy makers and analysts have traditionally paid little attention to design policy. Design has either been absent or a poor ‘second cousin’ within the broader field of innovation policy which tends to privilege research and development (R&D). However, in many countries, improving the contribution of design to innovation, business performance and national economic growth is becoming a key policy aim of government. This paper examines design within the wider context of innovation policy and, in turn, examines policy making from a modern design perspective. Design policies tend to reflect first or second generation models of innovation, rather than systems or network based (‘fifth generation’ models). However, modern ‘design thinking’ can be used to help identify problems with the current paradigm of policy making in both design and innovation fields and to suggest alternative approaches which might be useful for both design and innovation policy.
This article presents the synergistic and complementary features of big data and 5G wireless networks. An overview of their interplay is provided first, including big-data-driven networking and big data assisted networking. The former exploits heterogeneous resources such as communication, caching, and computing in 5G wireless networks to support big data applications and services, by catering for big data's features such as volume, velocity, and variety. The latter leverages big data techniques to collect wireless big data and extract in-depth knowledge regarding the networks and users to improve network planning and operation. To further illustrate the mutual benefits, two case studies on network aided data acquisition and big data assisted edge content caching are provided. Finally, some interesting open research issues are discussed.
Multi-access Edge Computing (MEC) is an emerging ecosystem, which aims at converging telecommunication and IT services, providing a cloud computing platform at the edge of the Radio Access Network (RAN). MEC offers storage and computational resources at the edge, reducing latency for mobile end users and utilizing more efficiently the mobile backhaul and core networks. This paper introduces a survey on MEC and focuses on the fundamental key enabling technologies. It elaborates MEC orchestration considering both individual services and a network of MEC platforms supporting mobility, bringing light into the different orchestration deployment options. In addition, this paper analyzes the MEC reference architecture and main deployment scenarios, which offer multi-tenancy support for application developers, content providers and third parties. Finally, this paper overviews the current standardization activities and elaborates further on open research challenges.
5G cellular networks are assumed to be the key enabler and infrastructure provider in the ICT industry, by offering a variety of services with diverse requirements. The standardization of 5G cellular networks is being expedited, which also implies more of the candidate technologies will be adopted. Therefore, it is worthwhile to provide insight into the candidate techniques as a whole and examine the design philosophy behind them. In this article, we try to highlight one of the most fundamental features among the revolutionary techniques in the 5G era, i.e., there emerges initial intelligence in nearly every important aspect of cellular networks, including radio resource management, mobility management, service provisioning management, and so on. However, faced with ever-increasingly complicated configuration issues and blossoming new service requirements, it is still insufficient for 5G cellular networks if it lacks complete AI functionalities. Hence, we further introduce fundamental concepts in AI and discuss the relationship between AI and the candidate techniques in 5G cellular networks. Specifically, we highlight the opportunities and challenges to exploit AI to achieve intelligent 5G networks, and demonstrate the effectiveness of AI to manage and orchestrate cellular network resources. We envision that AI-empowered 5G cellular networks will make the acclaimed ICT enabler a reality.
This article has two main purposes. One is to review general considerations in strategic planning and the second to introduce the TOWS Matrix for matching the environmental threats and opportunities with the company's weaknesses and especially its strengths. These factors per se are not new; what is new is systematically identifying relationships between these factors and basing strategies on them. There is little doubt that strategic planning will gain greater prominence in the future. Any organization—whether military, product-oriented, service-oriented or even governmental—to remain effective, must use a rational approach toward anticipating, responding to and even altering the future environment.
5G-VINNI D5.1: Ecosystem analysis and specification of B&E KPls
- H K Hallingby
5G deployment - State of Play in Europe, USA and Asia
- C Blackman
- S Forge
On the design of5G End-to-End Facility for Performance Evaluation and Use Case Trialling
- K Mahmood
- P Gronsund
- A Gavras
- D Kennedy
- D Warren
- C Tranoris