TS 28.204
Network Slice-specific Authentication and Authorization Charging in the 5G System
V18.0.1 (PDF)
2023/12 33 p.
- Rapporteur:
- Mr. Görmer, Gerald
MATRIXX Software
full Table of Contents for TS 28.204 Word version: 18.0.1
1 Scope
2 References
3 Definitions of terms, symbols and abbreviations
4 Architecture considerations
4.1 High-level 5G System architecture
4.2 Network Slice-Specific Authentication and Authorization converged charging architecture
5 Network Slice-Specific Authentication and Authorization charging principles and scenarios
6 Definition of charging information
$ Change history
1 Scope p. 7
The present document specifies the Converged Charging description for network slice-specific authentication and authorization charging in the 5G System (5GS) based on Network Slice-Specific Authentication and Authorization Function (NSSAAF) of 5GS architecture and procedures specified in TS 23.501 and TS 23.502.
The scope is the Network Slice-Specific Authentication and Authorization as specified in TS 23.502 with a AAA Server (AAA-S).
2 References p. 7
The following documents contain provisions which, through reference in this text, constitute provisions of the present document.
- References are either specific (identified by date of publication, edition number, version number, etc.) or non-specific.
- For a specific reference, subsequent revisions do not apply.
- For a non-specific reference, the latest version applies. In the case of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document.
[1]
TR 21.905: "Vocabulary for 3GPP Specifications".
[2]
TS 32.240: "Telecommunication management; Charging management; Charging architecture and principles".
[3]
TS 23.501: "System Architecture for the 5G System (5GS); Stage 2".
[4]
TS 23.502: "Procedures for the 5G System; Stage 2".
[5]
TS 32.256: "Telecommunication management; Charging management; 5G connection and mobility domain charging; stage 2".
[6]
TS 32.290: "Telecommunication management; Charging management; 5G system; Services, operations and procedures of charging using Service Based Interface (SBI)".
[7]
TS 32.291: "Telecommunication management; Charging management; 5G system; Charging service, stage 3".
[8]
TS 32.298: "Telecommunication management; Charging management; Charging Data Record (CDR) parameter description".
[9]
TS 32.295: "Telecommunication management; Charging management; Charging Data Record (CDR) transfer".
[10]
TS 32.297: "Telecommunication management; Charging management; Charging Data Record (CDR) file format and transfer".
3 Definitions of terms, symbols and abbreviations p. 8
3.1 Terms p. 8
For the purposes of the present document, the terms given in TR 21.905 and the following apply. A term defined in the present document takes precedence over the definition of the same term, if any, in TR 21.905.
5G System:
3GPP system consisting of 5G Access Network (AN), 5G Core Network and UE.
Network Slice:
A logical network that provides specific network capabilities and network characteristics.
3.2 Symbols p. 8
For the purposes of the present document, the following symbols apply:
Bnssaa
Reference point for the CDR file transfer from the NSSAAF CGF to the BD
Ga
Reference point for CDR transfer between a CDF and the CGF
Nchf
Service based interface exhibited by CHF
N103
Reference point between NSSAAF and the CHF
3.3 Abbreviations p. 8
For the purposes of the present document, the abbreviations given in TR 21.905 and the following apply. An abbreviation defined in the present document takes precedence over the definition of the same abbreviation, if any, in TR 21.905.
3GPP
3rd Generation Partnership Project
5GS
5G System
AAA
Authentication Authorization Accounting
AAA-S
AAA Server
AMF
Access and Mobility Management Function
CDR
Charging Data Record
CGF
Charging Gateway Function
CHF
CHarging Function
EAP
Extensible Authentication Protocol
ECUR
Event Charging with Unit Reservation
GPSI
Generic Public Subscription Identifier
IEC
Immediate Event Charging
NSSAA
Network Slice-Specific Authentication and Authorization
NSSAAF
Network Slice-Specific Authentication and Authorization Function
PDU
Protocol Data Unit
PEC
Post Event Charging
S-NSSAI
Single Network Slice Selection Assistance Information
SUPI
Subscription Permanent Identifier
UE
User Equipment
4 Architecture considerations p. 9
4.1 High-level 5G System architecture p. 9
4.1.1 Non-roaming reference architecture p. 9
Figure 4.1.1-1 shows the Non-roaming 5G System high level architecture in the service-based representation, as defined in TS 23.501, with Network Slice-Specific Authentication and Authorization (NSSAAF):
4.2 Network Slice-Specific Authentication and Authorization converged charging architecture p. 10
4.2.1 Non-roaming p. 10
Architectural options for Network Slice-Specific Authentication and Authorization converged charging in service-based representation are depicted in Figure 4.2.1-1.
Figure 4.2.1-1: Non-Roaming Network Slice-Specific Authentication and Authorization converged charging architecture
(⇒ copy of original 3GPP image)
(⇒ copy of original 3GPP image)
Architectural options of Figure 4.2.1-1 apply to any Network Slice-Specific Authentication and Authorization converged charging architecture of this clause.
AMF is part of this architecture for the purpose of Network Slice-Specific Authentication and Authorization converged charging. For AMF 5G connection and mobility converged charging see TS 32.256.
Details on the interfaces and functions can be found in TS 32.240 for the general architecture components, Ga is described in clause W and Bnssaa in clause Z of this document, and Nchf is described in TS 32.290.
Figure 4.2.1-2 shows the Network Slice-Specific Authentication and Authorization converged charging architecture in reference point representation for non-roaming:
Figure 4.2.1-2: Non-Roaming Network Slice-Specific Authentication and Authorization converged charging architecture - reference point representation
(⇒ copy of original 3GPP image)
(⇒ copy of original 3GPP image)
5 Network Slice-Specific Authentication and Authorization charging principles and scenarios p. 11
5.1 Network Slice-Specific Authentication and Authorization charging principles p. 11
5.1.1 General p. 11
5.1.2 Requirements p. 11
5.1.3 Charging information p. 12
5.1.4 CHF selection p. 12
5.2 Network Slice-Specific Authentication and Authorization charging converged charging scenarios p. 12
5.2.1 Basic principles p. 12
5.2.2 Message flows p. 14
5.2.2.1 General p. 14
5.2.2.2 Network slice-specific authentication and authorization charging p. 14
5.2.2.2.1 General p. 14
5.2.2.2.2 Network slice-specific authentication and authorization - AMF - PEC p. 14
5.2.2.2.3 Network slice-specific authentication and authorization - NSSAAF - PEC p. 15
5.2.2.2.4 Network slice-specific authentication and authorization - NSSAAF - IEC p. 16
5.2.2.2.5 Network slice-specific authentication and authorization - NSSAAF - ECUR p. 17
5.2.2.3 AAA Server triggered Network Slice-Specific Re-authentication and Re-authorization charging p. 19
5.2.2.3.1 General p. 19
5.2.2.3.2 AAA Server triggered Network Slice-Specific Re-authentication and Re-authorization - AMF - PEC p. 19
5.2.2.3.3 AAA Server triggered Network Slice-Specific Re-authentication and Re-authorization - NSSAAF - PEC p. 19
5.2.2.3.4 AAA Server triggered Network Slice-Specific Re-authentication and Re-authorization - NSSAAF - IEC p. 20
5.2.2.3.5 AAA Server triggered Network Slice-Specific Re-authentication and Re-authorization - NSSAAF - ECUR p. 21
5.2.2.4 AAA Server triggered Network Slice-Specific Authorization Revocation charging p. 22
5.2.2.4.1 General p. 22
5.2.2.4.2 AAA Server triggered Network Slice-Specific Authorization Revocation - AMF - PEC p. 22
5.2.2.4.3 AAA Server triggered Network Slice-Specific Authorization Revocation- NSSAAF - PEC p. 23
5.2.2.4.4 AAA Server triggered Network Slice-Specific Authorization Revocation - NSSAAF - IEC p. 23
5.2.2.4.5 AAA Server triggered Network Slice-Specific Authorization Revocation - NSSAAF - ECUR p. 24
5.2.3 CDR generation p. 26
5.2.3.1 Introduction p. 26
5.2.3.2 Triggers for CHF CDR p. 26
5.2.4 Ga record transfer flows p. 26
5.2.5 Bnssaa CDR file transfer p. 26
6 Definition of charging information p. 26
6.1 Data description for Network slice-specific authentication and authorization charging p. 26
6.1.1 Message contents p. 26
6.1.1.1 General p. 26
6.1.1.2 Charging Data Request message p. 27
6.1.1.3 Charging data response message p. 28
6.1.2 Ga message contents p. 28
6.1.3 CDR description on the Bnssaa interface p. 28
6.2 Network slice-specific authentication and authorization charging specific parameters p. 29
6.2.1 Definition of Network slice-specific authentication and authorization charging information p. 29
6.2.1.1 General p. 29
6.2.1.2 Definition of Network slice-specific authentication and authorization charging information p. 30
6.2.2 Detailed message format for converged charging p. 30
6.2.3 Formal Network slice-specific authentication and authorization charging parameter description p. 31
6.3 Bindings for Network slice-specific authentication and authorization converged charging p. 32
$ Change history p. 33
