Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 28.817  Word version:  17.0.0

Top   Top   Up   Prev   None
1…   5…
5 Use cases for access control for management service6 Potential requirements for access control for management service7 Possible solutions for access control for management service8 Conclusions and recommendations$ Change history

 

5  Use cases for access control for management servicep. 10

5.1  use case - MnS is accessed by a digital portal of the operatorp. 10

5.1.1  Descriptionp. 10

5.1.2  Issue and gapsp. 10

5.2  Use case - MnS is accessed by an external consumer of the 3GPP management systemp. 11

5.2.1  Descriptionp. 11

5.2.2  Issue and gapsp. 11

5.3  Use case - MnS is accessed by a consumer in the same domain of the 3GPP management systemp. 12

5.3.1  Descriptionp. 12

5.3.2  Issue and gapsp. 12

5.4  Use case - MnS is accessed by a consumer in the different domain of the 3GPP management systemp. 12

5.4.1  Descriptionp. 12

5.4.2  Issue and gapsp. 13

5.5  Use case - trust relationship between MnS producer and consumerp. 13

5.5.1  Descriptionp. 13

5.5.2  Issue and gapsp. 14

5.6  use case - granular access control for internal consumerp. 14

5.6.1  Descriptionp. 14

5.6.2  Issue and gapsp. 15

5.7  use case - integrate with existing AAA system of operatorp. 15

5.7.1  Descriptionp. 15

5.7.2  Issue and gapsp. 16

6  Potential requirements for access control for management servicep. 16

7  Possible solutions for access control for management servicep. 19

7.1  Possible solution to support access control on management servicep. 19

7.1.1  Enhance Service Based Management Architecture (SBMA) to support authentication capability (update clause 4 of TS 28.533 [3])p. 19

7.1.2  Enhance Service Based Management Architecture (SBMA) to support authorization administrative/decision capabilities (update clause 4 of TS 28.533 [3])p. 20

7.1.3  Enhance Service Based Management Architecture (SBMA) to support audit capabilities (update clause 4 of TS 28.533 [3])p. 21

7.1.4  Enhance Request-response communication paradigm to support authentication and authorization (update clause 5 of TS 28.533[3])p. 22

7.1.5  Enhance NRM and operations to support authentication, authorization and audit capabilityp. 24

8  Conclusions and recommendationsp. 24

$  Change historyp. 25

Up   Top