Content for TS 29.509 Word version: 18.5.0

1 Scope p. 8

The present document specifies the stage 3 protocol and data model for the Nausf Service Based Interface. It provides stage 3 protocol definitions and message flows, and specifies the API for each service offered by the AUSF.

The 5G System stage 2 architecture and procedures are specified in TS 23.501, TS 23.502 and TS 33.501.

The Technical Realization of the Service Based Architecture and the Principles and Guidelines for Services Definition are specified in TS 29.500 and TS 29.501.

2 References p. 8

The following documents contain provisions which, through reference in this text, constitute provisions of the present document.

References are either specific (identified by date of publication, edition number, version number, etc.) or non-specific.
For a specific reference, subsequent revisions do not apply.
For a non-specific reference, the latest version applies. In the case of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document.

[1]

TR 21.905: "Vocabulary for 3GPP Specifications".

[2]

TS 23.501: "System Architecture for the 5G System; Stage 2".

[3]

TS 23.502: "Procedures for the 5G System; Stage 2".

[4]

TS 29.500: "5G System; Technical Realization of Service Based Architecture; Stage 3".

[5]

TS 29.501: "5G System; Principles and Guidelines for Services Definition; Stage 3".

[6]

RFC 9113: "HTTP/2".

[7]

RFC 8259: "The JavaScript Object Notation (JSON) Data Interchange Format".

[8]

TS 33.501: "Security Architecture and Procedures for 5G System".

[9] Void

[10]

TS 29.571: "5G System; Common Data Types for Service Based Interfaces; Stage 3".

[11]

RFC 9457: "Problem Details for HTTP APIs".

[12]

TS 29.503: "5G System; Unified Data Management Services; Stage 3".

[13]

RFC 6749: "The OAuth 2.0 Authorization Framework".

[14]

TS 29.510: "Network Function Repository Services; Stage 3".

[15]

TS 31.102: "Characteristics of the Universal Subscriber Identity Module (USIM) application".

[16]

RFC 5216: "The EAP-TLS Authentication Protocol".

[17]

RFC 9048: "Improved Extensible Authentication Protocol Method for 3rd Generation Authentication and Key Agreement (EAP-AKA')".

[18]

RFC 3748: "Extensible Authentication Protocol (EAP)".

[19]

RFC 4648: "The Base16, Base32 and Base64 Data Encodings".

[20]

TS 24.501: "Non-Access-Stratum (NAS) protocol for 5G System (5GS); Stage 3".

[21]

TR 21.900: "Technical Specification Group working methods".

[22]

TS 29.544: "5G System; SP-AF Services; Stage 3".

[23]

TS 23.316: " Wireless and wireline convergence access support for the 5G System (5GS); Release 16".

[24]

TS 29.524: "5G System; Cause codes mapping between 5GC interfaces; Stage 3".

[25]

OpenAPI Initiative, "OpenAPI Specification Version 3.0.0", https://spec.openapis.org/oas/v3.0.0

[26]

TS 33.503: "Security Aspects of Proximity based Services (ProSe) in the 5G System (5GS)".

3 Definitions and abbreviations p. 9

3.1 Definitions p. 9

For the purposes of the present document, the terms and definitions given in TR 21.905 and the following apply. A term defined in the present document takes precedence over the definition of the same term, if any, in TR 21.905.

3.2 Abbreviations p. 9

For the purposes of the present document, the abbreviations given in TR 21.905 and the following apply. An abbreviation defined in the present document takes precedence over the definition of the same abbreviation, if any, in TR 21.905.

5G Prose

5G Proximity-based Services

AMF

Access and Mobility Management Function

API

Application Programming Interface

AUSF

Authentication Server Function

Credentials Holder

DCS

Default Credentials Server

FN-RG

Fixed Network RG

MAC

Message Authentication Code

N5GC

Non-5G-Capable

Network Function

Residential Gateway

SEAF

SEcurity Anchor Function

SNPN

Stand-alone Non-Public Network

SoR

Steering of Roaming

URI

Uniform Resource Identifier

UPU

UE Parameters Update

W-AGF

Wireline Access Gateway Function

4 Overview p. 10

4.1 Introduction p. 10

The Network Function (NF) Authentication Server Function (AUSF) is the network entity in the 5G Core Network (5GC) supporting the following functionalities:

Authenticate the UE for the requester NF,
Provide keying material to the requester NF,
Protect the Steering Information List for the requester NF.
Protect the UE Parameter Update Data for the requester NF.

Figure 4-1 shows the reference architecture for the AUSF:

Reproduction of 3GPP TS 29.509, Fig. 4-1: AUSF in 5G System architecture

Figure 4-1: AUSF in 5G System architecture

This Figure represents the AUSF architecture in the Service-based Architecture model. In the reference point model, the interface between the AMF and the AUSF is named N12, the interface between the NSWOF and the AUSF is named N60. In this release, the SEAF function is collocated with the AMF. The AUSF may provide the service to the UDM.

Figure 4-1 illustates PLMN level scenarios, but this architecture is also applicable to the SNPN scenarios, as explained below.

In the case of SNPN, the AUSF provides services e.g. in the following scenarios:

For an SNPN for which roaming is not supported (see clause 5.30.2.0 of TS 23.501)
For the case of UE access to SNPN using credentials from Credentials Holder (see clause 5.30.2.9 of TS 23.501)
For the case of Onboarding of UEs for SNPNs (see clause 5.30.2.10 of TS 23.501)
For the case of supports the authentication of a 5G ProSe Remote UE or a 5G ProSe End UE (see clause 7.3 of TS 33.503).