Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x
Top   in Index   Prev   Next

TR 31.822
Study on GBA_U Based APIs

3GPP‑Page  
V18.1.0 (Wzip)  2023/09  15 p.
Rapporteur:
Miss Huo, Weijing
CMDI

full Table of Contents for  TR 31.822  Word version:  18.1.0

Here   Top
1 Scope2 References3 Definitions of terms, symbols and abbreviations4 Key Issues5 Solutions6 Overall Evaluation7 Conclusion$ Change history

 

1  Scopep. 7

The present document studies the GBA_U based APIs.

2  Referencesp. 7

The following documents contain provisions which, through reference in this text, constitute provisions of the present document.
  • References are either specific (identified by date of publication, edition number, version number, etc.) or non-specific.
  • For a specific reference, subsequent revisions do not apply.
  • For a non-specific reference, the latest version applies. In the case of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document.
[1]
TR 21.905: "Vocabulary for 3GPP Specifications".
[2]
TS 33.220: "Generic Authentication Architecture (GAA); Generic bootstrapping architecture".
[3]
TS 31.102: "Characteristics of the Universal Subscriber Identity Module (USIM) application".
[4]
TS 31.130: "(U)SIM Application Programming Interface (API); (U)SIM API for Java™ Card".
[5]
ISO/IEC 18033-3: "2010/AMD1:2021 Information technology - Security techniques - Encryption algorithms - Part 3: Block ciphers - Amendment 1: SM4".
[6]
ISO/IEC 10118-3: "2018 IT Security techniques - Hash-functions - Part 3: Dedicated hash-functions".
[7]
TS 31.116: "Remote APDU Structure for (U)SIM Toolkit applications".
Up

3  Definitions of terms, symbols and abbreviationsp. 7

3.1  Abbreviationsp. 7

For the purposes of the present document, the abbreviations given in TR 21.905 and the following apply. An abbreviation defined in the present document takes precedence over the definition of the same abbreviation, if any, in TR 21.905.
3GPP
3rd Generation Partnership Project
AES
Advanced Encryption Standard
AID
Application Identifier
API
Application Programming Interface
GBA
Generic Bootstrapping Architecture
GBA_U
GBA with UICC-based enhancements
NAF
Network Application Function
SM
ShangMi
Up

4  Key Issuesp. 8

4.1  Key Issues1: Support for GBA_U_APIsp. 8

Since the Ks_int_NAF is derived from the Long Term Key of the UICC, and the GBA mechanism is highly recognized, the APIs for Ks_int_NAF should be defined, so other applications could use the Ks_int_NAF for security purpose.

4.2  Key Issues2: Support for Access Control to GBA_U_APIsp. 8

When an application calls GBA_U_APIs, the Ks_int_NAF is required. Since Ks_int_NAF is associated with B-TID and NAF_ID, it is not allowed to use by all of applications. Therefore, access control should be supported to specify the AID that could call GBA_U_APIs with NAF_ID.

5  Solutionsp. 8

5.1  Solution1: Classes and Interfaces of GBA_U_APIsp. 8

5.1.1  Descriptionp. 8

5.1.1.1  Generalp. 8

5.1.1.2  Class cipherp. 8

5.1.1.2.1  Algorithm identifierp. 8
5.1.1.2.2  initp. 8
5.1.1.2.3  updatep. 9
5.1.1.2.4  doFinalp. 9

5.1.1.3  Class signaturep. 10

5.1.1.3.1  Algorithm identifierp. 10
5.1.1.3.2  initp. 10
5.1.1.3.3  updatep. 10
5.1.1.3.4  signp. 10
5.1.1.3.5  verifyp. 11

5.1.2  Solution Evaluationp. 11

5.2  Solution2: Access Control to GBA_U_APIsp. 11

5.2.1  Descriptionp. 11

5.2.2  Solution Evaluationp. 12

5.3  Solution 3: Access Control to GBA_U_APIs through install parametersp. 12

5.3.1  Descriptionp. 12

5.3.2  Solution Evaluationp. 12

6  Overall Evaluationp. 12

6.1  Evaluation criteriap. 12

6.1.1  Overviewp. 12

6.1.2  Key issues addressedp. 12

6.1.3  Impact on USIM and ISIMp. 12

6.1.4  Impact on UICCp. 12

6.1.5  Backward compatibilityp. 13

6.1.6  Impact on core and RAN networksp. 13

6.2  Solutions evaluationsp. 13

6.2.1  Overviewp. 13

6.2.2  Solution 1p. 13

6.2.2.1  Key issues addressedp. 13

6.2.2.2  Impact on USIM and ISIMp. 13

6.2.2.3  Impact on UICCp. 13

6.2.2.4  Backward compatibilityp. 13

6.2.2.5  Impact on core and RAN networksp. 13

6.2.3  Solution 2p. 13

6.2.3.1  Key issues addressedp. 13

6.2.3.2  Impact on USIM and ISIMp. 13

6.2.3.3  Impact on UICCp. 14

6.2.3.4  Backward compatibilityp. 14

6.2.3.5  Impact on core and RAN networksp. 14

6.2.4  Solution 3p. 14

6.2.4.1  Key issues addressedp. 14

6.2.4.2  Impact on USIM and ISIMp. 14

6.2.4.3  Impact on UICCp. 14

6.2.4.4  Backward compatibilityp. 14

6.2.4.5  Impact on core and RAN networksp. 14

7  Conclusionp. 14

$  Change historyp. 15

Up   Top