Tech-invite3GPPspecsGlossariesIETFRFCsGroupsSIPABNFs   Ti+SearchTech-invite World Map Symbol

Top   in Index   Prev   Next

TS 33.310 (SA3)
Network Domain Security (NDS) – Authentication Framework (AF)

3GPP‑Page   ETSI‑search   full‑ToC    
V16.1.0 (Wzip)2018/12  56 p.
V15.2.0 (PDF)2018/12  … p.  (last PDF not published yet)
V14.0.0  2016/12  58 p.
V13.2.0  2016/12  59 p.
V12.2.0  2014/09  58 p.
V11.2.0  2012/12  55 p.
V10.7.0  2012/12  56 p.
V9.8.0  2012/12  54 p.
V8.4.0  2010/06  45 p.
V7.1.0  2006/10  38 p.
V6.2.0  2004/09  31 p.


Rapporteur:  Miss Jerichow, Anja
See also:
SEC-related TS/TR
TR 33.810  its Antecedent

For 3GPP systems there is a need for truly scalable entity Authentication Framework (AF) since an increasing number of network elements and interfaces are covered by security mechanisms.

This specification provides a highly scalable entity authentication framework for 3GPP network nodes. This framework is developed in the context of the Network Domain Security work item, which effectively limits the scope to the control plane entities of the core network. Thus, the Authentication Framework will provide entity authentication for the nodes that are using NDS/IP.

Feasible trust models (i.e. how CAs are organized) and their effects are provided. Additionally, requirements are presented for the used protocols and certificate profiles, to make it possible for operator IPsec and PKI implementations to interoperate.

The scope of thiS TS is limited to authentication of network elements, which are using NDS/IP or TLS.