Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TS 33.246  Word version:  19.0.0

Top   Top   Up   Prev   None
0…   4…   A…
A Trust modelB Security threatsC MBMS security requirementsD UICC-ME interfaceE MIKEY features not used in MBMSF MRK key derivation for ME based MBMS key managementG HTTP based key management messagesH Signalling flows for MSK proceduresI Example of using MSKs and MTKs in MBMSJ Mapping the MBMS security requirements into security functions and mechanismK SRTP features not used in MBMSL Multicasting MBMS user data on IubM Relation to IMS based MBMS user servicesN GCSE security aspectsO Security aspects of xMB reference point between Content Provider and BM-SC$ Change history

 

A  Trust modelp. 42

B  Security threatsp. 43

B.1  Threats associated with attacks on the radio interfacep. 43

B.1.1  Unauthorised access to MBMS User Service datap. 43

B.1.2  Threats to integrityp. 43

B.1.3  Denial of service attacksp. 43

B.1.4  Unauthorised access to MBMS User Servicesp. 43

B.1.5  Privacy violationp. 44

B.2  Threats associated with attacks on other parts of the systemp. 44

B.2.1  Unauthorised access to datap. 44

B.2.2  Threats to integrityp. 44

B.2.3  Denial of servicep. 44

B.2.4  A malicious UE generating MTKs for malicious use later onp. 44

B.2.5  Unauthorised insertion of MBMS user data and key management datap. 45

C (Normative)  MBMS security requirementsp. 46

C.1  Requirements on security service accessp. 46

C.1.1  Requirements on secure service accessp. 46

C.1.2  Requirements on secure service provisionp. 46

C.2  Requirements on MBMS Transport Service signalling protectionp. 46

C.3  Requirements on Privacyp. 46

C.4  Requirements on MBMS Key Managementp. 47

C.5  Requirements on integrity protection of MBMS User Service datap. 47

C.6  Requirements on confidentiality protection of MBMS User Service datap. 48

C.7  Requirements on content provider to BM-SC reference pointp. 48

D (Normative)  UICC-ME interfacep. 49

D.1  MSK Update Procedurep. 49

D.2Void

D.3  MTK generation and validationp. 49

D.4  MSK deletion procedurep. 50

D.5  MUK deletion procedurep. 50

E  MIKEY features not used in MBMSp. 51

F (Normative)  MRK key derivation for ME based MBMS key managementp. 52

G (Normative)  HTTP based key management messagesp. 53

G.1  Introductionp. 53

G.2  Key management proceduresp. 53

G.2.1  MBMS User Service Registrationp. 53

G.2.2  MBMS User Service Deregistrationp. 54

G.2.3  MSK requestp. 54

G.2.4  Error situationsp. 55

H  Signalling flows for MSK proceduresp. 57

H.1  Scope of signalling flowsp. 57

H.2  Signalling flows demonstrating a successful MSK request procedurep. 57

H.2.1  Successful MSK request procedurep. 57

I  Example of using MSKs and MTKs in MBMSp. 61

J  Mapping the MBMS security requirements into security functions and mechanismp. 62

J.1  Consistency checkp. 62

J.1.1  Requirements on secure service accessp. 62

J.1.2  Requirements on MBMS transport Service signalling protectionp. 62

J.1.3  Requirements on Privacyp. 63

J.1.4  Requirements on MBMS Key Managementp. 63

J.1.5  Requirements on integrity protection of MBMS User Service datap. 64

J.1.6  Requirements on confidentiality protection of MBMS User Service datap. 64

J.1.7  Requirements on content provider to BM-SC reference pointp. 65

J.2  Conclusionsp. 65

K  SRTP features not used in MBMSp. 66

L (Normative)  Multicasting MBMS user data on Iubp. 67

M  Relation to IMS based MBMS user servicesp. 68

N (Normative)  GCSE security aspectsp. 69

N.0  GCSE architecture and requirementsp. 69

N.1  GCSE security requirementsp. 69

N.1.1  Generalp. 69

N.1.2  GCSE Broadcast Delivery specific security requirementsp. 69

N.2  Security solution for MB2-C interfacep. 69

N.3  Security solution for MB2-U interfacep. 70

O (Normative)  Security aspects of xMB reference point between Content Provider and BM-SCp. 71

O.1  Generalp. 71

O.2  Protection of the xMB reference pointp. 71

$  Change historyp. 72

Up   Top