Content for TS 33.533 Word version: 18.3.0
4 Overview of security architecture
4.1 General
4.2 Functional entities and reference points
4.2.1 Functional entities
4.2.2 Reference points
...
...
4 Overview of security architecture p. 9
4.1 General p. 9
The overall architecture for Ranging/SL Positioning is specified in clause 4.2 of TS 23.586, which involves the LCS architecture specified in TS 23.273 and 5G Prose architecture specified in TS 23.304. The reference architecture also supports roaming scenario and inter-PLMN scenario.
Based on the architecture specified in TS 23.586, the security architecture for Ranging/SL Positioning also supports roaming and inter-PLMN scenario and reuses the security architecture of 5G ProSe services and security architecture of LCS services with necessary enhancements or adaptations.
4.2 Functional entities and reference points p. 9
4.2.1 Functional entities p. 9
4.2.1.1 SideLink Positioning Key Management Function p. 9
The SideLink Positioning Key Management Function (SLPKMF) is the logical function handling network related operations required for generation and provisioning of security materials used for Ranging/SL positioning services. The SLPKMF has the similar functionalities as those of 5G Prose Key Management Function (PKMF) specified in TS 33.503 and can be a standalone entity or collocated with 5G PKMF. In addition to the functionalities supported by 5G PKMF, the SLPKMF shall support the following functions:
- Support key management for secure unicast direct link establishment between the UEs for Ranging/SL Positioning services provided by network.
- Support UE role authorization via the UDM.
- Support key management for protection of SLPP signalling broadcast/groupcast.
4.2.2 Reference points p. 9
In addition to the reference points specified in clause 4.2 of TS 23.586, the following reference points are added or enhanced for supporting Ranging/SL positioning security architecture:
NL3:
The reference point between the GMLCs in different PLMNs. It is used to transport the UE authorization result for authorization of Ranging/SL Positioning service exposure.
NL6:
The reference point between the UDM and the GMLC. It is used to transport the UE privacy profile to GMLC for authorization of Ranging/SL Positioning service exposure.
PC8*:
The reference point between the UE and the SLPKMF, which relies on 5GC user plane for transport (i.e. an "over IP" reference point). It is used to transport security materials to UEs for Ranging/SL Positioning discovery and communication.
Npc9*:
The reference point between the SLPKMFs of the UEs subscribed in different PLMNs. It is used to transport security materials between SLPKMFs to support Ranging/SL Positioning services in inter-PLMN scenarios.
Npc10*:
The reference point between the UDM and the SLPKMF. It is used to request subscription information related to Ranging/SL Positioning service from the UDM for UE authorization.
