Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.702  Word version:  19.0.0

Top   Top   Up   Prev   None
1…   4…   5…   6…
6 Solutions7 Conclusions$ Change history

 

6  Solutionsp. 14

6.0  Mapping of solutions to key issuesp. 14

6.1  Solution #1: TNAP mobility solution with randp. 14

6.1.1  Introductionp. 14

6.1.2  Solution detailsp. 15

6.1.2.1  Procedurep. 15

6.1.2.2  Key derivationp. 16

6.1.3  Evaluationp. 16

6.2  Solution #2: TNAP mobility solution with countp. 17

6.2.1  Introductionp. 17

6.2.2  Solution detailsp. 17

6.2.2.1  Procedurep. 17

6.2.2.2  Key derivationp. 18

6.2.3  Evaluationp. 19

6.3  Solution #3: Using Fast BSS Transition for TNAP mobilityp. 19

6.3.1  Introductionp. 19

6.3.2  Solution detailsp. 19

6.3.2.1  Solution overviewp. 19

6.3.2.2  Details of FTp. 20

6.3.3  Evaluationp. 22

6.4  Solution #4: Security Establishment for TNAP Mobilityp. 23

6.4.1  Introductionp. 23

6.4.2  Solution detailsp. 23

6.4.3  Evaluationp. 25

6.5  Solution #5: TNAP mobility solution without full authenticationp. 25

6.5.1  Introductionp. 25

6.5.2  Solution detailsp. 26

6.5.3  Evaluationp. 27

6.6  Solution #6: TNAP mobility using modified ERPp. 27

6.6.1  Introductionp. 27

6.6.2  Solution detailsp. 27

6.6.3  Evaluationp. 30

6.7  Solution #7: Using Fast BSS Transition for N5CW mobilityp. 30

6.7.1  Introductionp. 30

6.7.2  Solution detailsp. 31

6.7.2.1  Solution overviewp. 31

6.7.3  Evaluationp. 31

6.8  Solution #8: N5CW device reconnectingp. 31

6.8.1  Introductionp. 31

6.8.2  Solution detailsp. 32

6.8.3  Evaluationp. 33

6.9  Solution #9: N5CW device mobility solution with Noncep. 33

6.9.1  Introductionp. 33

6.9.2  Solution detailsp. 34

6.9.2.1  Procedurep. 34

6.9.2.2  Horizontal key derivation on KAMFp. 35

6.9.3  Evaluationp. 36

6.10  Solution #10: FBSS over 5G architecturep. 36

6.10.1  Introductionp. 36

6.10.2  Solution detailsp. 36

6.10.3  Evaluationp. 36

6.11  Solution #11: Mobility of N5CW devicesp. 37

6.11.1  Introductionp. 37

6.11.2  Solution detailsp. 37

6.11.3  Evaluationp. 38

6.12  Solution #12: AUN3 device mobility solution with Noncep. 38

6.12.1  Introductionp. 38

6.12.2  Solution detailsp. 39

6.12.2.1  AUN3 device not supporting 5G key hierarchyp. 39

6.12.2.1.1  Procedurep. 39
6.12.2.1.2  PMK key derivationp. 40

6.12.2.2  AUN3 device supporting 5G key hierarchyp. 41

6.12.2.2.1  Procedurep. 41
6.12.2.2.2  Horizontal key derivation on KAMFp. 42

6.12.3  Evaluationp. 42

6.13  Solution #13: ERP based re-authentication for NSWOp. 43

6.13.1  Introductionp. 43

6.13.2  Solution detailsp. 43

6.13.2.1  Solution overviewp. 43

6.13.2.2  UE Re-Authentication Procedure for NSWOp. 44

6.13.3  Evaluationp. 44

6.14  Solution #14: solution for UE connecting to a new WLAN AP connected via the same NSWOF.p. 45

6.14.1  Introductionp. 45

6.14.2  Solution detailsp. 46

6.14.2.1  MSK refreshp. 47

6.14.3  Evaluationp. 47

6.15  Solution #15: Using FT for NSWOp. 48

6.15.1  Introductionp. 48

6.15.2  Solution detailsp. 48

6.15.3  Evaluationp. 48

6.16  Solution #16: N5CW device mobility using security context in AMFp. 48

6.16.1  Introductionp. 48

6.16.2  Solution detailsp. 49

6.16.3  Evaluationp. 50

6.17  Solution #17: N5CW device mobility solution without AMF impactp. 50

6.17.1  Introductionp. 50

6.17.2  Solution detailsp. 51

6.17.2.1  Procedurep. 51

6.17.2.2  New KTNAP derivation from KTWIFp. 52

6.17.3  Evaluationp. 52

6.18  Solution #18: AUN3 device reconnectingp. 52

6.18.1  Introductionp. 52

6.18.2  Proceduresp. 53

6.18.2.1  Procedure for AUN3 device not supporting key hierarchyp. 53

6.18.2.2  Procedure for AUN3 device supporting key hierarchyp. 55

6.18.3  Evaluationp. 56

6.19  Solution #19: AUN3 device mobility solution without AMF impactp. 56

6.19.1  Introductionp. 56

6.19.2  Solution detailsp. 57

6.19.2.1  AUN3 device not supporting 5G key hierarchyp. 57

6.19.2.1.1  Procedurep. 57
6.19.2.1.2  Key derivation from MSK in AUN3 mobility casep. 58

6.19.2.2  AUN3 device supporting 5G key hierarchyp. 59

6.19.2.2.1  Procedurep. 59
6.19.2.2.2  Key derivation from KWAGF in AUN3 mobility casep. 60

6.19.3  Evaluationp. 60

6.20  Solution #20: Using Fast BSS Transition for AUN3 mobilityp. 60

6.20.1  Introductionp. 60

6.20.2  Solution detailsp. 61

6.20.2.1  Solution overviewp. 61

6.20.3  Evaluationp. 61

6.21  Solution #21: IPSec and MOBIKE based solution for IPSec connection optimization between UE and TNGF during re-authenticationp. 61

6.21.1  Introductionp. 61

6.21.2  Solution detailsp. 61

6.21.2.1  Solution overviewp. 61

6.21.2.2  IPSec optimization during UE Re-Authentication Procedure for connectivity with TNGFp. 62

6.21.3  Evaluationp. 63

7  Conclusionsp. 64

7.1  Key issue #1: Security aspect of UE connecting to a new TNAP within the same TNGFp. 64

7.2  Key issue #2: Security aspect of AUN3 device connecting to a new 5G-RG within the same W-AGF:p. 64

7.3  Key issue #3: Security aspect of N5CW device connecting to a new TWAP within the same TWIFp. 64

7.4  Key issue #4: Security aspect of UE connecting to a new WLAN AP connected via the same NSWOFp. 64

$  Change historyp. 65

Up   Top