Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.745  Word version:  19.0.0

Top   Top   Up   Prev   None
1…   5…
5 Key issues6 Solutions7 Conclusions$ Change history

 

5  Key issuesp. 9

5.1  Key Issue #1: Security of 5G NR Femto Ownershipp. 9

5.1.1  Key issue detailsp. 9

5.1.2  Security threatsp. 10

5.1.3  Potential security requirementsp. 10

5.2  Key issue #2: Authentication aspect of 5G NR Femto connecting to the operator network.p. 10

5.2.1  Key issue detailsp. 10

5.2.2  Security Threatsp. 10

5.2.3  Potential security requirementsp. 10

5.3  Key Issue #3: Support of 5G Femto location securityp. 10

5.3.1  Key issue detailsp. 10

5.3.2  Security threatsp. 11

5.3.3  Potential security requirementsp. 11

5.4  Key Issue #4: UE access controlp. 11

5.4.1  Key issue detailsp. 11

5.4.2  Security threatsp. 11

5.4.3  Potential security requirementsp. 11

5.5  Key Issue #5: Protection of backhaul link between 5G NR Femto and 5GCp. 11

5.5.1  Key issue detailsp. 11

5.5.2  Security threatsp. 11

5.5.3  Potential security requirementsp. 12

5.6  Key Issue #6: Hosting Party authenticationp. 12

5.6.1  Key issue detailsp. 12

5.6.2  Security threatsp. 12

5.6.3  Potential security requirementsp. 12

5.7  Key Issue #7: Direct link between 5G NR Femtosp. 12

5.7.1  Key issue detailsp. 12

5.7.2  Security threatsp. 12

5.7.3  Potential security requirementsp. 12

5.8  Key Issue #8: 5G NR Femto management system accessible on the public internetp. 13

5.8.1  Key issue detailsp. 13

5.8.2  Security threatsp. 13

5.8.3  Potential security requirementsp. 13

5.9  Key issue #9: 5GS Core network topology hiding from 5G NR Femto deploymentsp. 13

5.9.1  Key issue detailsp. 13

5.9.2  Threatsp. 13

5.9.3  Potential security requirementsp. 13

6  Solutionsp. 14

6.0  Mapping of solutions to key issuesp. 14

6.1  Solution #1: Reusing existing mechanism for Ownership Securityp. 14

6.1.1  Introductionp. 14

6.1.2  Solution detailsp. 14

6.1.3  Evaluationp. 14

6.2  Solution #2: IKEv2 EAP-AKA-based authenticationp. 14

6.2.1  Introductionp. 14

6.2.2  Solution detailsp. 15

6.2.3  Evaluationp. 16

6.3  Solution #3: Solution to secure backhaul of 5G NR Femtop. 16

6.3.1  Introductionp. 16

6.3.2  Solution detailsp. 16

6.3.3  Evaluationp. 17

6.4  Solution #4: UE access control using CAG verificationp. 17

6.4.1  Introductionp. 17

6.4.2  Solution detailsp. 17

6.4.3  Solution Evaluationp. 19

6.5  Solution #5: Security of 5G NR Femto Ownershipp. 20

6.5.1  Solution detailsp. 20

6.5.2  Solution Evaluationp. 21

6.6  Solution #6: Multi-factor authentication based femto owner/manager authenticationp. 21

6.6.1  Solution detailsp. 21

6.6.2  Solution Evaluationp. 23

6.7  Solution #7: Support of 5G NR Femto location securityp. 23

6.7.1  Solution detailsp. 23

6.7.2  Solution Evaluationp. 25

6.8  Solution #8: Security solution for backhaul link between 5G NR Femto and 5GCp. 25

6.8.1  Introductionp. 25

6.8.2  Solution detailsp. 25

6.8.3  Evaluationp. 26

6.9  Solution #9: Hosting party authentication using EAP-AKA'p. 26

6.9.1  Introductionp. 26

6.9.2  Solution detailsp. 26

6.9.3  Evaluationp. 27

6.10  Solution #10: Verify and authorise direct connections between 5G NR Femtosp. 27

6.10.1  Introductionp. 27

6.10.2  Solution detailsp. 28

6.10.3  Evaluationp. 29

6.11  Solution #11: Security solution for backhaul link between 5G NR Femto and 5G NRFemto MSp. 29

6.11.1  Introductionp. 29

6.11.2  Solution detailsp. 29

6.11.3  Evaluationp. 29

6.12  Solution #12: Reusing existing location verification security featuresp. 29

6.12.1  Introductionp. 29

6.12.2  Solution detailsp. 29

6.12.3  Evaluationp. 29

6.13  Solution #13: Security solution for UE CAG verificationp. 30

6.13.1  Introductionp. 30

6.13.2  Solution detailsp. 30

6.13.3  Evaluationp. 30

6.14  Solution #14: security between 5G NR Femtosp. 30

6.14.1  Introductionp. 30

6.14.2  Solution detailsp. 30

6.14.3  Evaluationp. 30

6.15  Solution #15: Verify the 5G NR Femto location with Security Gatewayp. 30

6.15.1  Introductionp. 30

6.15.2  Solution detailsp. 30

6.15.3  Evaluationp. 31

7  Conclusionsp. 32

7.1  Conclusions to Key Issue #1: Security of 5G NR Femto Ownershipp. 32

7.2  Conclusions to Key Issue #2: Authentication aspect of 5G NR Femto connecting to the operator networkp. 32

7.3  Conclusions to Key Issue #3: Support of 5G Femto location securityp. 32

7.4  Conclusions to Key Issue #4: UE access controlp. 33

7.5  Conclusions to Key Issue #5: Protection of backhaul link between 5G NR Femto and 5GCp. 33

7.6  Conclusions to Key Issue #6: Hosting Party authenticationp. 33

7.7  Conclusions to Key Issue #7: Direct link between 5G NR Femtosp. 33

7.8  Conclusions to Key Issue #8: 5G NR Femto management system accessible on the public internetp. 33

7.9  Conclusions to Key Issue #9: 5GS Core network topology hiding from 5G NR Femto deploymentsp. 34

$  Change historyp. 35

Up   Top