Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.811  Word version:  15.0.0

Top   Top   Up   Prev   None
0…   4…
4 Key issues5 Solutions6  Conclusions$ Change History

 

4  Key issuesp. 8

4.1  Key issue #1: Unauthorized access to Management Exposure Interfacep. 8

4.1.1  Key issue detailsp. 8

4.1.2  Security threatsp. 8

4.1.3  Potential security requirementsp. 8

4.2  Key issue #2: Protecting the results of NSI supervision/reportingp. 9

4.2.1  Key issue detailsp. 9

4.2.2  Security threatsp. 9

4.2.3  Potential security requirementsp. 9

4.3  Key issue #3: Protecting Network Slice Subnet Templatep. 9

4.3.1  Key issue detailsp. 9

4.3.2  Security threatsp. 9

4.3.3  Potential security requirementsp. 10

4.4  Key issue #4: Insecure procedure for capability negotiationp. 10

4.4.1  Key issue detailsp. 10

4.4.2  Security threatsp. 10

4.4.3  Potential security requirementsp. 10

5  Solutionsp. 11

5.1  Solution #1.1: Security procedures for Management Exposure Interfacep. 11

5.1.1  Introductionp. 11

5.1.2  Solution detailsp. 11

5.1.2.1  Security within operator's trust domainp. 11

5.1.2.2  Security when CSMF is outside the operator's trust domainp. 11

5.1.2.2.1  Mutual authenticationp. 11
5.1.2.2.2  Security profilesp. 11
5.1.2.2.3  Authorization of CSMF's slicing management service requestsp. 11

5.1.3  Evaluationp. 11

5.2  Solution #2.1: OAuth based authorization for access to management functionsp. 12

5.2.1  Introductionp. 12

5.2.2  Solution detailsp. 12

5.2.3  Evaluationp. 13

5.3  Solution #3.1: Integrity protection of NSSTp. 13

5.3.1  Introductionp. 13

5.3.2  Solution detailsp. 13

5.3.3  Evaluationp. 15

5.4  Solution #3.2: Confidentiality protection of NSSTp. 15

5.4.1  Introductionp. 15

5.4.2  Solution detailsp. 15

5.4.3  Evaluationp. 17

5.5  Solution #2.2: Security procedures between network slicing management functionsp. 17

5.5.1  Introductionp. 17

5.5.2  Solution detailsp. 17

5.5.2.1  Protection at the network or transport layerp. 17

5.5.2.2  Authorization between network slicing management functionsp. 17

5.5.3  Evaluationp. 17

6  Conclusionsp. 18

$  Change Historyp. 19

Up   Top