Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.812  Word version:  9.2.0

Top   Top   Up   Prev   None
0…   4…   6…
6 Analysis7 Evaluation of Candidate Solutions8 Summary and conclusionsA Collection of views expressed by external bodiesB Details and options for Alternative 1$ Change history

 

6  Analysisp. 40

6.1  Threat Analysisp. 40

6.1.1  Methodologyp. 40

6.1.1.1  Risk-Level Matrixp. 40

6.1.1.1.1  Impactp. 40
6.1.1.1.2  Likelihood of Threat Occurringp. 41
6.1.1.1.3  The Risk Matrixp. 42

6.1.1.2  Definitions of Risk Levelp. 42

6.1.2  Threats and Suggested Counter-Measuresp. 42

6.1.2.1  Introductionp. 42

6.1.2.2  Generic threatsp. 43

6.1.2.3  Threat analysis of Alternative 1: Non UICC based solution with remote subscription provisioning and changep. 43

6.1.2.4  Threat analysis of Alternative 2: UICC based solution without remote subscription provisioning and changep. 51

6.1.2.4.1  Introductionp. 52
6.1.2.4.2  Summary of Threats and Assigned Risk Levelsp. 52
6.1.2.4.3  Threats and Counter-Measuresp. 52

6.1.2.5  Threat analysis of Alternative 3: UICC based solutions with remote subscription changep. 52

6.1.2.5.1  Alternative 3a: IMSI change and key transfer between operatorsp. 52
6.1.2.5.1.1  Introductionp. 52
6.1.2.5.1.2  Summary of Threats and Assigned Risk Levelsp. 52
6.1.2.5.1.3  Threats and Counter-Measuresp. 53

6.2  Security comparison of UICC and non-UICC approachesp. 55

6.2.1  Generalp. 55

6.2.2  M2M equipment with UICCp. 55

6.2.3  M2M equipment without UICCp. 55

6.2.4  Security Assurance for USIM application integrated into M2M equipmentp. 57

7  Evaluation of Candidate Solutionsp. 59

7.1  Generalp. 59

7.2  Alternative 1: TRE based solution with remote subscription provisioning and changep. 59

7.3  Solution Alternative 2: UICC based solution with no remote subscription provisioning and changep. 61

7.4  Alternative 3p. 62

7.4.1  Alternative 3a: IMSI change and key transfer between operatorsp. 62

7.4.2  Candidate Solution Alternative 3b: Pre-configured K list on UICCp. 65

8  Summary and conclusionsp. 67

8.1  Summary of the report methodology and solutions presentedp. 67

8.1.1  Generalp. 67

8.1.2  Alternative 1: TRE based solution with remote subscription provisioning and changep. 68

8.1.3  Alternative 2: UICC-based solution with no remote subscription provisioning and changep. 68

8.1.4  Alternative 3a: UICC-based solution with remote subscription change; Ki transfer between operatorsp. 68

8.1.5  Alternative 3b: UICC-based solution with remote subscription change; Pre-configured Ki list on UICCp. 69

8.2  Summary of the solution evaluations against the use cases and against the evaluation criteriap. 69

8.2.1  Summary of the solutions evaluated against the use casesp. 69

8.2.1.1  Alternative 1: TRE based solution with remote subscription provisioning and changep. 70

8.2.1.2  Alternative 2: UICC-based solution with no remote subscription provisioning and changep. 70

8.2.1.3  Alternative 3a: UICC-based solution with remote subscription change; IMSI change and key (K) transfer between operatorsp. 70

8.2.1.4  Alternative 3b: UICC-based solution with remote subscription change; Pre-configured K list on UICCp. 71

8.3  Conclusionsp. 71

A  Collection of views expressed by external bodiesp. 73

A.1  GSMA SCaGp. 73

A.2  GSMA SGp. 73

B  Details and options for Alternative 1p. 74

B.1  Delayed Activationp. 74

B.2  Detailed example for Network Interactions using decentralized Registration Operator and OMA DMp. 74

B.2.1  Overviewp. 74

B.2.2  Establishing Initial IP Connectivityp. 74

B.2.2.1  Manufacture pre-credential installation phasep. 74

B.2.2.2  Initial Attachp. 75

B.2.3  Change of Selected Home Operatorp. 76

B.2.3.1  Procedurep. 76

B.2.3.2  Subscription Registrationp. 78

B.2.3.3  Triggering provisioning using OMA DM bootstrapp. 78

B.2.3.4  MCIM Application Provisioning Scenario Using OMA DMp. 79

B.2.3.5  IP Connectivityp. 80

B.2.3.6  Form of data protectionp. 80

B.2.4  Example: Algorithm and MCIM data detailsp. 80

B.2.5  Example of potential OMA DM Management Objectp. 81

B.2.6  Example of potential ASN.1 encoded MCIMp. 83

B.3  Trust Modelp. 85

$  Change historyp. 87

Up   Top