Content for TR 33.814 Word version: 16.0.1
0 Introduction
1 Scope
2 References
3 Definitions of terms, symbols and abbreviations
3.1 Terms
3.2 Symbols
3.3 Abbreviations
4 Security aspects of eLCS in the 5G System
...
...
0 Introduction p. 6
3GPP TS 23.273 specifies enhanced Location Services (eLCS) in the 5G System. The enhanced location services may bring new security issues such as authorization, privacy protection. The present document studies the security aspects of the eLCS and provides potential solutions.
1 Scope p. 7
The scope of the present document is to analyse the security aspects of location service in 5G system and ensure the security solutions are aligned with the work in SA1 (i.e. in TS 22.261 and TR 22.872) and SA2 (i.e. in TR 23.731). The work is comprised of the following parts:
- Study the security key issues, threats and requirements of location service in 5G system.
- Elaborate on the potential security solutions to cover these requirements.
2 References p. 7
The following documents contain provisions which, through reference in this text, constitute provisions of the present document.
- References are either specific (identified by date of publication, edition number, version number, etc.) or non specific.
- For a specific reference, subsequent revisions do not apply.
- For a non-specific reference, the latest version applies. In the case of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document.
[1]
TR 21.905: "Vocabulary for 3GPP Specifications".
[2]
TS 22.261: "Service requirements for next generation new services and markets; Stage 1".
[3]
TR 22.872: "Study on positioning use cases".
[4]
TR 23.731: "Study on Enhancement to the 5GC LoCation Services".
[5]
TS 38.305: "NG Radio Access Network (NG-RAN); Stage 2 functional specification of User Equipment (UE) positioning in NG-RAN".
[6]
TS 23.273: "5G System Location Services".
[7]
TS 36.331: "Evolved Universal Terrestrial Radio Access (E-UTRA); Radio Resource Control (RRC); Protocol specification".
3 Definitions of terms, symbols and abbreviations p. 7
3.1 Terms p. 7
For the purposes of the present document, the terms given in TR 21.905 and the following apply. A term defined in the present document takes precedence over the definition of the same term, if any, in TR 21.905.
LCS Client:
Defined in TS 23.271.
LCS (LoCation Services):
Defined in TS 23.271.
Target UE:
Defined in TS 23.271.
Location Estimate:
Defined in TS 23.271.
3.2 Symbols p. 8
Void.
3.3 Abbreviations p. 8
For the purposes of the present document, the abbreviations given in TR 21.905 and the following apply. An abbreviation defined in the present document takes precedence over the definition of the same abbreviation, if any, in TR 21.905.
5GC
5G Core Network
5GS
5G System
CID
Cell-ID (positioning method)
E-CID
Enhanced Cell-ID (positioning method)
GMLC
Gateway Mobile Location Centre
LCS
LoCation Services
LMF
Location Management Function
LPP
LTE Positioning Protocol
MAC
Master Auxiliary Concept
OTDOA
Observed Time Difference Of Arrival
RSSI
Received Signal Strength Indicator
SSID
Service Set Identifier
TBS
Terrestrial Beacon System
VGMLC
Visited GMLC
WLAN
Wireless Local Area Network
4 Security aspects of eLCS in the 5G System p. 8
4.1 Introduction p. 8
TR 23.731 describes an enhanced Location Service (eLCS) architecture. The normative work of eLCS is specified in TS 23.273.
The eLCS proposes to use NAS signalling to transmit positioning messages between UE and 5GC. The location services may be exposed to the third parties through the Le and N33 interfaces.
In 5G Rel-15, location services provided by the home operator are restricted to location services required by regulation. In 5G Rel-16, location services will support the commercial use of location by third parties via the home operator. It is assumed that the requests from regulatory agencies are always authorized to use location services. However, in commercial use cases, the user is able to choose and change their privacy settings for location. In order to support commercial services, the location service architecture is extended to support roaming scenario, the location service exposure and Mobile Originating Location Request scenario.
The LCS subscription information, LCS privacy profile and routing information are proposed to be stored in the UDM. The UDM is accessible from an AMF, GMLC or NEF via the Nudm interface.
eLCS may raise a series of security issues, such as positioning data eavesdropping, UE location tracking, privacy information leak. The present document studies the security aspects of LCS in the 5G System.
