Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.822  Word version:  8.0.0

Top   Top   Up   Prev   None
1…   4…
4 Authentication protocols across access systems5 Establishment of security contexts in the target access system6 Establishment of IPsec tunnel between UE and PDG across the target non-3GPP access system (if required)7 Security for IP based mobility8 Specific aspects of security for mobility between 3GPP access systems and non-3GPP access systemsA RFC 3957$ Change history

 

4  Authentication protocols across access systemsp. 8

4.1  UMTS AKAp. 8

4.2  EAP-AKAp. 8

4.3  Othersp. 9

5  Establishment of security contexts in the target access systemp. 9

5.1  Establishment of security contexts with the support of SAEp. 9

5.2  Establishment of security contexts without the support of SAEp. 9

6  Establishment of IPsec tunnel between UE and PDG across the target non-3GPP access system (if required)p. 9

6.1  The source access system has a UE-PDG tunnelp. 10

6.2  The source access system does not have a UE-PDG tunnelp. 10

7  Security for IP based mobilityp. 10

7.1  General requirementp. 10

7.2  Host based Mobilityp. 11

7.2.1  Security associations used with Mobile IPp. 11

7.2.2  Security protocols used with Mobile IPp. 12

7.3  Bootstrapping of Mobile IP parametersp. 13

7.3.1  Generalp. 13

7.3.2  RFC3957 used in conjunction with GBAp. 13

7.3.3  Use GBA to generate MN-HA keyp. 15

7.3.4  Use partial GBA to derive MN-HA Keysp. 16

7.3.5  Using IKEv2p. 17

7.3.6  Security bootstrapping for DS MIPv6 using MIP optionsp. 18

7.4  Network based Mobilityp. 20

7.4.1  PMIPp. 20

7.4.1.1  Introductionp. 20

7.4.1.2  Overview of PMIP usage in 3GPPp. 20

7.4.1.3  PMIP trust modelp. 21

7.4.1.4  Security measures on the Reference points between the LMA and the MAG that have a trust relationp. 22

7.4.1.5  The need for using strong access authentication with Proxy Mobile IPp. 23

7.4.1.6  No trust relation between LMA and MAG on S2ap. 23

7.4.1.6.1  Security risksp. 23
7.4.1.6.2  Possible measuresp. 24

7.4.2  NetLMMp. 24

8  Specific aspects of security for mobility between 3GPP access systems and non-3GPP access systemsp. 25

8.1  Security for mobility between pre-SAE 3GPP access systems and non-3GPP access systemsp. 25

8.2  Security context transfer between 3GPP and trusted non-3GPP access networksp. 25

8.3  ANDSF Securityp. 26

8.3.1  Generalp. 26

8.3.2  Procedurep. 26

A  RFC 3957p. 28

$  Change historyp. 29

Up   Top