Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.823  Word version:  12.2.0

Top   Top   Up   Prev   None
0…   5…
5 Usage Scenarios and accompanying Threats for using GBA from a UE web browser6 Control of GBA Credentials and GBA Module in the UE7 Potential Extension of Protocol Mechanism used on Ua Reference Point8 Common Practices and Examples$ Change History

 

5  Usage Scenarios and accompanying Threats for using GBA from a UE web browserp. 8

5.1  Usage Scenariosp. 8

5.1.1  Usage scenario 1p. 8

5.2  Threatsp. 8

6  Control of GBA Credentials and GBA Module in the UEp. 9

6.1  Generalp. 9

6.2  Control Mechanism 1- Same Origin Authentication Tokensp. 9

6.3  Control Mechanism 2 - Server Authenticated TLSp. 9

6.4  Control Mechanism 3 - Channel Bindingp. 9

6.5  Control Mechanism 4 - Key Usagep. 9

7  Potential Extension of Protocol Mechanism used on Ua Reference Pointp. 10

7.1  Key derivationp. 10

7.2  Channel bindingp. 11

7.2.1  Backgroundp. 11

7.2.2  Option 1: Channel binding using RFC 5705p. 11

7.2.3  Option 2: Channel binding using RFC 5929p. 11

8  Common Practices and Examplesp. 11

8.1  Security Considerationsp. 11

8.1.1  General Scripting Security Considerationsp. 11

8.1.2  GBA key controlp. 12

8.1.3  User grantsp. 12

8.1.4  Root CAs in Browserp. 12

8.2  Javascript GBA API descriptionp. 12

8.2.1  GBA API Descriptionp. 12

8.2.2  Example API usagep. 13

8.3  Example sequence flowsp. 13

8.3.1  Example sequence flow with channel bindingp. 13

$  Change Historyp. 18

Up   Top