Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.833  Word version:  13.0.0

Top   Top   Up   Prev   Next
1…   4…   7…   A…
7 Key Issues for Rel-138 Solutions for Rel-13

 

7  Key Issues for Rel-13p. 96

7.1  Key Issues on ProSe Relaysp. 96

7.1.1  Key Issue #7.1.1: Maintain 3GPP communication security through relayp. 96

7.1.1.1  Issue Detailp. 96

7.1.1.2  Security Threatsp. 96

7.1.1.3  Potential security requirementsp. 96

7.1.2  Key Issue #7.1.2: ProSe UE-Network Relays Connectionp. 97

7.1.2.1  Issue Detailp. 97

7.1.2.2  Security Threatsp. 97

7.1.2.3  Potential security requirementsp. 97

7.1.3  Key Issue #7.1.3: Key Issues for UE-to-Network Relaysp. 97

7.1.3.1  Key issue detailsp. 97

7.1.4  Key Issue #7.1.4: UE-to-UE Relayp. 98

7.1.4.1  Issue detailp. 98

7.1.4.2  Threatsp. 98

7.1.4.3  Potential security requirementsp. 98

7.2  Key Issues on One-to-one Communicationsp. 99

7.2.1  Key Issue #7.2.1: Security analysis for ProSe communicationp. 99

7.2.1.1  Issue Detailp. 99

7.2.1.2  Security Threatsp. 99

7.2.1.3  Potential security requirementsp. 99

7.2.2  Key Issue #7.2.2: One-to-One Direct Communications using E-UTRAp. 99

7.2.2.1  Key issue detailsp. 99

7.2.2.2  Security threatsp. 99

7.2.2.3  Potential security requirementsp. 99

7.2.3  Key Issue #7.2.3: Mutual authentication of ProSe enabled devices for public safety in out of coverage scenariop. 100

7.2.3.1  Key issue detailsp. 100

7.2.3.2  Security threatsp. 100

7.2.3.3  Potential security requirementsp. 100

7.2.4  Key Issue #7.2.4: One-to-one ProSe Direct Communicationp. 100

7.2.4.1  General Descriptionp. 100

7.2.4.2  Security threatsp. 100

7.2.4.3  Potential security requirementsp. 101

7.3  Key Issues on Direct Discoveryp. 101

7.3.1  Key Issue #7.3.1: Restricted ProSe Direct Discovery (Model A and B)p. 101

7.3.1.1  Key issue detailsp. 101

7.3.1.2  Security threatsp. 101

7.3.1.3  Potential security requirementsp. 102

7.3.2  Key Issue #7.3.2: Security - PC2 interface in Restricted ProSe Direct Discoveryp. 102

7.3.2.1  Key issue detailsp. 102

7.3.2.2  Security threatsp. 102

7.3.2.3  Potential security requirementsp. 103

7.3.3  Key Issue #7.3.3: Spatial Replay for ProSe Direct Discoveryp. 103

7.3.3.1  Key issue detailsp. 103

7.3.3.2  Security threatsp. 104

7.3.3.3  Potential security requirementsp. 104

7.4  Key Issues on ProSe Direct Discovery (Public Safety use)p. 105

7.4.1  Key Issue #7.4.1: Direct Discovery (public safety use) in out of coverage scenario - Group Discoveryp. 105

7.4.1.1  Key issue detailsp. 105

7.4.1.2  Security threatsp. 105

7.4.1.3  Potential security requirementsp. 105

8  Solutions for Rel-13p. 105

8.1  Solutions on ProSe Relaysp. 105

8.1.1  Solution #8.1.1 UE-to-Network relay discoveryp. 105

8.1.1.1  Solution descriptionp. 105

8.1.1.2  Token Calculationp. 107

8.1.2  Solution #8.1.2 Security between Remote UE and UE-to-Network Relay using GBA push for direct communication keyp. 107

8.1.2.1  Generalp. 107

8.1.2.2  Solution descriptionp. 108

8.1.3  Solution #8.1.3 Security between Remote UE and UE-to-Network relay using GBA push for transport of direct communication keyp. 110

8.1.3.1  Generalp. 110

8.1.3.2  Solution descriptionp. 111

8.1.4  Solution #8.1.4 Security between Remote UE and UE-to-Network Relay using PC4a interface to generate Direct Communication keyp. 113

8.1.4.1  Generalp. 113

8.1.4.2  Solution descriptionp. 113

8.1.5  Solution #8.1.5 Security between Remote UE and UE-to-Network Relay based on the secure transfer of Direct Communication key generated using PC4ap. 114

8.1.5.1  Generalp. 114

8.1.5.2  Solution descriptionp. 116

8.1.6  Solution #8.1.6 Security between Remote UE and UE-to-Network Relay using pre-shared key (PGK)p. 117

8.1.6.1  Generalp. 117

8.1.6.2  Solution description for the communication between Remote UE and UE-to-Network relayp. 119

8.1.7  Solution #8.1.7: UE-Network Relay security using pre-allocated symmetric keyp. 122

8.1.7.1  Solution overviewp. 122

8.1.7.2  Security proceduresp. 122

8.1.7.2.1  Generalp. 122
8.1.7.2.2  Procedure when PRUK is not recognized at PKMFp. 124
8.1.7.2.3  Protection of traffic between UE and ProSe Functionp. 126
8.1.7.2.4  Protection of traffic between UE and ProSe Key Management Functionp. 126
8.1.7.2.5  Protection of traffic between UEsp. 126

8.1.8  Solution #8.1.8: UE-Network Relay security using normal GBA for direct communication keyp. 126

8.1.8.1  Solution overviewp. 126

8.1.8.2  Solution proceduresp. 126

8.1.9  Solution #8.1.9: UE-Network Relay security using normal GBA for transport of direct communication keyp. 127

8.1.9.1  Solution overviewp. 127

8.1.9.2  Solution proceduresp. 127

8.1.10  Solution #8.1.10: Security of Relay Service Codep. 127

8.1.10.1  Solution descriptionp. 127

8.1.10.2  Security proceduresp. 127

8.1.11  Solution #8.1.11: Authentication and Key Agreement for one-to-one Communication between Remote UE and UE-Network Relay using identity-based cryptographyp. 128

8.1.11.1  Generalp. 128

8.1.11.2  Secure One-2-One Communication between Remote UE and UE-Network Relay that follows ProSe UE-Network Relay Discovery with Model Ap. 128

8.1.11.3  Secure One-2-One Communication between Remote UE and UE-Network Relay that follows ProSe UE-Network Relay Discovery with Model Bp. 130

8.1.11.4  Solution Evaluationp. 131

8.1.12  Solution #8.1.12 Security for UE-to-Network Relay using GBA and GBApushp. 131

8.1.12.1  Generalp. 131

8.1.12.2  Security procedure for UE-to-network relay securityp. 132

8.2  Solutions for one-to-one communicationsp. 134

8.2.1  Solution for one-to-one communications with at least one UE in coveragep. 134

8.2.1.1  Solution #8.2.1.1 Security for in coverage one-to-one direct communication using GBA for direct communication keyp. 134

8.2.1.1.1  Generalp. 134

8.2.1.2  Solution #8.2.1.2 Security for in coverage one-to-one direct communication using GBA for transport of direct communication keyp. 136

8.2.1.2.1  Generalp. 136
8.2.1.2.2  Solution descriptionp. 137

8.2.1.3  Solution #8.2.1.3: One to one security using GBA push for direct communication keyp. 139

8.2.1.3.1  Solution overviewp. 139
8.2.1.3.2  Solution proceduresp. 139

8.2.1.4  Solution #8.2.1.4: One to one security using GBA push for transport of direct communication keyp. 139

8.2.1.4.1  Solution overviewp. 139
8.2.1.4.2  Solution proceduresp. 139

8.2.1.5  Solution #8.2.1.5 Security for in coverage one-to-one direct communication and UE-to-Network Relay using GBA and GBApushp. 139

8.2.1.5.1  Generalp. 139
8.2.1.5.2  Security procedure for one-to-one securityp. 140
8.2.1.3.3  Bootstrapping re-negotiation requestp. 142

8.2.2  Solutions for one-to-one communications with both UEs out of coveragep. 143

8.2.2.1  Solution #8.2.2.1 Authentication and Key Agreement for one-to-one ProSe communication using identity-based cryptographyp. 143

8.2.2.1.1  Secure One-2-One Communication that follows ProSe Group Member Discovery with Model Ap. 144
8.2.2.1.2  Secure one-to-one Communication that follows Group Member Discovery with Model Bp. 144
8.2.2.1.3  Secure one-to-one layer-2 link setup without prior Group Member discoveryp. 146
8.2.2.1.4  Solution Evaluationp. 147

8.2.2.2  Solution #8.2.2.2: General security establishment for one-to-one communicationsp. 147

8.2.2.2.1  Solution overviewp. 147
8.2.2.2.2  Solution descriptionp. 147
8.2.2.2.3  Security proceduresp. 148
8.2.2.2.3.2  Rekeying securityp. 150
8.2.2.2.4  Protection of the one-to-one trafficp. 151

8.2.2.3  Solution #8.2.2.3: One-to-one communications using the group keyp. 152

8.2.2.3.1  Solution overviewp. 152
8.2.2.3.2  Security proceduresp. 152

8.2.3  Media layer solutionsp. 153

8.2.3.1  Solution #8.2.3.1: Media-plane securityp. 153

8.2.3.1.1  Generalp. 153
8.2.3.1.2  Overview of solutionp. 153

8.3  Solutions for direct discovery (non-Public Safety)p. 153

8.3.1  Solution #8.3.1: Authorisation for restricted ProSe direct discoveryp. 153

8.3.2  Solution #8.3.2: Security for restricted discoveryp. 153

8.3.2.1  Generalp. 153

8.3.2.2  Tracking of UEs using restricted discovery announcementsp. 153

8.3.2.3  Protecting restricted discovery ProSe Codesp. 153

8.3.2.4  Authorisation of a UE for restricted discoveryp. 154

8.3.2.5  Prevention of impersonation of a UE for restricted discoveryp. 155

8.3.3  Solution #8.3.3 ProSe Restricted Discovery in Model B with Match Report procedures initiated by Discoveree UE and Discoverer UEp. 155

8.3.3.1  Generalp. 155

8.3.3.2  Overview of solutionp. 155

8.3.3.3  Detailed signalling flowsp. 156

8.3.3.3.1  Discovery Request procedure of Discoverer UE and Discoveree UEp. 156
8.3.3.3.2  Match Report procedure of Discoverer UE and Discoveree UEp. 158

8.3.4  Solution #8.3.4: Integrity protection of the ProSe code for restricted discovery (Model A)p. 159

8.3.4.1  Generalp. 159

8.3.4.2  Solution descriptionp. 159

8.3.5  Solution #8.3.5 ProSe Restricted Discovery in Model B with Match Report procedure initiated by Discoverer UE onlyp. 160

8.3.5.1  Generalp. 160

8.3.5.2  Overview of solutionp. 160

8.3.5.3  Detailed signalling flowsp. 162

8.3.5.3.1  Discovery Request procedure of Discoverer UE and Discoveree UEp. 162
8.3.5.3.2  Match Report procedure of Discoverer UEp. 163

8.3.6  Solution #8.3.6 ProSe Restricted Discovery in Model B with local MIC Checkingp. 165

8.3.6.1  Generalp. 165

8.3.6.2  Overview of solutionp. 165

8.3.6.3  Proceduresp. 167

8.3.6.3.1  Discovery Request procedure of Discoverer UE and Discoveree UEp. 167
8.3.6.3.2  MIC Check procedures of Discoverer UE and Discoveree UEp. 169

8.3.7  Solution #8.3.7: Security for Restricted ProSe Direct Discoveryp. 170

8.3.7.1  Generalp. 170

8.3.7.2  Solution descriptionp. 170

8.3.8  Solution #8.3.8: Security for Restricted ProSe Direct Discovery (Model B)p. 172

8.3.8.1  Generalp. 172

8.3.8.2  Solution descriptionp. 172

8.3.8.3  Discoveree UE procedurep. 173

8.3.8.4  Discoverer UE procedure before discoveryp. 174

8.3.8.5  Query procedurep. 175

8.3.8.6  Match Report procedure for Discoverer UEp. 176

8.3.8.7  Calculation of the MIC valuep. 177

8.3.9  Solution #8.3.9 Obtaining the security parameters needed for ProSe Restricted Discoveryp. 177

8.3.9.1  Generalp. 177

8.3.9.2  Overview of solutionp. 178

8.3.9.3  Security procedures for model Bp. 178

8.3.9.4  Security procedures for model Ap. 179

8.3.10  Solution #8.3.10: Confidentiality of ProSe identifiers in PC5 interfacep. 181

8.3.10.1  New definitions specific to this solutionp. 181

8.3.10.2  Generalp. 181

8.3.10.3  Solution detailsp. 181

8.3.10.4  Distribution of Discovery Confidentiality Keysp. 183

8.3.11  Solution #8.3.11 Protecting a Restricted Discovery Message (Model A and Model B)p. 183

8.3.11.1  Generalp. 183

8.3.11.2  Overview of solutionp. 183

8.3.11.3  Security proceduresp. 184

8.3.11.3.1  UE checked integrityp. 184
8.3.11.3.2  Scrambling time-hashingp. 185
8.3.11.3.3  Message specific confidentialityp. 185

8.3.11.4  Processing of Discovery Message at the UEsp. 186

8.3.11.5  ProSe Function control of used securityp. 187

8.3.12  Solution #8.3.12: Security for PC2 interface in Restricted Direct Discoveryp. 187

8.3.12.1  Generalp. 187

8.3.12.2  Solution descriptionp. 187

8.3.14  Solution #8.3.14: Hint of scrambling keyp. 190

8.3.14.1  Generalp. 190

8.3.14.2  Solution descriptionp. 190

8.3.15  Solution #8.3.15 Protecting a Restricted Discovery Message (Model A and Model B)p. 191

8.3.15.1  Generalp. 191

8.3.15.2  Overview of solutionp. 192

8.3.15.3  Security proceduresp. 193

8.3.15.3.1  UE checked integrityp. 193
8.3.15.3.2  Scrambling time-hashingp. 193
8.3.15.3.3  Message specific confidentialityp. 194

8.3.15.4  Processing of Discovery Message at the UEsp. 194

8.3.16  Solution #8.3.16: Masked UTC counterp. 195

8.3.16.1  Generalp. 195

8.3.16.2  Solution descriptionp. 195

8.4  Solutions for Direct Discovery (public safety use)p. 196

8.4.1  Solution #8.4.1: Direct Discovery (public safety use)p. 196

8.4.1.1  Security key for discovery message protectionp. 196

8.4.1.2  Discovery message protection mechanismp. 196

8.4.2  Solution #8.4.2: Direct Discovery (public safety use)p. 197

8.4.2.1  Authentication and Key Agreement for ProSe Direct Discovery using identity-based cryptographyp. 197

8.4.2.1.1  Provisioning Credential for ProSe Direct Discovery operationp. 197
8.4.2.1.2  Authentication and Key Agreement for ProSe Direct Discovery operationp. 198

8.4.3  Solution #8.4.3: Obtaining parameters for protection of Public Safety Group Member Discovery messagesp. 200

8.4.3.1  Solution overviewp. 200

8.4.3.2  Solution proceduresp. 200

8.4.3.2.1  Fetching the Keys from the PKMFp. 200

Up   Top   ToC