Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.850  Word version:  17.0.0

Top   Top   Up   Prev   None
0…   5…
5 Key issues6 Proposed solutions7 Conclusions$ Change history

 

5  Key issuesp. 8

5.1  Key issue #1: Security of authentication and authorization for multicast communication servicesp. 8

5.1.1  Key issue detailsp. 8

5.1.2  Security threatsp. 9

5.1.3  Potential security requirementsp. 9

5.2  Key Issue #2: Security protection of MBS trafficp. 9

5.2.1  Key issue detailsp. 9

5.2.2  Security threatsp. 9

5.2.3  Potential security requirementsp. 10

5.3  Key Issue #3: Security protection of key distributionp. 10

5.3.1  Key issue detailsp. 10

5.3.2  Security threatsp. 10

5.3.3  Potential security requirementsp. 10

5.4  Key Issue # 4: Security protection between AF and 5GCp. 10

5.4.1  Key issue detailsp. 10

5.4.2  Security threatsp. 11

5.4.3  Potential security requirementsp. 11

6  Proposed solutionsp. 11

6.0  Mapping of solutions to key issuesp. 11

6.1  Solution #1: Protection of MBS traffic in transport layerp. 11

6.1.1  Solution overviewp. 11

6.1.2  Solution detailsp. 12

6.1.2.1  Security handling in handoverp. 13

6.1.3  Solution evaluationp. 13

6.2  Solution #2: protect MBS traffic in service layerp. 13

6.2.1  Solution overviewp. 13

6.2.2  Solution detailsp. 14

6.2.2.1  MBS group key distribution and updatep. 15

6.2.3  Solution evaluationp. 16

6.3  Solution #3: MBS Traffic Protectionp. 16

6.3.1  Solution overviewp. 16

6.3.2  Solution detailsp. 17

6.3.3  Solution evaluationp. 18

6.4  Solution #4: Authentication and authorization for multicast communication servicep. 18

6.4.1  Solution overviewp. 18

6.4.2  Solution detailsp. 18

6.4.2.1  Authentication and authorizationp. 19

6.4.2.2  Authorization revocationp. 20

6.4.3  Solution evaluationp. 20

6.5  Solution #5: Authorization revocationp. 20

6.5.1  Solution overviewp. 20

6.5.2  Solution detailsp. 20

6.5.3  Solution evaluationp. 21

6.6  Solution #6: Authentication and authorization for multicast communication service based on AKMAp. 21

6.6.1  Solution overviewp. 21

6.6.2  Solution detailsp. 22

6.6.3  Solution evaluationp. 22

6.7  Solution # 7: security protection between AF and 5GCp. 23

6.7.1  Solution overviewp. 23

6.7.2  Solution detailsp. 23

6.7.3  Solution evaluationp. 23

6.8  Solution #8: MBS Traffic Protectionp. 23

6.8.1  Solution overviewp. 23

6.8.2  Solution detailsp. 23

6.8.3  Solution evaluationp. 25

6.9  Solution #9: Key update solutionp. 25

6.9.1  Solution overviewp. 25

6.9.2  Solution Detailsp. 25

6.9.2.1  Comparison between the default and optimized approachesp. 28

6.9.2.2  Key update conditionsp. 32

6.9.2.3  Applicability to other solutionsp. 32

6.9.3  Evaluationp. 33

6.10  Solution #10: Secure framework for Key distribution in MBSp. 35

6.10.1  Solution overviewp. 35

6.10.2  Solution detailsp. 35

6.10.2.1  MBS key generationp. 35

6.10.2.2  MBS procedure for key generation and traffic protectionp. 36

6.10.2.3  MBS procedure for re-keyingp. 38

6.10.3  Solution Evaluationp. 41

6.11  Solution #11: Update the keys used to protect the MBS trafficp. 41

6.11.1  Introductionp. 41

6.11.2  Solution detailsp. 41

6.11.3  Evaluationp. 42

6.12  Solution #12: Protection of MBS traffic at service layer based on GBAp. 42

6.12.1  Solution overviewp. 42

6.12.2  Solution detailsp. 42

6.12.3  Solution evaluationp. 44

6.13  Solution #13: Key generation and distribution for MBSp. 44

6.13.1  Solution overviewp. 44

6.13.2  Solution detailsp. 45

6.13.2.1  Key generation and distributionp. 45

6.13.2.2  Key hierarchyp. 46

6.13.3  Solution evaluationp. 47

6.14  Solution #14: Secure key delivery in service layerp. 48

6.14.1  Solution overviewp. 48

6.14.2  Solution detailsp. 48

6.14.3  Solution evaluationp. 49

7  Conclusionsp. 49

7.1  Conclusions on Key Issue #1p. 49

7.2  Conclusions on Key Issue #2p. 49

7.3  Conclusions for Key Issue #3p. 50

7.4  Conclusions on Key Issue #4p. 50

$  Change historyp. 51

Up   Top