Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.853  Word version:  17.0.0

Top   Top   None   None   Next
0…   5…

 

0  Introductionp. 9

User Plane integrity protection allows the network operator and the UE detect that user plane data has been modified in transit between each other.
Recently, several potential attacks on the 3GPP AN interface and AN infrastructure have come to light that can be mitigated by the use of integrity protection on the User Plane over at least the radio interface. This protection is currently available for a 5G AN with a 5G core but not for LTE with EPC, LTE with a 5G Core, or for EN-DC. Integrity protection is currently specified for the control plane to protect signalling messages but is only currently specified for 5G user plane up to 64Kb per bearer.
Furthermore, supporting User Plane Integrity Protection (UP IP) at full data rate for 5G NR with 5G Core has been identified as an issue in Rel-15 and thus a UE capability-based negotiation was introduced in 5G system. Key issues and Potential enhancements to support UP IP up to the full data rate need to be studied while meeting the expected peak data throughput and lower latency as the NR and LTE radio capabilities evolve.
5G and LTE can be implemented independently and together in a number of ways. These are described in TR 38.801, clause 7.2) and are summarised as:
  • Option 1 - eUTRA with EPC
  • Option 2 - NR standalone with 5G Core
  • Option 3 - EPC based Dual Connectivity of eUTRA and NR RAT
  • Option 4 - 5G core based Dual Connectivity (NR master - eUTRA secondary)
  • Option 5 - 5G core with eUTRA
  • Option 7 - 5G core based Dual Connectivity (eUTRA master - NR secondary)
Up

1  Scopep. 10

The present document studies the key issues and potential solutions for integrity protecting the user plane, including potential enhancements needed to support UP IP up to the full data rate, in the following combinations as defined in TR 38.801, clause 7.2):
  • Option 1 - eUTRA with EPC
  • Option 2 - NR standalone with 5G Core
  • Option 3 - EPC based Dual Connectivity of eUTRA and NR RAT
  • Option 4 - 5G Core based Dual Connectivity (NR master - eUTRA secondary)
  • Option 5 - 5G Core with eUTRA
  • Option 7 - 5G Core based Dual Connectivity (eUTRA master - NR secondary)
The present document does not detail key issues, solutions, evaluations, conclusions and recommendations for GERAN and UTRAN.
Up

2  Referencesp. 10

The following documents contain provisions which, through reference in this text, constitute provisions of the present document.
  • References are either specific (identified by date of publication, edition number, version number, etc.) or non specific.
  • For a specific reference, subsequent revisions do not apply.
  • For a non-specific reference, the latest version applies. In the case of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document.
[1]
TR 21.905: "Vocabulary for 3GPP Specifications".
[2]
TS 38.801: "Study on new radio access technology: Radio access architecture and interfaces".
[3]
TS 33.401: "5G System Architecture Evolution (SAE); Security architecture".
[4]
TS 33.501: "Security architecture and procedures for 5G system".
[5]
S3-181429, LTE and the upcoming 5G standard (GSMA).
[6]
TS 37.340: "NR; Multi-connectivity; Overall description; Stage-2".
[7]
TS 38.413: " NG-RAN; NG Application Protocol (NGAP)".
[8]
TS 38.331: "NR; Radio Resource Control (RRC) protocol specification".
[9]
TS 36.331: "Radio Resource Control (RRC); Protocol specification".
[10]
TS 24.501: "Non-Access-Stratum (NAS) protocol for 5G System (5GS); Stage 3".
[11]
TS 24.301: "Non-Access-Stratum (NAS) protocol for Evolved Packet System (EPS); Stage 3".
[12]
TS 23.501: "System architecture for the 5G System (5GS); Stage 2".
[13]
TS 23.502: "Procedures for the 5G System (5GS); Stage 2".
Up

3  Definitions of terms, symbols and abbreviationsp. 11

3.1  Termsp. 11

For the purposes of the present document, the terms given in TR 21.905 and the following apply. A term defined in the present document takes precedence over the definition of the same term, if any, in TR 21.905.

3.2  Symbolsp. 11

Void.

3.3  Abbreviationsp. 11

For the purposes of the present document, the abbreviations given in TR 21.905 and the following apply. An abbreviation defined in the present document takes precedence over the definition of the same abbreviation, if any, in TR 21.905.
AN
Access Network
AS
Access Stratum
CP
Control Plane
DRB IP
Data Radio Bearer Integrity Protection
EN-DC
eUTRA-NR Dual Connectivity
EPS
Evolved Packet System
eUTRA
evolved Universal Terrestrial Radio Access
IP
Integrity Protection
NR
New Radio (5G)
RAT
Radio Access Technology
SMC
Security Mode Command
UE
User Equipment
UP
User Plane
UP IP
User Plane Integrity Protection
Up

4  3GPP Network Optionsp. 11

LTE and NR networks can be implemented in many combinations, for the purpose of the present document each key issue and solution is referenced to one or more of the options as defined in TR 38.801, clause 7.2:
  • Option 1 - eUTRA with EPC
  • Option 2 - NR standalone with 5G Core
  • Option 3 - EPC based Dual Connectivity of eUTRA and NR RAT
  • Option 4 - 5G Core based Dual Connectivity (NR master - eUTRA secondary)
  • Option 5 - 5G Core with eUTRA
  • Option 7 - 5G Core based Dual Connectivity (eUTRA master - NR secondary)
Up

Up   Top   ToC