Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.880  Word version:  15.1.0

Top   Top   Up   Prev   Next
1…   4…   7…   8…
4 Overview of enhanced Mission Critical Services5 Security analysis of Mission Critical services6 List of potential security requirements
...

 

4  Overview of enhanced Mission Critical Servicesp. 15

4.1  Introductionp. 15

4.2  Architecturep. 15

5  Security analysis of Mission Critical servicesp. 17

5.1  Generalp. 17

5.2  Cross-service key issuesp. 17

5.2.1  Key Issue #1.1: Denial of servicep. 17

5.2.1.1  Issue detailsp. 17

5.2.1.2  Security threatsp. 17

5.2.1.3  Potential security requirementsp. 18

5.2.2  Key Issue #1.2: Data communication security between MCX network entitiesp. 18

5.2.2.1  Issue detailsp. 18

5.2.2.2  Security threatsp. 18

5.2.2.3  Potential security requirementsp. 18

5.2.3  Key Issue #1.3: User impersonationp. 18

5.2.3.1  Issue detailsp. 18

5.2.3.2  Security threatsp. 18

5.2.3.3  Potential security requirementsp. 18

5.2.4  Key Issue #1.4: Manipulationp. 19

5.2.4.1  Issue detailsp. 19

5.2.4.2  Security threatsp. 19

5.2.4.3  Potential security requirementsp. 19

5.2.5  Key Issue #1.5: Traffic analysisp. 19

5.2.5.1  Issue detailsp. 19

5.2.5.2  Security threatsp. 19

5.2.5.3  Potential security requirementsp. 20

5.2.6  Key Issue #1.6: Privacy of MCX Service identitiesp. 20

5.2.6.1  Issue detailsp. 20

5.2.6.2  Security threatsp. 20

5.2.6.3  Potential security requirementsp. 20

5.2.7  Key issue #1.7: Use of multiple security domains for media securityp. 21

5.2.7.1  Issue detailsp. 21

5.2.7.2  Security threatsp. 21

5.2.7.3  Potential security requirementsp. 21

5.2.8  Key issue #1.8: Control of use of MBMS within the MC Domainp. 21

5.2.8.1  Issue detailsp. 21

5.2.8.2  Security threatsp. 21

5.2.8.3  Potential security requirementsp. 22

5.2.9  Key Issue #1.9: Edge protection of the MC Domainp. 22

5.2.9.1  Issue detailsp. 22

5.2.9.2  Security threatsp. 22

5.2.9.3  Potential security requirementsp. 22

5.3  Key issues on Common Functional Architecture (MC_ARCH)p. 23

5.3.1  Key Issue #2.1: Configuration & service accessp. 23

5.3.1.1  Issue detailsp. 23

5.3.1.2  Security threatsp. 23

5.3.1.3  Potential security requirementsp. 23

5.3.2  Key Issue #2.2: Group key managementp. 24

5.3.2.1  Issue detailsp. 24

5.3.2.2  Security threatsp. 24

5.3.2.3  Potential security requirementsp. 24

5.4  Key issues on push-to-talk enhancements (eMCPTT)p. 25

5.4.1  Key Issue #3.1: Interception of user trafficp. 25

5.4.1.1  Issue detailsp. 25

5.4.1.2  Security threatsp. 25

5.4.13  Potential security requirementsp. 25

5.4.2  Key Issue #3.2: Key stream re-usep. 25

5.4.2.1  Key issue detailsp. 25

5.4.2.2  Security threatsp. 26

5.4.2.3  Potential security requirementsp. 26

5.4.3  Key Issue #3.3: Late entry to group communicationp. 26

5.4.3.1  Issue detailsp. 26

5.4.3.2  Security threatsp. 26

5.4.3.3  Potential security requirementsp. 26

5.4.4  Key Issue #3.4: Private call confidentialityp. 26

5.4.4.1  Issue detailsp. 26

5.4.4.2  Security threatsp. 26

5.4.4.3  Potential security requirementsp. 27

5.4.6  Key issue #3.6: Exposure of group identifiersp. 28

5.4.6.1  Issue detailsp. 28

5.4.6.2  Security threatsp. 28

5.4.6.3  Potential security requirementsp. 28

5.5  Key issues on data communications (MCData)p. 28

5.5.1  Key issue #4.1: Protection of SDSp. 28

5.5.1.1  Issue detailsp. 28

5.5.1.2  Security threatsp. 29

5.5.1.3  Potential security requirementsp. 29

5.6  Key issues on video communications (MCVideo)p. 29

5.6.1  Key Issue #5.1: Equivalence with MCPTTp. 29

5.6.1.1  Issue detailsp. 29

5.6.1.2  Security threatsp. 29

5.6.1.3  Potential security requirementsp. 29

5.6.1.3.1  Generalp. 29
5.6.1.3.2  Group key managementp. 30
5.6.1.3.3  On-network operationp. 30
5.6.1.3.4  Ambient listeningp. 30
5.6.1.3.5  Data communication between MCVideo network entitiesp. 31
5.6.1.3.6  Off-network operationp. 31
5.6.1.3.7  User authentication and authorisationp. 31

5.7  Key issues on migration and interconnect (MCSMI)p. 32

5.7.1  Key Issue #6.1: Maintaining security during migration and interconnectionp. 32

5.7.1.1  Issue detailsp. 32

5.7.1.2  Security threatsp. 32

5.7.1.3  Potential security requirementsp. 32

5.7.2  Key issue #6.2: Inter-domain user authentication and authorisationp. 33

5.7.2.1  Issue detailsp. 33

5.7.2.2  Security threatsp. 33

5.7.2.3  Potential security requirementsp. 33

5.7.3  Key Issue #6.3: Protection against external systemsp. 34

5.7.3.1  Issue detailsp. 34

5.7.3.2  Security threatsp. 34

5.7.3.3  Potential security requirementsp. 34

5.8  Key Issues on interworking with non-3GPP systemsp. 35

5.8.1  Key Issue #7.1: Terminating MC security mechanisms for non-3GPP systemsp. 35

5.8.1.1  Issue detailsp. 35

5.8.1.2  Security threatsp. 35

5.8.1.3  Potential security requirementsp. 35

5.8.2  Key Issue #7.2: Interworking security datap. 35

5.8.2.1  Issue detailsp. 35

5.8.2.2  Security threatsp. 35

5.8.2.3  Potential security requirementsp. 36

6  List of potential security requirementsp. 36

6.1  Common servicesp. 36

6.2  Common functional architecturep. 37

6.3  MCPTT enhancementsp. 37

6.4  MCDatap. 38

6.5  MCVideop. 38

6.6  Migration and interconnectp. 40

Up   Top   ToC