Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.880  Word version:  15.1.0

Top   Top   Up   Prev   Next
1…   4…   7…   8…
7 Potential security solutions

 

7  Potential security solutionsp. 40

7.1  Generalp. 40

7.2  Cross-service security solutionsp. 40

7.2.1  Solution #1.1 : KMS Discovery and redirectionp. 40

7.2.1.1  Overviewp. 40

7.2.1.2  Motivating security requirementsp. 40

7.2.1.3  Solution descriptionp. 41

7.2.1.3.1  Overview of KMS Redirect Response (KRR)p. 41
7.2.1.3.1.1  Generalp. 41
7.2.1.3.1.2  KMSs and KMS URIsp. 41
7.2.1.3.1.3  Types of KMSp. 41
7.2.1.3.2  Use of KRRsp. 42
7.2.1.3.2.1  Content of KRRsp. 42
7.2.1.3.2.2  KRR creation procedure by a receiverp. 42
7.2.1.3.2.3  KRR creation procedure by a MCX server or signalling proxyp. 43
7.2.1.3.2.4  Processing a KRR at a MCX server or signalling proxyp. 43
7.2.1.3.2.5  KMS Selection at the initiatorp. 44
7.2.1.3.3  Security procedures for KMS Redirection Responsep. 45
7.2.1.3.4  Security Procedures for reporting external security domain usep. 47
7.2.1.3.5  Policy around use of external security domainsp. 47

7.2.1.4  Evaluation against requirementsp. 47

7.2.1.4.1  Overviewp. 47
7.2.1.4.2  Security of 'Security Domain Redirect Response'p. 47

7.2.2  Solution #1.2 : Distribution of key material to protect signalling between the MCX Server and the MCX clientp. 48

7.2.2.1  Overviewp. 48

7.2.2.2  Motivating security requirementsp. 48

7.2.2.3  Solution descriptionp. 48

7.2.2.3.1  Introductionp. 48
7.2.2.3.2  CSK Upload to MCX Serverp. 49
7.2.2.3.3  Key download from MCX Serverp. 49
7.2.2.3.4  Security procedures for key downloadp. 49
7.2.2.3.5  Key download proceduresp. 51

7.2.2.4  Evaluation against requirementsp. 51

7.2.3  Solution #1.3 : Adding KMS security domain details to configuration datap. 52

7.2.3.1  Overviewp. 52

7.2.3.2  Motivating security requirementsp. 52

7.2.3.3  Solution descriptionp. 52

7.2.3.3.1  Provisioning security parameters to support external security domainsp. 52
7.2.3.3.2  Identification of External Security Domainsp. 53
7.2.3.3.3  Use of Multiple Security Domainsp. 54

7.2.3.4  Evaluation against requirementsp. 54

7.2.4  Solution #1.4 : Encryption of entire XML signalling contentp. 54

7.2.4.1  Overviewp. 54

7.2.4.2  Motivating security requirementsp. 55

7.2.4.3  Solution descriptionp. 55

7.2.4.4  Evaluation against requirementsp. 55

7.2.5  Solution #1.5 : Signalling Proxyp. 55

7.2.5.1  Overviewp. 55

7.2.5.2  Motivating security requirementsp. 56

7.2.5.3  Solution descriptionp. 56

7.2.5.3.1  Overviewp. 56
7.2.5.3.2  Location of a Signalling Proxyp. 57
7.2.5.3.2.1  Overviewp. 57
7.2.5.3.2.2  Deployment with an untrusted SIP Corep. 57
7.2.5.3.2.3  Deployment with a trusted SIP Corep. 58
7.2.5.3.3  Functions of a signalling proxyp. 59
7.2.5.3.3.1  Overviewp. 59
7.2.5.3.3.2  Identifier modification (topology hiding)p. 59
7.2.5.3.3.3  Resilience against signalling stormp. 59
7.2.5.3.3.4  Client connection to a CS Proxyp. 59
7.2.5.3.3.5  CSK key download from a CS Proxyp. 59
7.2.5.3.3.6  MuSiK and MSCCK key download from a CS Proxyp. 60
7.2.5.3.3.7  Signalling protection by the IS Proxyp. 60
7.2.5.3.3.8  Creation of KMS Redirect Responses (KRRs)p. 60
7.2.5.3.3.9  Policy enforcementp. 60

7.2.5.4  Evaluation against requirementsp. 60

7.2.6  Solution #1.6 : Authentication of a sensitive signalling request (EAR)p. 60

7.2.6.1  Overviewp. 60

7.2.6.2  Motivating security requirementsp. 61

7.2.6.3  Solution descriptionp. 61

7.2.6.3.1  Overviewp. 61
7.2.6.3.2  Contents of an EARp. 61
7.2.6.3.3  EAR Signaturesp. 61
7.2.6.3.4  Relationship with MCData SDSp. 62
7.2.6.3.5  EAR Encryptionp. 62

7.2.6.4  Evaluation against requirementsp. 62

7.2.7  Solution #1.7 : EAR authorisationp. 62

7.2.7.1  Overviewp. 62

7.2.7.2  Motivating security requirementsp. 62

7.2.7.3  Solution descriptionp. 63

7.2.7.3.1  Overviewp. 63
7.2.7.3.2  Conveying authorisationp. 64
7.2.7.3.3  Adding authorisation to an EARp. 65
7.2.7.3.3a  Gaining authorisationp. 65
7.2.7.3.4  Bit fields for authorisationp. 66
7.2.7.3.4.1  Generalp. 66
7.2.7.3.4.2  Role authorisationsp. 66
7.2.7.3.4.3  Authorisations for privileged signallingp. 67
7.2.7.3.4.4  Authorisations for off-network signallingp. 68
7.2.7.3.5  Example MC Service IDs with authorisationp. 68
7.2.7.3.5.1  PTT User (on and off-network)p. 68
7.2.7.3.5.2  Dispatcherp. 69

7.3  Security solutions for the Common Functional Architecture (MC_ARCH)p. 69

7.4  Security solutions to enhance push-to-talk (eMCPTT)p. 69

7.4.1  Solution #3.1 : New bearer specific key for MBMS subchannel control message protectionp. 69

7.4.1.1  Overviewp. 69

7.4.1.2  Motivating security requirementsp. 69

7.4.1.3  Solution descriptionp. 69

7.4.1.3.1  MSCCK distributionp. 69
7.4.1.3.2  MSCCK transportp. 71

7.4.1.4  Evaluation against requirementsp. 71

7.4.2  Solution #3.2 : MKFC based protection for MBMS subchannel control messagesp. 71

7.4.2.1  Overviewp. 71

7.4.2.2  Motivating security requirementsp. 71

7.4.2.3  Solution descriptionp. 71

7.4.2.4  Evaluation against requirementsp. 72

7.4.3  Solution #3.3 : New server specific key for MBMS subchannel control message protectionp. 72

7.4.3.1  Overviewp. 72

7.4.3.2  Motivating security requirementsp. 72

7.4.3.3  Solution descriptionp. 72

7.4.3.3.1  Generalp. 72
7.4.3.3.2  PFK distributionp. 72
7.4.3.3.3  MSCCK generationp. 72

7.4.3.4  Evaluation against requirementsp. 74

7.4.4  Solution #3.4 : Key management for Temporary Group Call - regroup callp. 74

7.4.4.1  Overviewp. 74

7.4.4.2  Motivating security requirementsp. 74

7.4.4.3  Solution descriptionp. 74

7.4.4.3.1  Introductionp. 74
7.4.4.3.2  New Group Call Setup Procedures (including security)p. 74

7.4.4.4  Evaluation against requirementsp. 76

7.4.5  Solution #3.5 : Concealment of group identifiers using group specific pseudonymsp. 76

7.4.5.1  Overviewp. 76

7.4.5.2  Motivating security requirementsp. 76

7.4.5.3  Solution descriptionp. 76

7.4.5.3.1  GMS provided pseudonyms - Explicit pseudonymsp. 76
7.4.5.3.2  Implicit pseudonymsp. 77

7.4.5.4  Evaluation against requirementsp. 78

7.4.6  Solution #3.6 : Concealment of group identifiers using session specific pseudonymsp. 78

7.4.6.1  Overviewp. 78

7.4.6.2  Motivating security requirementsp. 78

7.4.6.3  Solution descriptionp. 78

7.4.6.4  Evaluation against requirementsp. 80

7.4.7  Solution #3.7 : Key management for First-to-answer callp. 80

7.4.7.1  Overviewp. 80

7.4.7.2  Motivating security requirementsp. 80

7.4.7.3  Solution descriptionp. 81

7.4.7.3.1  Introductionp. 81
7.4.7.3.2  First to Answer Requestp. 81
7.4.7.3.3  First to Answer Responsep. 81
7.4.7.3.4  First-to-answer Call Setup Procedures (including security)p. 81

7.4.7.4  Evaluation against requirementsp. 83

7.5  Security solutions for data (MCData)p. 83

7.5.1  Solution #4.1 : SDS key distribution through signalling channelp. 83

7.5.1.1  Overviewp. 83

7.5.1.2  Motivating security requirementsp. 83

7.5.1.3  Solution descriptionp. 83

7.5.1.3.1  Generalp. 83
7.5.1.3.2  Procedures for one-to-one key distribution for SDSp. 83
7.5.1.3.3  Procedures for group key distribution for SDSp. 84
7.5.1.3.4  Protection of SDS messagingp. 84

7.5.1.4  Evaluation against requirementsp. 84

7.5.2  Solution #4.2 : SDS key distribution alongside messagesp. 84

7.5.2.1  Overviewp. 84

7.5.2.2  Motivating security requirementsp. 85

7.5.2.3  Solution descriptionp. 85

7.5.2.3.1  Generalp. 85
7.5.2.3.2  Procedures for protection of datap. 85

7.5.2.4  Evaluation against requirementsp. 86

7.5.3  Solution #4.3 : MCData SDS protectionp. 86

7.5.3.1  Overviewp. 86

7.5.3.2  Motivating security requirementsp. 86

7.5.3.3  Solution descriptionp. 87

7.5.3.3.1  Key management for one-to-one SDS protectionp. 87
7.5.3.3.2  Key management for group SDS protectionp. 87
7.5.3.3.3  SDS protection (group and one-to-one SDS)p. 87

7.5.3.4  Evaluation against requirementsp. 89

7.5.4  Solution #4.4 : MCData SDS/FD signalling and payload protectionp. 89

7.5.4.1  Overviewp. 89

7.5.4.2  Motivating security requirementsp. 89

7.5.4.3  Solution descriptionp. 89

7.5.4.3.1  Defined protected MCData payloadsp. 89
7.5.4.3.2  Requirements for protected payloads Payloadp. 90
7.5.4.3.3  Requirements for authenticated payloadsp. 90
7.5.4.3.4  Key derivation for protected payloadsp. 90
7.5.4.3.5  Format of protected payloadsp. 90
7.5.4.3.6  Encryption of protected payloadsp. 91
7.5.4.3.7  Authenticated payloadsp. 91

7.5.4.4  Evaluation against requirementsp. 92

7.5.5  Solution #4.5 : MCData Key managementp. 92

7.5.5.1  Overviewp. 92

7.5.5.2  Motivating security requirementsp. 92

7.5.5.3  Solution descriptionp. 92

7.5.5.4  Evaluation against requirementsp. 93

7.5.6  Solution #4.6 : MCData key distributionp. 93

7.5.6.1  Overviewp. 93

7.5.6.2  Motivating security requirementsp. 93

7.5.6.3  Solution descriptionp. 93

7.5.6.3.1  Generalp. 93
7.5.6.3.2  Distribution of CSK, MuSiK, SPK and GMKp. 93
7.5.6.3.3  Distribution of PCK to support one-to-one MCData servicep. 93

7.5.6.4  Evaluation against requirementsp. 94

7.6  Security solutions for video (MCVideo)p. 94

7.6.1  Solution #5.1: Mission critical video (MCVideo)p. 94

7.6.1.1  Generalp. 94

7.6.1.2  MCVideo key management functional modelp. 94

7.6.1.3  MCVideo private and group key managementp. 94

7.6.1.4  Protected MCVideo private communicationsp. 94

7.6.1.5  Protected MCVideo group communicationsp. 94

7.6.1.6  Application plane protection for MCVideop. 95

7.6.1.7  Floor control protection for MCVideop. 95

7.7  Security solutions for migration and interconnect (MCSMI)p. 95

7.7.1  Solution #6.1: Inter-Domain Identity Managementp. 95

7.7.1.1  Generalp. 95

7.7.2.2  Inter-domain identity management functional modelp. 95

7.7.2.3  Inter-domain identity management for interconnect operationp. 96

7.8  Security solutions for interworking between LTE and non-LTE systems (MCCI)p. 97

7.8.1  Solution #7.1: MC Security Gateway (SeGy) acts as a single MC clientp. 97

7.8.1.1  Overviewp. 97

7.8.1.2  Motivating security requirementsp. 97

7.8.1.3  Solution descriptionp. 98

7.8.1.4  Evaluation against requirementsp. 98

7.8.2  Solution #7.2: MC Security Gateway (SeGy) acts as many MC clientsp. 98

7.8.2.1  Overviewp. 98

7.8.2.2  Motivating security requirementsp. 98

7.8.2.3  Solution descriptionp. 99

7.8.2.4  Evaluation against requirementsp. 99

7.8.3  Solution #7.3: MC Security Gateway (SeGy) acts as many migrated MC clientsp. 99

7.8.3.1  Overviewp. 99

7.8.3.2  Motivating security requirementsp. 99

7.8.3.3  Solution descriptionp. 99

7.8.3.4  Evaluation against requirementsp. 100

7.8.4  Solution #7.4: MC Security Gateway (SeGy) acts as an external MC Domainp. 100

7.8.4.1  Overviewp. 100

7.8.4.2  Motivating security requirementsp. 100

7.8.4.3  Solution descriptionp. 100

7.8.4.4  Evaluation against requirementsp. 101

7.8.5  Solution #7.5: MC Security Gateway (SeGy) acts as a single user in an external MC Domainp. 101

7.8.5.1  Overviewp. 101

7.8.5.2  Motivating security requirementsp. 101

7.8.5.3  Solution descriptionp. 101

7.8.5.4  Evaluation against requirementsp. 101

7.8.6  Solution #7.6: Interworking security data management using MCData SDS when security data is home to non-3GPP system.p. 102

7.8.6.1  Overviewp. 102

7.8.6.2  Motivating security requirementsp. 102

7.8.6.3  Solution descriptionp. 102

7.8.6.4  Evaluation against requirementsp. 103

7.8.7  Solution #7.7: Interworking security data management using SIP MESSAGE message when security data is home to non-3GPP system.p. 103

7.8.7.1  Overviewp. 103

7.8.7.2  Motivating security requirementsp. 104

7.8.7.3  Solution descriptionp. 104

7.8.7.4  Evaluation against requirementsp. 105

Up   Top   ToC