Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.889  Word version:  13.0.0

Top   Top   Up   Prev   None
1…   4…
4 Group based Enhancements (GROUPE)5 Monitoring Enhancements (MONTE)6 Architecture Enhancements for Service capability Exposure (AESE)7 ConclusionsA Information on other SDO's work relevant for SCEF security architecture$ Change History

 

4  Group based Enhancements (GROUPE)p. 8

4.1  Group message protectionp. 8

4.1.1  Issue detailsp. 8

4.1.2  Threatsp. 8

4.1.3  Security requirementsp. 8

4.1.4  Solutionsp. 9

4.1.4.1  Solution 1: Application layer based protectionp. 9

4.1.4.2  Solution 2: Network based protection for cell broadcastp. 9

4.1.4.3  Solution 3: MBMS based methodp. 10

4.1.4.4  Solution 4: Authentication of UEs of a groupp. 10

4.1.4.5  Solution 5: Secure protection for unicast delivery of group messagep. 11

4.1.4.6  Solution 6: Secure protection of delivering group message via T4.p. 11

4.1.5  Impacts on existing nodes or functionalityp. 11

4.1.6  Evaluationp. 11

5  Monitoring Enhancements (MONTE)p. 13

5.1  Location Managementp. 13

5.1.1  Issue detailsp. 13

5.1.2  Threatsp. 13

5.1.3  Security requirementsp. 13

5.1.4  Solutionsp. 13

5.1.4.1  Solution 1: Location managementp. 13

5.1.5  Impacts on existing nodes or functionalityp. 14

5.2  Privacy of UE location informationp. 14

5.2.1  Issue detailsp. 14

5.2.2  Threatsp. 14

5.2.3  Security requirementsp. 15

5.2.4  Solutionsp. 15

5.2.5  Impacts on existing nodes or functionalityp. 15

5.2.6  Evaluationp. 15

6  Architecture Enhancements for Service capability Exposure (AESE)p. 16

6.1  Exposure interface Securityp. 16

6.1.1  Generalp. 16

6.1.2  Issue detailsp. 16

6.1.3  Threatsp. 17

6.1.3.1  SCEFp. 17

6.1.3.2  Interface A1p. 18

6.1.3.3  Interface A4p. 18

6.1.4  Security requirementsp. 18

6.1.4.1  SCEFp. 18

6.1.4.2  Interface A1p. 18

6.1.4.3  Interface A4p. 19

6.1.5  Solutionsp. 20

6.1.5.1  Solution 1 for securing A1 interfacep. 20

6.1.5.1.1  Generalp. 20
6.1.5.1.2  SCEF is controlled by a business partner i.e. another 3GPP operator (A1 interface)p. 20
6.1.5.1.3  SCEF is controlled by a business partner i.e. a 3rd party (A1 interface)p. 21
6.1.5.1.4  SCEF and 3GPP Network Entity are controlled by the same 3GPP operator (A1 interface)p. 21

6.1.5.2  Solution 2 for securing A4 interfacep. 21

6.1.5.2.1  Generalp. 21
6.1.5.2.2  Application accessing 3GPP Network Entity directly and Application is controlled by a business partner i.e. another 3GPP operator (A4 interface)p. 21
6.1.5.2.3  Application accessing 3GPP Network Entity directly and Application is controlled by a business partner i.e. a 3rd party (A4 interface)p. 22
6.1.5.2.4  Application accessing 3GPP Network Entity directly and Application and 3GPP Network Entity are controlled by the same 3GPP operator (A4 interface)p. 22

7  Conclusionsp. 22

7.1  GROUPE Conclusionp. 22

7.2  MONTE Conclusionp. 22

7.3  AESE Conclusionp. 22

A  Information on other SDO's work relevant for SCEF security architecturep. 23

A.1  Generalp. 23

A.2  Using OMA-ER-Autho4API for securing SCEF A2 and A3 interfacesp. 23

A.2.1  Generalp. 23

A.2.2  OMA-ER-Autho4API solutionp. 23

$  Change Historyp. 25

Up   Top