Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.995  Word version:  18.0.0

Top   Top   Up   Prev   None
1…   7…
7 Solutions for OpenID - 3GPP interworking7.1 General7.2 GBA Lite7.3 Third Party IdP binding for two-factor authentication7.4 Using user consent for GBA and SSO7.5 3rd party SSO identity mapping8 Conclusions$ Change History

 

7  Solutions for OpenID - 3GPP interworkingp. 7

7.1  Generalp. 7

7.2  GBA Litep. 7

7.2.1  Rationale for solutionp. 7

7.2.2  Solution descriptionp. 8

7.2.2.1  Architecturep. 8

7.2.2.2  BSF Implementation optimizationsp. 8

7.2.2.3  Message Flowp. 9

7.2.3  Evaluation against SA1 requirementsp. 10

7.3  Third Party IdP binding for two-factor authenticationp. 10

7.3.1  Rationale for solutionp. 10

7.3.3  Solution 1 descriptionp. 12

7.3.3.1  Generalp. 12

7.3.3.2  Example solutions for two factor authenticationp. 14

7.3.4  Solution 2 descriptionp. 18

7.3.4.1  Solution based on OpenID-GBA interworking where OTT performs username/password authenticationp. 18

7.3.4.2  Solution based on OpenID-GBA interworking where MNO performs both GBA and username/password authenticationp. 19

7.3.5  Evaluation against SA1 requirementsp. 21

7.4  Using user consent for GBA and SSOp. 23

7.4.1  Rationale for solutionp. 23

7.4.2  Solution descriptionp. 23

7.4.2.1  Generalp. 23

7.4.2.2  GBA_ME-based solutionp. 24

7.4.2.3  GBA_U-based solutionp. 25

7.4.3  Functional Architecturep. 27

7.4.4  Evaluation against SA1 requirementsp. 29

7.5  3rd party SSO identity mappingp. 31

7.5.1  Rationale for solutionp. 31

7.5.2  Solution descriptionp. 31

7.5.3  Evaluation against SA1 requirementsp. 33

8  Conclusionsp. 35

$  Change Historyp. 36

Up   Top