tech-invite   World Map     

3GPP     Specs     Glossaries     Architecture     IMS     UICC       IETF     RFCs     Groups     SIP     ABNFs       Search

Top          in Index          Prev          Next

TR 33.810 (SA3)
Network Domain Security / Authentication Framework (NDS/AF)
feasibility study to support NDS/IP evolution

|   ToC   |   3GPP‑Page   |   Help   |

(W-zip) V6.0.0    2002/12    27 p.


Rapporteur:  Mr. Sahlin, Bengt
Descendant:  TS 33.310    


The scope of this feasibility study is limited to authentication of network elements which are using NDS/IP, and located in the inter-operator domain.

It means that this study concentrates on authentication of Security Gateways (SEG), and the corresponding Za-interfaces. Authentication of elements in the intra-operator domain is considered as an internal issue for the operators. This is quite much in line with TS 33.210 which states that only Za is mandatory, and that the security domain operator can decide if the Zb-interface is deployed or not, as the Zb-interface is optional for implementation.

However, NDS/AF can easily be adapted to intra-operator use. This is just a simplification of the inter-operator case as all NDS/IP NEs and the PKI infrastructure belong to the same operator. Validity of certificates may be restricted to the operator's domain.


 

Here          Top

 

 

1   Scope   Word-p. 6
2   References   Word-p. 7
3   Abbreviations
4   Architectural alternatives   Word-p. 8
5   Functionality and protocols   Word-p. 14
6   Technical benefits/disadvantages of various alternatives      Up
7   Summary and conclusions   Word-p. 25
A   GRX Inter-Operator Network Infrastructure   Word-p. 26
B   Change history   Word-p. 27

Up          Top