In the past, privacy has been taken into account in the design of 3GPP systems. Examples of this include the use of
temporary identities such as the T-IMSI and confidentiality protection of the user plane traffic. The work with privacy
has been included as a part of the work with defining security for the 3GPP systems and the privacy requirements have
been handled as a subset of the security requirements.
Even though 3GPP has worked with privacy since the start, the responsibility became more direct in the end of 2011,
when the SA3 updated its terms of reference to explicitly include privacy. There has also been an increased awareness
of privacy related questions in o3GPP. This has led to more questions regarding privacy when they define new
functions. These are reasons why privacy needs to be treated, not only as a part of security, but as a topic in its own
right to raise the assurance that it is taken care of properly.
A core part of increasing the assurance around privacy is to establish a baseline for privacy which ensures that an
articulated set of privacy principles are kept when designing 3GPP systems.
The present document presents privacy principles that should followed in 3GPP when designating new systems,
security architectures and protocols. Not only will such principles provide guidance on what needs to be considered and
to some extent how, but their mere existence will serve as a constant reminder to consider privacy the day-to-day work.
In addition, some principles/technologies can be a reference for vendors' products design. Also, it can be an aid for
operators when working with subscriber data whose collection and use may not be in scope of the 3GPP specifications.
The present document studies the subscriber privacy impact in 3GPP. In particular, the goals of the present document
Identify and understand privacy related key issues impacting 3GPP networks.
Identify and potentially harmonize privacy requirements, e.g. MDT/SON.
Identify existing/ongoing work relevant to 3GPP privacy issues in external standard bodies, for potential reuse in
3GPP, e.g. IETF RFC 6973.
Identify privacy risk mitigation approaches and establish privacy handling guidelines/principle and/or best
practices for 3GPP for future specifications.
It is not an objective of the study to examine all existing 3GPP specifications in retrospect with respect to privacy.
NOTE: The result of this study is captured in Annex F.