Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x
Top   in Index   Prev   Next

TR 33.894
Study on applicability of the Zero Trust Security principles in Mobile Networks

3GPP‑Page  
V18.0.0 (Wzip)  2023/09  17 p.
Rapporteur:
Dr. Baskaran, Sheeba Backia Mary
Motorola Mobility Germany GmbH

full Table of Contents for  TR 33.894  Word version:  18.0.0

Here   Top
1 Scope2 References3 Definitions of terms, symbols and abbreviations5 Evaluation of the current security mechanisms6 Key issues7 Solutions8 Conclusions$ Change history

 

1  Scopep. 6

The present document studies some Zero Trust Security principles that can be applied to the 5G System core network. The present document will further analyse potential threats, study necessary security enhancements, and document various decisions related to solutions as to be adopted or not adopted after evaluating the associated risks and the complexity. The present document specifically covers the following aspects:
  • Analyse the 3GPP 5GS security scenarios related to the 5G core network that may benefit from a Zero Trust principle and identify the associated threats.
  • Analyse the suitable Zero Trust security mechanisms (i.e. for enabling trust evaluation and ensuring trust) to address the threats identified where potential security risk exists.
  • Provide recommendations for support of additional Zero Trust principles in 5GS security architecture with suitable future normative work directions, where such recommendations may include 3GPP 5G security requirements, technical enhancements, and procedural enhancements.
Up

2  Referencesp. 6

3  Definitions of terms, symbols and abbreviationsp. 6

3.1  Termsp. 6

3.2  Symbolsp. 7

3.3  Abbreviationsp. 7

4Void

5  Evaluation of the current security mechanismsp. 7

5.1  Tenet Evaluation Detailsp. 7

5.1.1  Tenet #1: Resourcesp. 7

5.1.1.1  Descriptionp. 7

5.1.1.2  Relevant security mechanismsp. 7

5.1.1.3  Evaluationp. 7

5.1.2  Tenet #2: All communication is secured regardless of network locationp. 7

5.1.2.1  Descriptionp. 7

5.1.2.2  Relevant security mechanismsp. 8

5.1.2.3  Evaluationp. 8

5.1.3  Tenet #3: Access granularityp. 8

5.1.3.1  Descriptionp. 8

5.1.3.2  Relevant security mechanismsp. 8

5.1.3.3  Evaluationp. 8

5.1.4  Tenet #4: Resource accessp. 9

5.1.4.1  Descriptionp. 9

5.1.4.2  Relevant security mechanismsp. 9

5.1.4.3  Evaluationp. 9

5.1.5  Tenet #5: Maintain the integrity and security posture of all owned and associated assetsp. 9

5.1.5.1  Descriptionp. 9

5.1.5.2  Relevant security mechanismp. 9

5.1.5.3  Evaluationp. 10

5.1.6  Tenet #6: Access securityp. 10

5.1.6.1  Descriptionp. 10

5.1.6.2  Relevant security mechanismsp. 11

5.1.6.3  Evaluationp. 11

5.1.7  Tenet #7: Data collection to improve security posturep. 11

5.1.7.1  Descriptionp. 11

5.1.7.2  Relevant security mechanismsp. 11

5.1.7.3  Evaluationp. 11

5.2  Security Mechanism Evaluation summaryp. 12

6  Key issuesp. 14

6.1  Key Issue #1: Need for continuous security monitoringp. 14

6.1.1  Key issue detailsp. 14

6.1.2  Security threatsp. 14

6.1.3  Potential security requirementsp. 14

7  Solutionsp. 14

7.1  Solution #1: Data Collection to enable security monitoring for the Core Networkp. 14

7.1.1  Introductionp. 14

7.1.2  Solution detailsp. 15

7.1.3  Evaluationp. 16

8  Conclusionsp. 16

$  Change historyp. 17

Up   Top