tech-invite   World Map
3GPP     Specs     Glossaries     UICC       T+       IETF     RFCs     Groups     SIP     ABNFs       Search     Home
Top        in Index        Prev        None

TR 33.995 (SA3)
Study on Security aspects of integration of Single Sign-On (SSO) frameworks with 3GPP operator-controlled resources and mechanisms

|   ToC   |   3GPP‑Page   |   ETSI‑search   |   Help   |

(P) V14.0.0    2017/03    39 p.
(P) V13.0.1    2017/03    39 p.


Rapporteur:  Mr. Lehtovirta, Vesa
See also:  –


The present study investigates the security aspects of the service requirements specified by SA1 in TS 22.101 clause 26, on the integration of SSO frameworks with 3GPP networks for various operator authentication configurations (e.g. configurations using GBA or not using GBA).

In particular, this study evaluates existing interworking solutions between SSO frameworks and 3GPP authentication mechanisms against the SA1 service requirements. The study is not limited to evaluation of existing interworking solutions and new interworking solutions may be developed as appropriate.

The study covers the security requirements to enable the operator to become the preferred SSO Identity Provider by allowing the usage of credentials on the UE for SSO services, as well as ways for the 3GPP operator to leverage its trust framework and its reliable and robust secure credential handling infra-structure to provide SSO service based on operator-controlled credentials.



 

Here        Top

 

 

1   Scope   PDF-p. 5
2   References
3   Definitions and abbreviations   PDF-p. 6
4   Relation of the present study to other related work in 3GPP
5   Potential requirements identified in the present study   PDF-p. 7
6   Solutions for Liberty Alliance/SAML - 3GPP interworking
7   Solutions for OpenID - 3GPP interworking
8   Conclusions   PDF-p. 36
A   Change history   PDF-p. 37      Up

Up        Top