Tech-invite3GPPspaceIETF RFCsSIP
Quick21222324252627282931323334353637384‑5x

Content for  TR 22.857  Word version:  6.0.0

Top   Top   Up   Prev   None
1…   4…
4 Current Situation5 Reusable technology: An alternate approach6 Integrating the Runtime Independent Framework into the Current MExE Specification7 Additional open issues8 Out of scope issues9 ConclusionA Generic MExE Security$ Change history

 

4  Current SituationWord‑p. 7

4.1  Delaying new technology adoption into 3GPPWord‑p. 7

4.2  Unbounded specification growthWord‑p. 7

4.3  Inefficient use of 3GPP technical resourcesWord‑p. 7

4.4  Uncertain implementation requirementsWord‑p. 8

4.5  Potential fragmentation of the application marketWord‑p. 8

4.6  Unclear technology requirements for classmarksWord‑p. 8

4.7  Summary of current situationWord‑p. 9

5  Reusable technology: An alternate approachWord‑p. 9

5.1  Security infrastructureWord‑p. 9

5.1.1  Security modelWord‑p. 10

5.1.1.1  Application isolationWord‑p. 10

5.1.1.2  Domain definitionsWord‑p. 10

5.1.1.3  User permission typesWord‑p. 11

5.1.1.4  Control of application connections and network activityWord‑p. 11

5.1.2  Certificates and certificate managementWord‑p. 11

5.1.2.1  Certificate format requirementsWord‑p. 11

5.1.2.2  Domain-based certificate requirementsWord‑p. 11

5.1.2.3  Certificate chain structure and authorizationWord‑p. 11

5.1.2.4  Certification Configuration Message (CCM)Word‑p. 12

5.1.2.5  Handling of root public key stored on an installed security deviceWord‑p. 12

5.1.3  Administrator roleWord‑p. 12

5.2  Service environmentWord‑p. 12

5.2.1  Capability negotiationWord‑p. 13

5.2.2  ProvisioningWord‑p. 13

5.2.3  Management requirementsWord‑p. 13

5.3  Core software updateWord‑p. 13

5.4  Provisioning a runtime environmentWord‑p. 13

5.5  Multiple execution environment supportWord‑p. 13

6  Integrating the Runtime Independent Framework into the Current MExE SpecificationWord‑p. 14

6.1  RTIF conformance requirementsWord‑p. 14

6.1.1  Runtime generic requirementsWord‑p. 14

6.1.2  Runtime mapping requirementsWord‑p. 14

6.2  UAProf extensionsWord‑p. 15

6.3  Other MExE specification changesWord‑p. 16

6.3.1  RTIF conformanceWord‑p. 16

6.3.2  Multiple execution environment and runtime supportWord‑p. 16

7  Additional open issuesWord‑p. 16

7.1  Binding executables to certificates and metadataWord‑p. 16

7.2  Root key certificate packaging and metadataWord‑p. 17

7.3  Handling of existing MExE classmarksWord‑p. 17

8  Out of scope issuesWord‑p. 17

9  ConclusionWord‑p. 18

A  Generic MExE SecurityWord‑p. 19

A.1  IntroductionWord‑p. 19

A.2  MExE executable integrityWord‑p. 19

A.2.1  Full signature verificationWord‑p. 20

A.2.2  Optimised pre-launch signature verificationWord‑p. 20

A.3  MExE executable permissionsWord‑p. 20

A.3.1  MExE executable permissions for operator, manufacturer and third party security domainsWord‑p. 20

A.3.2  MExE executable permissions for untrusted MExE executablesWord‑p. 23

A.4  Handling of MExE executables when their valid root public key is not availableWord‑p. 25

A.4.1  Launching of MExE executables when their valid RPK is not availableWord‑p. 25

A.4.2  Currently executing secure MExE executables when their valid RPK is no longer availableWord‑p. 25

A.5  User permission typesWord‑p. 25

A.6  Root Public keysWord‑p. 26

A.6.1  Operator root public keyWord‑p. 26

A.6.1.1  Caching of root public keysWord‑p. 27

A.6.1.2  MExE device actions on detection of valid (U)SIM application and/or power upWord‑p. 27

A.6.2  Manufacturer root public keyWord‑p. 29

A.6.3  Third party root public keyWord‑p. 29

A.7  Certification and authorisation architectureWord‑p. 30

A.7.1  Certification requirementsWord‑p. 30

A.7.1.1  MExE terminal requirements for certificate processingWord‑p. 30

A.7.2  Certification administration requirementsWord‑p. 31

A.7.3  Example certification processWord‑p. 31

A.7.4  Certificate Chain VerificationWord‑p. 32

A.8  Usage of Signed ContentWord‑p. 34

A.8.1  Example of sSigned packages used for installationWord‑p. 34

A.8.2  Installation of root certificates in a signed data packageWord‑p. 35

6.8.3  Installation of other signed dataWord‑p. 36

A.9  Certificate fFormatWord‑p. 36

A.9.1  Certificate extension for removal of network accessWord‑p. 36

A.9.1.1  X.509 version 3Word‑p. 36

A.10  Certificate managementWord‑p. 36

A.10.1  Certificate configuration message (CCM)Word‑p. 37

A.10.1.1  CCM numbering conventionWord‑p. 40

A.10.1.2  CCM order of transmissionWord‑p. 40

A.10.1.3  CCM field mapping conventionWord‑p. 40

A.10.1.4  Authorised CCM download mechanismsWord‑p. 40

A.11  Separation of I/O streamsWord‑p. 41

6.12  Core software downloadWord‑p. 41

A.13  Administrator ConceptWord‑p. 41

A.13.1  Administrator root public keyWord‑p. 41

A.13.2  Provisioned mechanism for designating administrative responsibilities and adding third parties in a MExE deviceWord‑p. 42

A.13.3  MExE administrator determination mechanismWord‑p. 42

A.13.3.1  Determining the administrator of the MExE deviceWord‑p. 42

A.13.3.2  Determining the administrator of the MExE device, for MExE-(U)SIM supporting third party certificatesWord‑p. 43

A.13.3.2.1  Administrator of the MExE device is the userWord‑p. 43
A.13.3.2.2  Administrator of the MExE device is not the userWord‑p. 44

A.13.4  Administrator root certificate download mechanismWord‑p. 45

$  Change historyWord‑p. 46

Up   Top