TR 33.811
SA3
★
Study on Security aspects
of 5G Network Slicing Management
use "3GPP‑Page" to get the Word version
for a better overview, the Table of Contents (ToC) is reproduced
for a better overview, the Table of Contents (ToC) is reproduced
V15.0.0 (Wzip)
2018/06 19 p.
WI Acronym: FS_NETSLICE_MGT_Sec
Rapporteur: Dr. Lei, Zander (Zhongding)
Rapporteur: Dr. Lei, Zander (Zhongding)
The present document is a study on the threats, potential security requirements and solutions for the features of 5G network slicing management as described in TS 28.530 and TS 28.531.
full Table of Contents for TR 33.811 Word version: 15.0.0
1 Scope Word-p. 6
2 References
3 Definitions and abbreviations
4 Key issues Word-p. 8
4.1 Key issue #1: Unauthorized access to Management Exposure Interface
4.2 Key issue #2: Protecting the results of NSI supervision/reporting Word-p. 9
4.3 Key issue #3: Protecting Network Slice Subnet Template
4.4 Key issue #4: Insecure procedure for capability negotiation
5 Solutions Word-p. 11
5.1 Solution #1.1: Security procedures for Management Exposure Interface
5.5 Solution #2.2: Security procedures between network slicing management functions
6 Conclusions Word-p. 18
A Change history Word-p. 19
5.1.1 Introduction
5.1.2 Solution details
5.2 Solution #2.1: OAuth based authorization for access to management functions Word-p. 12
5.3 Solution #3.1: Integrity protection of NSST
5.4 Solution #3.2: Confidentiality protection of NSST
5.1.2.1 Security within operator's trust domain
5.1.2.2 Security when CSMF is outside the operator's trust domain
5.1.3 Evaluation
5.5 Solution #2.2: Security procedures between network slicing management functions
