Tech-invite3GPP-SpecsFeaturesEntitiesInterfacesSBIsIdentifiersTi+Search in Tech-invite
21222324252627282931323334353637384‑5x
Top   in Index   Prev   Next

TR 33.868SA3
Study on Security aspects of
Machine-Type Communications (MTC)
and other Mobile Data Applications Communications enhancements

3GPP‑Page   full‑ToC
use "3GPP‑Page" to get the Word version
for a better overview, the Table of Contents (ToC) is reproduced
V12.1.0 (Wzip)  2014/06  116 p.
Rapporteur:  Mr. Rajadurai, Rajavelsamy
This TR studies the security aspects of System Improvements for Machine Type Communication. In particular, the goals of the present document are:
  • To identify and analyze the threats to the MTC system within the scope of the service requirements, functionality and use cases as specified in TS 22.368.
  • To identify possible security and privacy impacts induced by the system architecture improvement for machine type communications based on TR 23.887 and TS 23.682.
  • To determine possible security requirements based on the analysis above and describe the possible solutions to meet those requirements.
Machine-type communication aspects of (x)SIMs and/or new models for the management of (x)SIM are out of scope of the present document.

full Table of Contents for  TR 33.868  Word version:   12.1.0

 

Here   Top

 

1  ScopeWord-p. 8
2  References
3  Definitions and abbreviationsWord-p. 10
3.1  Definitions
3.2  AbbreviationsWord-p. 11
4  Overview of Security ArchitectureWord-p. 13
5  Description of envisioned security aspects of Machine-Type and other Mobile Data Applications Communications EnhancementsWord-p. 15
5.1  Device Triggering Enhancements
5.1.1  Issue Details
5.1.2  Threats
5.1.3  Security RequirementsWord-p. 16
5.1.3.0  General
5.1.3.1  SMS based triggering
5.1.3.2  NAS Signalling based triggeringWord-p. 17
5.1.3.3  User Plane based triggering
5.1.4  Solutions
5.1.4.0  General
5.1.4.1  For offline Device Triggering:
5.1.4.1.0  General
5.1.4.1.1  Impacts on existing nodes or functionalityWord-p. 18
5.1.4.2  For online Device TriggeringUp
5.1.4.2.1  General description
5.1.4.2.2  Solution 1: Triggering via NAS signalling
5.1.4.2.3  Solution 2: Solution for fake SMS triggering from normal UE in the same network as UE used only for MTCWord-p. 19
5.1.4.2.4  Solution 3: Solutions protecting SMS triggeringWord-p. 20
5.1.4.2.5  Solution 4: Triggering via User planeWord-p. 21
5.1.4.2.6  Solution 5: Using GBA Push to secure Device triggering procedure over Tsp and T4
5.1.4.2.7  Solution 6: Secure Trigger Delivery with Security Association between MTC-IWF and UEWord-p. 24
5.1.4.2.8  Solution 7: Using regular GBA and GPL to secure Device triggering procedure over Tsp and T4
5.1.4.2.9  Solution 8: Using GBA Push to secure Device triggering procedure over TsmsWord-p. 26
5.1.4.2.10  Impacts on existing nodes or functionalityWord-p. 28
5.1.5  EvaluationWord-p. 29
5.2  Secure ConnectionWord-p. 32
5.2.1  Issue Details
5.2.2  Threats
5.2.3  Security Requirements
5.2.4  Solutions
5.2.4.1  GBA based solution
5.2.4.1.1  UE initiated Secure Connection based on GBA
5.2.4.1.2  Network initiated Secure Connection based on GBApushWord-p. 34
5.2.4.2  EAP based solutionWord-p. 36
5.2.4.2.1  IKEv2 based solution
5.2.4.2.2  EAP/PANA based Solution:Word-p. 38
5.2.5  Evaluation
5.2.5.0  General
5.2.5.1  Evaluation for GBA/GBA push based solution:
5.2.5.2  Evaluation for EAP-AKA method:Word-p. 39
5.3  External Interface SecurityWord-p. 40
5.3.1  Issue Details
5.3.2  Threats
5.3.3  Security requirementsWord-p. 41
5.3.4  SolutionsWord-p. 42
5.3.4.0  General
5.3.4.1  Tsp interface security for MTC Server outside the operator domain
5.3.4.2  MTC Server inside the operator domainWord-p. 43
5.3.5  Evaluation
5.4  Restricting the USIM to specific UEs
5.4.1  Issues Details
5.4.2  ThreatsWord-p. 44
5.4.3  Security Requirements
5.4.4  SolutionsUp
5.4.4.0  General
5.4.4.1  User Equipment-based pairings
5.4.4.1.0  General
5.4.4.1.1  Secure Channel pairing
5.4.4.1.2  USAT application pairingWord-p. 45
5.4.4.1.3  PIN presentation pairingWord-p. 46
5.4.4.2  Network based pairings
5.4.4.2.1  IMSI-IMEI binding in HSS
5.4.4.2.2  Enhanced AKA authenticationWord-p. 48
5.4.4.2.3  Pairing based on symmetric shared secretWord-p. 52
5.4.5  EvaluationWord-p. 62
5.4.5.1  User Equipment-based pairings
5.4.5.1.1  Secure Channel pairing
5.4.5.1.2  USAT application pairingWord-p. 63
5.4.5.1.3  PIN verification pairingWord-p. 64
5.4.5.2  Network based pairingsWord-p. 65
5.4.5.2.1  IMSI-IMEI binding in HSS
5.4.5.2.2  Enhanced AKAWord-p. 66
5.4.5.2.3  Pairing based on symmetric shared secretWord-p. 67
5.5  Privacy concernUp
5.5.1  Issue Details
5.5.2  ThreatsWord-p. 68
5.5.3  Security Requirements
5.5.4  Solutions
5.5.4.0  General
5.5.4.1  UE based methodWord-p. 69
5.5.4.2  Network based method
5.5.5  EvaluationWord-p. 70
5.6  UE Power Consumption Optimizations
5.6.1  Issue DetailsUp
5.6.2  Threats
5.6.3  Security Requirements
5.6.4  Solutions
5.6.4.1  General description
5.7  Security of Small Data TransmissionWord-p. 71
5.7.1  Issue Details
5.7.2  Threats
5.7.2.1  Small data encapsulation in the NAS
5.7.2.2  Small data fast path in the user planeWord-p. 72
5.7.3  Security requirementsWord-p. 74
5.7.4  SolutionsWord-p. 75
5.7.4.1  Small data transfer in NAS PDU
5.7.4.1.1  General description
5.7.4.1.2  Solution 1: Partly ciphering
5.7.4.1.3  Analysis of NAS signalling key management in LTEWord-p. 77
5.7.4.2  Small Data Fast Path in User PlaneWord-p. 78
5.7.4.2.0  General
5.7.4.2.1  Termination point of security for small data in the network
5.7.4.2.2  General description of proposed solutionWord-p. 79
5.7.4.2.3  Small data transfer security contextUp
5.7.4.2.3A  Small data transfer security protocolWord-p. 81
5.7.4.2.4  Small data transfer security context establishment at Attach procedureWord-p. 82
5.7.4.2.5  UE initiated uplink (UL) small dataWord-p. 84
5.7.4.2.6  Network initiated downlink (DL) small dataWord-p. 85
5.7.4.2.7  S-GW relocationWord-p. 86
5.7.4.2.8  Switching between small data fast path and regular UPWord-p. 87
5.7.4.3  Connectionless Data Transmission solution
5.7.4.3.0  General
5.7.4.3.1  UE Initial Access and Token Allocation
5.7.4.3.2  Use of a Token for Subsequent Network AccessWord-p. 89
5.7.4.3.3  Cached Context Invalidation and DeletionWord-p. 91
5.7.4.3.4  Token Lifetime Management.
5.7.4.3.5  Threat scenariosWord-p. 92
5.7.4.4  MTC-IWF based Secure Solution for Small data transmissionWord-p. 93
5.7.4.4.1  Background and requirements
5.7.4.4.2  Potential solutions
5.7.4.4.3  Solution overview
5.7.4.4.4  Detailed SolutionWord-p. 94
5.7.4.5  Connectionless Data Transmission Solution Using Separate Security ContextWord-p. 100
5.7.4.5.1  GeneralUp
5.7.4.5.2  Separate Security Context MechanismWord-p. 101
5.7.4.5.3  Key Derivation
5.7.4.5.4  Security Procedure:Word-p. 102
5.7.4.5.5  Switching from Connectionless to Connected modeWord-p. 103
5.7.6  EvaluationWord-p. 104
5.7.6.1  General
5.7.6.2  Connectionless Data Transmission Solution
5.7.6.3  MTC-IWF based Secure Solution for Small data transmission
5.7.6.3.0  General
5.7.6.3.1  BenefitsUp
5.7.6.3.2  Impacts to existing systemWord-p. 106
5.7.6.3.3  Open issues
5.7.6.4  Security Solutions of Small Data Transfer in NAS PDU
5.7.6.5  Security Solution of Small Data Fast Path in User Plane
5.7.6.6  Security Evaluation on Different Solutions of Small Data OptimizationWord-p. 107
5.7.6.7  Overall EvaluationWord-p. 108
6  General Security RequirementWord-p. 109
7  Conclusions
7.1  Rel-11 Conclusions
7.2  Rel-12 ConclusionsUp
A  Key Issues and Solutions deferred from Rel-12Word-p. 110
A.1  Time controlled
A.1.1  Issue Details
A.1.2  Threats
A.1.3  Security requirements
A.1.4  Solutions
A.1.5  EvaluationWord-p. 111
A.2  Low Mobility
A.2.1  Issue Details
A.2.2  ThreatsUp
A.3  Security of UE Configuration
A.3.1  Issues Details
A.3.2  Threats
A.3.3  Security Requirements
A.3.4  SolutionsWord-p. 112
A.3.4.1  ME Configuration
A.3.4.2  UICC Configuration
A.3.5  EvaluationWord-p. 113
A.4  Reject message without integrity protection
A.4.1  Issue DetailsUp
A.4.2  Threats
A.4.3  Security Requirements
A.5  Congestion Control
A.5.1  Issue Details
A.5.2  Threats
A.5.3  Security requirements
A.5.4  SolutionsWord-p. 114
A.5.5  Evaluation
A.6  Group Based Feature
A.6.1  Issue DetailsUp
A.6.2  ThreatsWord-p. 115
A.6.3  Security Requirements
A.6.4  Solutions
A.6.4.1  Solution 1: Application layer based protection
A.6.4.2  Solution 2: Network based protection for cell broadcast
A.6.4.3  Solution 3: MBMS based methodWord-p. 116
A.6.4.4  Solution 4: Authentication of UEs of a groupWord-p. 117
A.6.5  Evaluation
A.7  Monitoring
A.7.1  Issue DetailsUp
A.7.2  Threats
A.7.3  Security Requirements
A.7.4  SolutionsWord-p. 118
A.7.4.1  Location Management
A.7.4.1.0  General
A.7.4.1.1  Impacts on existing nodes or functionality
A.7.5  Evaluation
B  Change historyWord-p. 119

Up   Top