TR 33.872
Study on Security enhancements to
Web Real Time Communication (WebRTC) Access to IMS

V13.0.0 (Wzip) 2015/09 18 p.

full Table of Contents for TR 33.872 Word version: 13.0.0

each clause number in 'red' refers to the equivalent title in the Partial Content

Scope p. 5

References p. 5

Definitions and abbreviations p. 6

3.1	Definitions p. 6
3.2	Abbreviations p. 6

Overview p. 6

Assumptions and potential security requirements p. 6

5.1	Potential security requirements p. 6

Solutions p. 6

Solutions to support for end to end WebRTC security that avoids conversion between WebRTC and IMS security protocols p. 6

Solutions to support registration of WebRTC IMS Client using IMPU assigned from wildcarded IMPU p. 7

Candidate solutions for TURN credential provisioning and authentication p. 7

General p. 7

TURN credential provisioning and authentication using OAuth Access tokens p. 8

6.3.2.1	General p. 8
6.3.2.2	OAuth Implicit Grant based TURN Authentication in WebRTC p. 9
6.3.2.3	OAuth Client Credentials grant based TURN Authentication in WebRTC p. 11

TURN authentication via eP-CSCF provided credentials p. 13

Assessment of candidate solutions p. 15

Conclusion p. 17

Firewall traversal for WebRTC media p. 17

Assessment of solutions p. 18

Conclusions and recommendations p. 18

Change History p. 18