Tech-invite3GPPspaceIETF RFCsSIP
Quick21222324252627282931323334353637384‑5x

Content for  TR 33.851  Word version:  17.1.0

Top   Top   Up   Prev   None
1…   5…
5 Key issues6 Solutions7 ConclusionsA Security considerationsB Prevention of spoofing attacks due to tampered Domain NumberC Asymmetric delay attacks$ Change history

 

5  Key issuesWord‑p. 9

5.1  Key issue#1: Security for time synchronization messagesWord‑p. 9

5.1.1  Key issue detailsWord‑p. 9

5.1.2  Security threatsWord‑p. 9

5.1.3  Potential security requirementsWord‑p. 9

5.2  Key issue #2: Multiple TSN working domainsWord‑p. 9

5.2.1  Key issue detailsWord‑p. 9

5.2.2  ThreatsWord‑p. 10

5.2.3  Potential security requirementsWord‑p. 10

5.3  Key Issue #3: Protection of UE-UE TSC communicationWord‑p. 10

5.3.1  Key issue detailsWord‑p. 10

5.3.2  Security threatsWord‑p. 10

5.3.3  Potential security requirementsWord‑p. 11

5.4  Key Issue #4: Protection of AF-NEF interfaceWord‑p. 11

5.4.1  Key issue detailsWord‑p. 11

5.4.2  Security threatsWord‑p. 11

5.4.3  Potential security requirementsWord‑p. 11

6  SolutionsWord‑p. 12

6.0  Mapping of solutions to key issuesWord‑p. 12

6.1  Solution#1: Protection on time synchronization messages in TSN bridge modeWord‑p. 12

6.1.1  IntroductionWord‑p. 12

6.1.2  Solution detailsWord‑p. 12

6.1.3  EvaluationWord‑p. 13

6.2  Solution #2: Security solution for protection of AF-NEF interfaceWord‑p. 13

6.2.1  IntroductionWord‑p. 13

6.2.2  Solution detailsWord‑p. 14

6.2.3  EvaluationWord‑p. 14

6.3  Solution #3: Protection on time synchronization messages by fixing the security protection policyWord‑p. 14

6.3.1  IntroductionWord‑p. 14

6.3.2  Solution detailsWord‑p. 14

6.3.3  EvaluationWord‑p. 15

7  ConclusionsWord‑p. 15

7.1  Conclusions on Key Issue #1: Security for time synchronization messagesWord‑p. 15

7.2  Conclusion on Key Issue #2: Multiple TSN working domainsWord‑p. 15

7.3  Conclusions on Key Issue #3: Protection of UE-UE TSC communicationWord‑p. 15

7.4  Conclusion for Key Issue #4: Protection of AF-NEF interface for TSN bridge modeWord‑p. 15

A  Security considerationsWord‑p. 15

A.1  Guidance on TSN AF - CUC/CNC interface security for integration with TSNWord‑p. 15

B  Prevention of spoofing attacks due to tampered Domain NumberWord‑p. 16

B.1  Filtering incoming messages based on authorization policiesWord‑p. 16

B.1.1  GeneralWord‑p. 16

B.1.2  Threat descriptionWord‑p. 16

B.1.3  CountermeasuresWord‑p. 17

C  Asymmetric delay attacksWord‑p. 17

C.1  IntroductionWord‑p. 17

C.2  Calculation of offset between clocksWord‑p. 17

C.3  Delay attacks on time synchronisation messagesWord‑p. 17

C.4  ConsiderationsWord‑p. 18

$  Change historyWord‑p. 19

Up   Top