Tech-
invite
3GPP
space
IETF
RFCs
SIP
Quick
21
22
23
24
25
26
27
28
29
31
32
33
34
35
36
37
38
4‑5x
Content for
TR 33.881
Word version: 17.1.0
0…
5…
5
Key issues
6
Solutions
7
Conclusions
$
Change history
5
Key issues
Word‑p. 7
5.1
Key Issue #1: Support of EAP-AKA' authentication for NSWO
Word‑p. 7
5.1.1
Key issue details
Word‑p. 7
5.1.2
Security threats
Word‑p. 7
5.1.3
Potential security requirements
Word‑p. 7
6
Solutions
Word‑p. 8
6.1
Solution #1: Non-Seamless WLAN offload Authentication in 5GS
Word‑p. 8
6.1.1
Introduction
Word‑p. 8
6.1.2
Solution details
Word‑p. 8
6.1.2.1
Architectural overview
Word‑p. 8
6.1.2.2
NSWO authentication procedure
Word‑p. 9
6.1.3
System impact
Word‑p. 10
6.1.4
Evaluation
Word‑p. 11
6.2
Solution #2: NSWO authentication using credentials retrieved from UDM/ARPF
Word‑p. 11
6.2.1
Introduction
Word‑p. 11
6.2.2
Solution Details
Word‑p. 11
6.2.2.1
Architecture Overview
Word‑p. 11
6.2.2.2
Flows
Word‑p. 12
6.2.2.3
Subscriber Privacy
Word‑p. 14
6.2.2.4
Key derivation
Word‑p. 14
6.2.3
System impact
Word‑p. 14
6.2.4
Evaluation
Word‑p. 15
6.3
Solution #3: NSWO authentication using credentials retrieved from UDM/ARPF via HSS
Word‑p. 15
6.3.1
Introduction
Word‑p. 15
6.3.2
Solution Details
Word‑p. 15
6.3.2.1
Architecture Overview
Word‑p. 15
6.3.2.2
Flows
Word‑p. 17
6.3.2.3
SUPI Privacy
Word‑p. 18
6.3.2.4
Key derivation
Word‑p. 18
6.3.3
System impact
Word‑p. 18
6.3.4
Evaluation
Word‑p. 19
7
Conclusions
Word‑p. 19
7.1
Conclusion for key issue #1
Word‑p. 19
$
Change history
Word‑p. 21