the road to 5g€¦ · etsi 5g security workshop, 15 june, 2017, sophia antipolis dr. anand r....
TRANSCRIPT
The Road to 5G
ETSI 5G Security Workshop, 15 June, 2017, Sophia Antipolis
Dr. Anand R. Prasad, NEC Corporation
Chief Advanced Technologist, Executive Specialist
Fellow IET and IETE, Chairman 3GPP SA3
Disclaimer: This presentation gives views of the author and not necessarily that of NEC or 3GPP
3 © NEC Corporation 2017 Dr. Anand R. Prasad
3GPP TSG SA WG3 (Security)
▌The WG has the overall responsibility for security and privacyin 3GPP systems
performs analysis of potential threats to these systems
determines the security and privacy requirements for 3GPP systems
specifies the security architectures and protocols
ensures the availability of cryptographic algorithms which need to be part of the specifications
▌http://www.3gpp.org/Specifications-groups/sa-plenary/54-sa3-security
4 © NEC Corporation 2017 Dr. Anand R. Prasad
3GPP Release 14
3GPP Release 15
3GPP Release 15
3GPP Release 16
Study on Architecture and Security for Next Generation System
TR 33.899
EPC enhancements to support 5G New Radio via Dual Connectivity
TS 33.401, December’17
5G System and Security Architecture - Phase 1
TS 33.501, March’18
Phase 2
5 © NEC Corporation 2017 Dr. Anand R. Prasad
3GPP SA3 Approach – Security Areas
Architectural aspects of Next
Generation security
Authentication
Security context and Key
management
RAN Security
Security within NG-UE
Authorization
Subscription privacy
Network slicing security
Network Domain security
Security visibility and
configurability
Security for Interworking and
Migration
Management security
Cryptographic algorithms
Relay Security
Credential provisioning
Security aspects of small data
Broadcast/Multicast Security
6 © NEC Corporation 2017 Dr. Anand R. Prasad
UDM
CP Confidentiality
CP Integrity
UP Confidentiality
UP Integrity
NDS
5G Architecture with Security Associations
N4
N11
N2
PCFAMF
SMF
SEAF
AUSF
SCMF
UPF
AFN5N7
ARPF
N8
N9
N10
N12
N13
N14
N15
N3
N1
F1 F1
DNN6
Primary Authentication
DN-AAA
Secondary Authentication
7 © NEC Corporation 2017 Dr. Anand R. Prasad
Abbreviations
▌AF Application Function
▌AMF Access and Mobility Management Function
▌AUSF Authentication Server Function
▌CP Control Plane
▌DN Data network, e.g. operator services, Internet access or 3rd party services
▌PCF Policy Control function
▌SMF Session Management Function
▌UDM Unified Data Management
▌UP User Plane
▌UPF User Plane Function
▌UE User Equipment
▌ (R)AN (Radio) Access Network