6、IMT-2020:《5G网络安全需求与构架》白皮书发布
相关主题
- 1、下载文档前请自行甄别文档内容的完整性,平台不提供额外的编辑、内容补充、找答案等附加服务。
- 2、"仅部分预览"的文档,不可在线预览部分如存在完整性等问题,可反馈申请退款(可完整预览的文档不适用该条件!)。
- 3、如文档侵犯您的权益,请联系客服反馈,我们会尽快为您处理(人工客服工作时间:9:00-18:30)。
Unified Authentication Framework
• Multiple access technologies • Multiple authentication • Devices of the vertical industry using the other authentication methods • The flexible and efficient mutual authentication and a unified key hierarchy.
5G Network Security Requirement & Architecture
IMT-2020 (5G) Promotion Group June 13, 2017
Overview
5
Challenges and Requirements
6
Key Capabilities
New service scenarios
Security related to the Infrastructure
SDN Controller Security
Network
Flexible privacy protection
Security Capability Exposure
Slicing Security
5G Network Security Architecture
Unified authentication framework
WLAN, LTE, fixed network, 5G new wireless access technology
Sound privacy protection policies
user identities, locations, services
5G network security
Various of service scenarios NFV/SDN, Network Slicing & Network capability exposure
Unified authentication framework
on-demand security protection
New service scenarios
New technology & New feature
New business models
Various access technologies & Devices
Increased privacy concerns
General Security Objects
New technology & New feature
New
business
models
Unified authentication framework
Multilayered Slicing Security
On-Demand Security Protection
Various access technologies & Devices
Reducing the cost of authentication and identity management; Ensure energy efficiency
Isolation and management of virtual SDN control elements and forwarding nodes
Increased privacy concerns
Various Security Credential Management Security Capability Exposure Flexible Privacy Protection
5G Security Challenges & Requirements
Unified identity management identifiers with different formats and different authentication credentials
Compatible with the LTE
downgrade attacks against privacy
User Application
(1) (1) (4) (1) (2) (6)
Provider Application
(5) (4)
NS
(2) (2)
(3) (1) (1) (2)
•
SN
SN Common Node
(3) (2)
HE
Control plane
UE
Байду номын сангаас
(R)AN
User plane
Novel Security Capabilities 1
eMBB
Requirements Challenges Extending the LTE security mechanism
NFV
The security of 5G infrastructure
Trusted model
mMTC
SDN
New trusted model to meet the requirements of new services
UE
AMF/SEAF
AUSF/ARPF
Gateway
Internet
Reduce the operator's investment and operating costs Provide an authentication function for the future potential new service of the 5G network
Trusted relationships
uRLLC
Network Slicing
Reduce communication delay
Isolation between slices, security of virtual networks
Operators establish trust relationships with third parties or vertical industries
Novel Security Capabilities 2
Multilayered Slicing Security