TS33.185V2.0.0.(2017-06)SecurityaspectforLTEsupportofV2Xservices.docx

3GPPTS33.185V2.0.0.(2017-06)TechnicalSpecification3rdGenerationPartnershipProject;TechnicalSpecificationGroupServicesandSystemAspects;SecurityaspectforLTEsupportofV2Xservices(Release14)35曾Thepresentdocumenthasbeendevelopedwithinthe3rdGenerationPartnershipProject(3GPPTM)andmaybefurtherelaboratedforthepurposesof3GPP.Thepresentdocumenthasnotbeensubjecttoanyapprovalprocessbythe3GPPOrganizationalPartnersandshallnotbeimplemented.ThisSpecificationisprovidedforfuturedevelopmentworkwithin3GPPonly.TheOrganizationalPartnersacceptnoliabilityforanyuseofthisSpecification.SpecificationsandReportsforimplementationofthe3GPPwsystemshouldbeobtainedviathe3GPPOrganizationalPartners'PublicationsOffices.KeywordsV2X1LTE1Security3GPPPostaladdress3GPPsupportofficeaddress650RoutedesLucioles-SophiaAntipolisValbonne-FRANCETel.:+33492944200Fax:+33493654716Internethttp:/www.3gpp.orgCOPyrightNOtifiCationNopartmaybereproducedexceptasauthorizedbywrittenpermission.Thecopyrightandtheforegoingrestrictionextendtoreproductioninallmedia.02017.3GPPOrganizationalPartners(ARIB,ATIS,CCSA,ETSLTSDSI,TTA,TTC).Allrightsreserved.UMTSisaTradeMarkofETSIregisteredforthebenefitofitsmembers3GPPisaTradeMarkofETSIregisteredIbrthebenefitofitsMembersandofthe3GPPOrganizationalPartnersLTEisaTradeMarkofETSIregisteredforthebenefitofitsMembersandofthe3GPPOrganizationalPartnersGSM®andtheGSMlogoareregisteredandownedbytheGSMAssociationContentsForeword41 Scope52 References53 Definitionsandabbreviations63.1 Definitions63.2 Abbreviations64 V2Xsecurityarchitecture65 V2Xsecurityrequirements65.1 General65.2 Interfacesbetweennetworkelements75.3 InterfacebetweenUEandV2Xcontrolfunction(V3)75.4 Interfacebetweenexternalproviderand3GPPnetwork(MB2)75.5 SecurityrequirementsofV2Xapplicationdata75.6 Privacyrelatedrequirements75.7 SecurityrequirementforV2XEntitiesSecureEnvironment86 V2Xsecuritysolutions86.1 General86.2 V2Xcommunicationbetweennetworkelements86.2.1 General86.2.2 Securityprocedures86.3 V2XcommunicationbetweenUEandV2XControlFunction(V3)86.3.1 General86.3.2 SecurityproceduresforconfigurationtransfertotheUICC86.3.3 SecurityproceduresfordatatransfertotheUE96.4 InterfacebetweenV2Xapplicationserverand3GPPnetwork(MB2)96.5 SecurityofV2Xapplicationdata96.5.1 General96.5.2 Securityprocedures106.6 PrivacyinV2Xservices106.6.1 General106.6.2 PrivacyproceduresrelatedtoPC5transmissions1()AnnexA(informative):Changehistory11ForewordThisTechnicalSpecificationhasbeenproducedbythe3rdGenerationPartnershipProject(3GPP).ThecontentsofthepresentdocumentaresubjecttocontinuingworkwithintheTSGandmaychangefollowingformalTSGapproval.ShouldtheTSGmclifythecontentsofthepresentdocument,itwillbere-releasedbytheTSGwithanidentifyingchangeofreleasedateandanincreaseinversionnumberasfollows:Versionx.y.zwhere:xthefirstdigit:1 presentedtoTSGforinformation;2 presentedtoTSGforapproval;3 orgreaterindicatesTSGapproveddocumentunderchangecontrol.ytheseconddigitisincrementedforallchangesofsubstance,i.e.technicalenhancements,corrections,updates,etc.zthethirddigitisincrementedwheneditorialonlychangeshavebeenincorporatedinthedocument.1 ScopeThepresentdocumentspecifiesthesecurityaspectsofV2XfeaturesinLTE,includingsecurityarchitecture,securityrequirementsonthenetworkentitiesthatareusedtosupportV2Xservices,aswellastheproceduresandsolutionswhichareprovidedtomeetthoserequirements.2 ReferencesThefollowingdocumentscontainprovisionswhich,throughreferenceinthistext,constituteprovisionsofthepresentdocument.- Referencesareeitherspecific(identifiedbydateofpublication,editionnumber,versionnumber,etc.)ornon-specific.- Foraspecificreference,subsequentrevisionsdonotapply.- Foranon-specificreference,thelatestversionapplies.Inthecaseofareferencetoa3GPPdocument(includingaGSMdocument),anon-specificreferenceimplicitlyreferstothelatestversionofthatdocumentinthesameReleaseasthepresentdocument.1 3GPPTR21.905:'lVocabularyfor3GPPSpecifications".2 3GPPTS22.185:"ServicerequirementsforV2Xservices1'.3 3GPPTS23285:"ArchitectureenhancementsforV2Xservices(Release14)".4 3GPPTS33.210:"3Gsecurity;NetworkDomainSecurity(NDS);IPnetworklayersecurity".5 3GPPTS33.310:"NetworkDomainSecurity(NDS);AuthenticationFramework(AF)".6 ETSITS102225:"SmartCards;SecuredpacketstructureforUICCbasedapplications".7 ETSITS102226:"Smartcards;RemoteAPDUstructureforUICCbasedapplications".8 3GPPTS31.115:"Securedpacketstructurefor(Universal)SubscriberIdentityModule(U)SIMToolkitapplications".9 3GPPTS31.116:"RemoteAPDUStructurefor(U)SIMTlkitapplications".10 3GPPTS33.303:"Proximity-basedServices(ProSe);Securityaspects".11 3GPPTS29.368:"TspinterfaceprotocolbetweentheMTCInterworkingFunction(MTC-IWF)andSen,iceCapabilityServer(SCS).12 3GPPTS33.401:"3GPPSystemArchitectureEvolution(SAE):SecurityArchitecture".13 3GPPTS33.223:"GenericAuthentica