ETSI TS 187 001-2014 Network Technologies (NTECH) NGN SECurity (SEC) Requirements (V3 9 1)《网络技术 (NTECH) NGN安全性 (SEC) 要求 (V3 9 1)》.pdf

1、 ETSI TS 187 001 V3.9.1 (2014-07) Network Technologies (NTECH); NGN SECurity (SEC); Requirements TECHNICAL SPECIFICATION ETSI ETSI TS 187 001 V3.9.1 (2014-07) 2Reference RTS/NTECH-00008-SEC-REQ Keywords security, service ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4

2、 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice The present document can be downloaded from: http:/www.etsi.org The present document may be made available in electronic versi

3、ons and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is t

4、he print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is avail

5、able at http:/portal.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http:/portal.etsi.org/chaircor/ETSI_support.asp Copyright Notification No part may be reproduced or utilized in any form or by any means, electron

6、ic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The content of the PDF version shall not be modified without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media. European Telecom

7、munications Standards Institute 2014. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and

8、 the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 187 001 V3.9.1 (2014-07) 3Contents Intellectual Property Rights 5g3Foreword . 5g3Modal verbs terminology 5g3Introduction 5g31 Scope 6g32 References 6g32.1 Normative references . 6g32.2 Informative references 7g33

9、 Definitions and abbreviations . 7g33.1 Definitions 7g33.2 Abbreviations . 8g34a Security Objectives. 9g34 Security Requirements . 12g34.1 Security Policy Requirements 12g34.2 Authentication, Authorization, Access Control and Accountability Requirements . 12g34.3 Identity and Secure Registration Req

10、uirements . 15g34.4 Communications and Data Security Requirements 15g34.4.1 General Communications and Data Security Requirements . 15g34.4.2 Integrity and Replay Protection Requirements . 16g34.4.3 Confidentiality Requirements . 16g34.5 Privacy Requirements . 17g34.6 Key Management Requirements 18g

11、34.7 Secure Management Requirements 18g34.8 NAT/Firewall Interworking Requirements 18g34.9 Non-Repudiation Requirements . 18g34.10 Availability and DoS protection Requirements 18g34.11 Assurance Requirements 19g34.12 Requirements on Strength of Security Mechanisms . 19g34.13 IPTV Security Requiremen

12、ts 19g34.13.1 Common IPTV Security Requirements 19g34.13.2 IPTV Service Protection Requirements 20g34.13.3 IPTV Content Protection Requirements . 20g34.13.4 IMS-based IPTV Security Requirements 20g34.13.5 Non-IMS-based IPTV Security Requirements 21g34.13.6 Availability and DoS Protection Requirement

13、s 21g34.14 DRM . 21g34.15 Media Security Requirements 22g34.15.1 Common Media Security Requirements . 22g34.15.1.1 Regulatory Requirements 22g34.15.1.2 Non-broadcast media paths . 22g34.15.1.3 NGN Requirements . 22g34.15.1.4 NGCN Requirements 23g34.15.2 IMS-based Media Security Requirements 23g34.15

14、.3 Non-IMS-based Media Security Requirements 23g34.16 Security Requirements to Counter Unsolicited Communications 23g34.17 Business communication security requirements . 23g34.17.1 General security requirements 23g34.17.2 Specific security requirements for NGN/NGCN interconnection . 24g34.17.3 Speci

15、fic security requirements for hosted enterprise services 24g34.17.4 Specific security requirements for business trunking application . 24g34.17.4.1 Security requirements for (subscription-based) business trunking application . 24g34.17.4.2 Security requirements for (peering-based) business trunking

16、application. 24g3ETSI ETSI TS 187 001 V3.9.1 (2014-07) 44.17.5 Specific security requirements for virtual leased line . 24g34.18 NAT Traversal Security Requirements 24g34.19 Home Networking Security Requirements . 25g34.19.1 Confidentiality requirements 25g34.19.2 Identification, authentication and

17、authorization requirements 25g34.19.3 Integrity requirements . 26g34.19.4 Availability and DoS protection requirements 26g34.19.5 Service protection and/or content protection software upgrade security requirements. 26g34.20 H.248 Security Requirements . 27g35 NGN Security Release 2 Requirements Mapp

18、ing 28g35.1 Network Access SubSystem (NASS) . 28g35.2 Resource and Admission Control Subsystem (RACS) . 30g35.3 The Core IP Multimedia Subsystem (IMS) 31g35.4 The PSTN/ISDN Emulation subsystem (PES) . 33g35.5 Application Server (AS) . 34g3Annex A (informative): Bibliography . 36g3Annex B: Void 37g3A

19、nnex C (informative): Trust domains in NGN 38g3C.1 Definition of trust for the NGN - analysis 38g3C.2 Requirements for creation of trusted channel . 39g3C.2.1 Functional security requirements for trusted channel in the NGN . 39g3C.3 Existing NGN capabilities 39g3Annex D (informative): Security Objec

20、tive Categories . 40g3D.1 Security Objective Categories Definitions . 40g3Annex E (informative): Security Objectives 41g3E.1 General objectives 41g3E.2 Security objective category confidentiality 41g3E.3 Security objective category integrity 42g3E.4 Security objective category availability . 42g3E.5

21、 Security objective category authenticity 42g3Annex F (informative): Change history . 43g3History 44g3ETSI ETSI TS 187 001 V3.9.1 (2014-07) 5Intellectual Property Rights IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to thes

22、e essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found in ETSI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest

23、updates are available on the ETSI Web server (http:/ipr.etsi.org). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web se

24、rver) which are, or may be, or may become, essential to the present document. Foreword This Technical Specification (TS) has been produced by ETSI Technical Committee Network Technologies (NTECH). Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “m

25、ay not“, “need“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of provisions). “must“ and “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. Introductio

26、n The TISPAN NGN R3 security is defined by the security requirements in the present document, while the architectural aspects and stage 2 implementations outline are covered in the Security Architecture for R3 (TS 187 003 1). ETSI ETSI TS 187 001 V3.9.1 (2014-07) 61 Scope The present document define

27、s the security requirements pertaining to TISPAN NGN Release 3. The present document holds requirements for the various NGN subsystems defined at a stage 1 level. The present document covers security requirements for both the NGN core network, and the NGN access network(s). The main scope of the sec

28、urity requirements for the different subsystems are to identify requirements in the following main areas: Security Policies. Authentication, Authorization, Access Control and Accountability. Identity and Secure Registration. Communications and Data Security Requirements (including confidentiality, i

29、ntegrity aspects). Privacy. Key Management. NAT/Firewall Interworking. Availability and DoS protection. Assurance. Strength of Security Mechanisms. 2 References References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific re

30、ferences, only the cited version applies. For non-specific references, the latest version of the reference document (including any amendments) applies. Referenced documents which are not found to be publicly available in the expected location might be found at http:/docbox.etsi.org/Reference. NOTE:

31、While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. 2.1 Normative references The following referenced documents are necessary for the application of the present document. 1 ETSI TS 187 003: “Telecommunications and Intern

32、et converged Services and Protocols for Advanced Networking (TISPAN); NGN Security; Security Architecture“. 2 ETSI TS 133 203: “Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); 3G security; Access security for IP-based services (3GPP TS 33.203

33、)“. 3 ETSI TS 133 210: “Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); 3G security; Network Domain Security (NDS); IP network layer security (3GPP TS 33.210)“. 4 ETSI EG 202 238: “Telecommunications and Internet Protocol Harmonization Over N

34、etworks (TIPHON); Evaluation criteria for cryptographic algorithms“. ETSI ETSI TS 187 001 V3.9.1 (2014-07) 72.2 Informative references The following referenced documents are not necessary for the application of the present document but they assist the user with regard to a particular subject area. i

35、.1 ISO 15408-1: “Information technology - Security techniques - Evaluation criteria for IT security - Part 1: Introduction and general model“. i.2 IEEE 802.1X: “ IEEE Standard for Local and metropolitan area networks Port Based Network Access Control“. i.3 ISO 15408-2: “Information technology - Secu

36、rity techniques - Evaluation criteria for IT security - Part 2: Security functional components“. i.4 IETF RFC 3324: “Short Term Requirements for Network Asserted Identity“. i.5 IETF RFC 3325: “Private Extensions to the Session Initiation Protocol (SIP) for Asserted Identity within Trusted Networks“.

37、 i.6 Void. i.7 Void. i.8 Void. i.9 Void. i.10 ISO 27000: “Information technology - Security techniques - Information security management systems - Overview and vocabulary“. i.11 ETSI TR 187 011: “Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); NGN S

38、ecurity; Application of ISO-15408-2 requirements to ETSI standards - guide, method and application with examples“. i.12 ETSI TR 187 010: “Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); NGN Security; Report on issues related to security in identity

39、imanagement and their resolution in the NGN“. i.13 ETSI TS 124 229: “Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Internet Protocol (IP) multimedia call control protocol based on Session Initiation Protocol (SIP) and Session Description Pr

40、otocol (SDP); Stage 3 (3GPP TS 24.229)“. i.14 ISO/IEC TR 13335 (2004): “Information technology - Guidelines for management of IT Security“. i.15 ETSI TR 187 002: “Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); TISPAN NGN Security (NGN-SEC); Threat,

41、 Vulnerability and Risk Analysis“. 3 Definitions and abbreviations 3.1 Definitions For the purposes of the present document, the following terms and definitions apply: anonymous communication: anonymous communication session is given when a user receiving a communication session cannot identify the

42、originating user trusted channel: means by which an NGN and a remote NGN/NGCN can communicate with necessary confidence to support the security policies of the NGN (from ISO 15408-1 i.1) ETSI ETSI TS 187 001 V3.9.1 (2014-07) 8trusted domain: in the context of one or more NGNs interconnected by the N

43、NI as defined in TS 124 229 i.13 clause 4.4 then trust is achieved by implementing one or more of the security mechanisms defined in TS 187 003 1 trusted path: means by which a user and a NGN/NGCN can communicate with necessary confidence to support the security policies of the NGN/NGCN (from ISO 15

44、408-1 i.1) 3.2 Abbreviations For the purposes of the present document, the following abbreviations apply: 3G 3rdGeneration 3GPP 3rdGeneration Partnership Project AA Authentication e.g. avoid bidding-down attacks. Users shall be able to reject communications that do not conform to their minimum secur

45、ity policy. (R-SP- 3) The security mechanisms shall be partitioned such that the functions of authentication, data integrity, replay detection, and confidentiality may be implemented and selected independently of each other, insofar as this makes sense. (R-SP- 4) The UE shall always offer encryption

46、 algorithms for P-CSCF to be used for the session and the P-CSCF policy shall define whether to use encryption or not. (R-SP- 5) The UE and the P CSCF shall negotiate the integrity algorithm that shall be used for the session. (R-SP- 6) The policy of the HN shall be used to decide if an authenticati

47、on shall take place for the registration of different IMPUs e.g. belonging to same or different service profiles. (R-SP- 7) The security gateway functions (SEGF) shall be responsible for enforcing security policies for the interworking between networks. NOTE: The actual inter-security domain policy

48、is not standardized and is left to the discretion of the roaming agreements of the operators. (R-SP- 8) SEGFs are responsible for security sensitive operations and shall offer capabilities for secure storage of long-term keys used for IKE authentication. 4.2 Authentication, Authorization, Access Con

49、trol and Accountability Requirements General Access authentication (R-AA- 1) Access to NGN networks, services, and applications shall be provided for authorized users only. (R-AA- 2) NGN IMS authentication shall support early deployment scenarios, although it is optional for operators to deploy such scenarios. ETSI ETSI TS 187 001 V3.9.1 (2014-07) 13 (R-AA- 3) In non-early deployment scenarios, IMS authentication shall be independent from access authentication. (R-AA- 4) An ISIM shall be used to acc