1、3400855 0328444 728 = EISI REPORT ETR 295 August 1996 Source: ETSI TC-RES Reference: DTWRES-06020 ICs: 33.060 Key words: TETRA, SIM Radio Equipment and Systems (RES); Trans-European Trunked Radio (TETRA); User requirements for Subscriber Identity Module (SIM) ETSI European Telecommunications Standar
2、ds Institute ETSI Secretariat Postal address: F-O6921 Sophia Antipolis CEDEX - FRANCE Office address: 650 Route des Lucioles - Sophia Antipoiis - Valbonne - FRANCE X.400: c=fr, a=atlas, p=etsi, s=secretariat - Internet: secretariatQetsi.fr Tel.: +33 92 94 42 O0 - Fax: +33 93 65 47 16 Copyright Notif
3、ication: No part may be reproduced except as authorized by written permission. The copyright and the foregoing restriction extend to reproduction in ail media. 8 European Telecommunications Standards Institute 1996. Ail rights reserved. ETSI ETRS295 96 3400855 0328445 664 Page 2 ETR 295: August 1996
4、 Whilst every care has been taken in the preparation and publication of this document, errors in content, typographical or otherwise, may occur. If you have comments concerning its accuracy, please write to “ETSI Editing and Committee Support Dept.“ at the address shown on the title page. Contents F
5、oreword . 5 Scope . References 7 Definitions and abbreviations 7 3.1 Definitions 7 3.2 Abbreviations . 8 General requirements . 9 Inter-operability 10 Support of non-standard applications 1 O Security 1 O SIM functions . 1 O Data storage requirements 11 9.1 Data access conditions 1 1 Annex A: Extrac
6、t from requirements of TAA1 12 History 13 ETSI ETR*:295 96 3400855 0128447 437 Page 4 ETR 295: August 1996 Blank page ETSI ETR*295 96 3400855 0328448 373 Page 5 ETR 295: August 1996 Foreword This ETSI Technical Report (ETR) has been prepared by the Radio Equipment and Systems (RES) Technical Committ
7、ee of the European Telecommunications Standards Institute (ETSI). ETRs are informative documents resulting from ETSI studies which are not appropriate for European Telecommunication Standard (ETS) or Interim European Telecommunication Standard (I-ETS) status. An ETR may be used to publish material w
8、hich is either of an informative nature, relating to the use or application of ETSs or I-ETSs, or which is immature and not yet suitable for formal adoption as an EIS or I-ETS. ETSI ETR*Z95 96 = 3400855 0128449 20T 9 Page 6 ETR 295: August 1996 Blank page Page 7 ETR 295: August 1996 ETSI ETR*Z95 96
9、3400855 0328450 T2L = 1 Scope ,This ETSI Technical Report (ETR) outlines the technical requirements specification of the Subscriber Identity Module (SIM) for the Trans-European Trunked Radio (TETRA) system. It represents the evolutionary development of the European Telecommunication Standards (ETSs)
10、 for TETRA. This ETR provides the starting point for the system design, and it is the main criteria against which alternative system designs can be judged. It introduces some logical grouping of functions but it should remain implementation independent. The SIM described in this ETR is a removal IC
11、card. The SIM is an optional device within TETRA Mobile Stations (MSs) and this ETR does not preclude the implementation of MSs without a SIM. The TETRA SIM may be realized through standards developed by ETSI, ETSI-CEG, IS0 or other groups, particularly with reference to the physical specification.
12、The TETRA SIM should be considered as a data store for the individual TETRA user. For information only there is an annex to this ETR. 2 References For the purposes of this ETR, the following reference applies: 1 prETS 300 392-7: “Radio Equipment and Systems (RES); Trans-European Trunked Radio (TETRA
13、); Voice plus Data (V+D); Part 7: Security“. 3 Definitions and abbreviations 3.1 Definitions For the purposes of this ETR, the following definitions apply: access conditions: A set of security attributes associated with a file. application: An application consists of a set of mechanisms, files, data
14、 and protocols (excluding transmission protocols). authentication: The act of positively verifying that the true identity of an entity (network, user) is the same as the claimed identity. bearer service: A type of telecommunication service that provides the capability for the transmission of signals
15、 between user-network interfaces. card session: A link between the card and the external world starting with the ATR and ending with a subsequent reset or a deactivation of the card. Dedicated File (DF): A file containing access conditions and, optionally, Elementary Files (EFs) or other DFs. direct
16、ory: General term for MF and DF. Elementary File (EF): A file containing access conditions and data and no other files. encryption: The conversion of plain text to cipher text. end-to-end: Is within the TETRA boundaries: - - - including Inter-System Interface (ISI). from TETRA terminal to TETRA term
17、inal (LS or MS); from TETRA terminal to gateways; ETSI ETR*295 96 3400855 OL28451 968 Page 8 ETR 295: August 1996 file: A directory or an organized set of bytes or records in the SIM. inter-operability: An attribute that describes the ability of a given subscriber terminal to obtain service from a g
18、iven infrastructure, using the appropriate standard TETRA interface protocols. key: A sequence of symbols that controls the operations of encipherment and decipherment. key management: The generation, selection, storage, distribution, deletion, archiving and application of keys in accordance with a
19、security policy. Location Area (LA): An area within a TETRA network that may comprise one, several or all cells. A MS may move freely without re-registering within a LA. A MS has continuity of service within a LA. A LA is geographically static. Master File (MF): The unique mandatory file containing
20、access conditions and optionally DFs and/or EFs. migration: The change of LA, each belonging to a different TETRA network. mobility: The act of a subscriber terminal changing its physical location. Mobile Station (MS): A physical grouping that contains all of the mobile equipment that is used to obt
21、ain TETRA services. By definition, a MS contains at least one Mobile Radio Stack (MRS). network: A collection of subscriber terminals interconnected through telecommunications devices. plain text: Information (including data) which is intelligible to all entities. process: The exact mechanism whereb
22、y a given service is performed. Registered Area (RA): The total area for which a MS is currently registered. The RA is defined by the list of LAS contained in the latest successful registration. registration: A function which allows a MS to tell the TETRA network that it has changed LA (roaming or m
23、igration), TETRA subscriber identity or mode of operation. This function enables the network to keep track of the MS. roaming: The change of LA within the same TETRA network. service: One of bearer service, teleservice, or supplementary service that in TETRA provides communications between two or mo
24、re points in a TETRA system. supplementary service: A supplementary service modifies or supplements a bearer service or a teleservice. A supplementary service cannot be offered to a customer as a stand alone service. It has to be offered in combination with a bearer service or a teleservice. teleser
25、vice: A type of telecommunications service that provides the complete capability, including terminal equipment functions, for communication between users according to agreed protocols. 3.2 Abbreviations For the purposes of this ETR, the following abbreviations apply: ACL ATR CCK CHV DCK DF EF ETSI C
26、EG GTSI Access Control List Answer To Reset Common Cipher Key Card Holder Verification Derived Cipher Key Dedicated File Elementary File ETSI Card Expert Group Group TETRA Subscriber Identity Page 9 ETR 295: August 1996 ETSI ETR*Z95 96 m 3400855 0328452 8T4 = IC ICC ITS1 LA LME MCC MF MNC MRS MS RA
27、SIM TETRA UNBLOCK CHV Integrated Circuit Integrated Circuit(s) Card Individual TETRA Subscriber Identity Location Area Layer Management Entity Mobile Country Code Master File Mobile Network Code Mobile Radio Stack Mobile Station Registered Area Subscriber Identity Module Trans-European Trunked RAdio
28、 Value to unblock CHV 4 General requirements The SIM is a device to provide secure storage of data, in which data is accessible only through a prescribed interface. The SIM is a device that should provide authentication of the user to the card and to the mobile, and that will also provide for authen
29、tication of the user/mobile-station pair to the network. The TETRA SIM should consider the following: - the SIM should be a removable device: - an operating system should exist in the SIM that provides an Access Control List (ACL), or similar process for verification of data access; - the SIM module
30、 should be in the form of an IC card device in which case the following should be considered: - physical dimensions should be as specified by ETSI CEG; - electrical interfaces should be as specified by ETSI CEG: - the card may be printed or embossed with additional manufacturer data within the limit
31、s given by ETSI CEG; - data storage should be controlled by the Layer Management Entity (LME) of the TETRA protocol stack; - real time processing should be carried out in the terminal; - off-line processing (e.g. authentication functions, initialisation functions) may be carried out in the SIM: - th
32、e SIM and its terminal should be treated as co-operative devices and not as stand-alone devices (.e. a SIM exists only when treated as part of a terminal, a terminal exists only as a complete entity when a SIM exists). The SIM also has to have the following characteristics: - all applications on the
33、 SIM have to be uniquely identifiable; - all TETRA SIM applications have to be registered in ETSI; - the terminal has to verify its ability to use the SIM application on power up; - the SIM and terminal have to be treated as an indivisible pair during operation. ETSI ETR*Z95 96 3400855 0128453 730 P
34、age 10 ETR 295: August 1996 The SIM should act as host of the TETRA authentication algorithm set specified in ETS 300 392-7 l. The implementation of this algorithm is described more fully in document reference ETSI STC RES 06 (95) 086, “Requirements Specification for the TETRA Authentication and Key
35、 Management Algorithms set 1 (TAAI)“, subclause 9.4. (See annex A). 5 Inter-operability It should be possible for terminals from any manufacturer to read from a SIM from any other manufacturer. The terminal equipment has to be able to interrogate the SIM application identity and to enable the equipm
36、ent operation if the SIM application is supported by the terminal. All SIM card applications that comply with the TETRA SIM ETS should be registered as TETRA applications by ETSI. 6 Support of non-standard applications A general purpose IC Card that is used as a SIM may host non-TETRA applications a
37、nd these should be registered either in ETSI or in ISO. If non-ETSI applications, or non-TETRA applications, co-exist on the SIM there should be no interference with TETRA data or commands. 7 Security The storage of secure information on a removable SIM should consider the following rules in additio
38、n to those defined by ETSI-CEG and ETSI-TES: - dynamic data should be stored on the SIM only for the lifetime of the function using the data (e.9. short term keys (Derived Cipher Key (DCK), Common Cipher Key (CCK); NOTE: DCK has a lifetime equal to the time from a successful authentication until one
39、 of a new authentication demand, an Individual TETRA Subscriber Identity (ITSI) detach, or power down of the mobile station. - the terminal and SIM act as a pair and breaking of the relationship between the pair should result in cessation of current operation (.e. removal of SIM from the terminal sh
40、ould result in the immediate loss of the call and all registration parameters); - there should be a mechanism of verifying the identity of the card holder by means of CHV; - there should be a mechanism of verifying the subscriber identity to the network; - if the secret key “K“ is stored on the card
41、 it should not be readable via the card interface; - data access should be protected by means of an Access Control List (ACL). 8 SIM functions The TETRA SIM applications include the following functional groups: - authentication and key management as defined in ETS 300 392-7 i; - terminal initializat
42、ion; - terminal personalization; - end-to-end encryption key management. The functions should be initiated by a command set approved by ETSI-CEG as not likely to cause conflict in a multi-application card. ETSI ETR*Z95 96 W 3400855 0328454 677 m Page 11 ETR 295: August 1996 ITS1 9 Data storage requi
43、rements Individual Tetra Subscriber Identity User Name Alias The TETRA SIM should be considered as a data store for the individual TETRA user. Table 1 identifies that data which is considered static. Static data has a lifetime equal to the lifetime of the card (itself less than or equal to the lifet
44、ime of the ITSI). All other data may be considered as dynamic with a lifetime greater than a card session and needs to be maintained on the card when powered down. Dynamic data of this type may be changed during the lifetime of the card. GTSls It should therefore allow the storage of the items indic
45、ated in table 1. Group TETRA Subscriber Identity Group Name Alias Table 1 : Static data MNC Mobile Network Code Directory User Secret Key Static Cipher Keys l To provide displayable address book for ITS1 and/or GTSI Add ress- Al ias 48 bits + alias I MCC I Mobile Country Code SDS Message alias Suppl
46、ementary Service Profile I SCK Alias Stream 48 bits 40 chars 48 bits 40 chars each 128 bits 80 bits by 32 keys 14 bits 1 O bits 24 bits each 128 bits each 40 chars each bitmap 40 bits TBA Static Static Static Static Common name of user associatec with the ITS1 (may be used for display) This should a
47、llow for storage of the GTSls to which the subscriber is permanently assigned Common name of group associated with each GTSI (may be used for display) This should not be readily accessible and is used only by the authentication algorithm Location in a storage stack should equate to SCKn. Used by mob
48、ility management in roaming and migration. Is part of ITS1 Used by mobility management in roaming and migration. Is pari of ITS1 Pre-determined migration profile One key required for each distinct end-to-end encryption unit installed Text string that should be displayed upon receipt of either STATUS
49、 or SDS-1,2,3 message To identify which supplementary services may be used by a subscriber To be aligned with ETS 300 392-7 9.1 Data access conditions The relationships between data elements should be considered. Deletion and/or update of an element should not alter its relationship with any other element. It may be appropriate to define the data model of the TETRA SIM using Structured Query Language (SQL) and/or entity relationship diagrams. Where the data is protected by an interface protocol the interface may be defined using Specification Description Language (SDL). ETSI ETR*Z5
