1、 ETSI TS 131 112 V8.0.0 (2009-03)Technical Specification Universal Mobile Telecommunications System (UMTS);LTE;Universal Subscriber Identity ModuleApplication Toolkit (USAT)interpreter architecture description;Stage 2 (3GPP TS 31.112 version 8.0.0 Release 8)ETSI ETSI TS 131 112 V8.0.0 (2009-03) 1 3G
2、PP TS 31.112 version 8.0.0 Release 8 Reference RTS/TSGC-0631112v800 Keywords LTE, UMTS ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de
3、 Grasse (06) N 7803/88 Important notice Individual copies of the present document can be downloaded from: http:/www.etsi.org The present document may be made available in more than one electronic version or in print. In any case of existing or perceived difference in contents between such versions,
4、the reference version is the Portable Document Format (PDF). In case of dispute, the reference shall be the printing on ETSI printers of the PDF version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revisio
5、n or change of status. Information on the current status of this and other ETSI documents is available at http:/portal.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http:/portal.etsi.org/chaircor/ETSI_support.asp
6、Copyright Notification No part may be reproduced except as authorized by written permission. The copyright and the foregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2009. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTM, TIPHONTM, the TIPHON l
7、ogo and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM is a Trade Mark of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. LTE is a Trade Mark of ETSI currently being registered for the benefit of its Members and of the
8、3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 2 3GPP TS 31.112 version 8.0.0 Release 8 Intellectual Property Rights IPRs essential or potentially essential to the present document may have been de
9、clared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found in ETSI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, whi
10、ch is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (http:/webapp.etsi.org/IPR/home.asp). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs no
11、t referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword This Technical Specification (TS) has been produced by ETSI 3rd Generation Partnership Project (3GPP). The present document may refer to technical
12、specifications or reports using their 3GPP identities, UMTS identities or GSM identities. These should be interpreted as being references to the corresponding ETSI deliverables. The cross reference between GSM, UMTS, 3GPP and ETSI identities can be found under http:/webapp.etsi.org/key/queryform.asp
13、. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 3 3GPP TS 31.112 version 8.0.0 Release 8 Contents Intellectual Property Rights2 Foreword.2 Foreword.4 1 Scope 5 2 References 5 3 Definitions and abbreviations.5 3.1 Definitions5 3.2 Abbreviations .6 4 Main concept6 4.1 USAT Interpreter system definition .6 4.2
14、 Role model .7 4.3 USAT Interpreter System Architecture 8 4.4 Protocol layers9 4.4.1 Transport layer9 4.4.2 Operational layer 10 4.4.3 Presentation layer10 4.4.4 Application layer 10 5 Security functionality in the USAT Interpreter System .10 5.1 Transport Layer Security11 5.2 End-to-end Security11
15、5.2.1 Symmetric Security.12 5.2.2 Asymmetric Security 12 6 Modes of Operation12 6.1 User Triggered Transaction Flow Pull mode.12 6.2 Network Triggered Transaction Flow Push mode.15 6.3 USAT Interpreter triggered transaction flow Post mode .16 6.4 Administrative mode 16 Annex A (informative): Change
16、History 18 History 19 ETSI ETSI TS 131 112 V8.0.0 (2009-03) 4 3GPP TS 31.112 version 8.0.0 Release 8 Foreword This Technical Specification (TS) has been produced by the 3rdGeneration Partnership Project (3GPP). The contents of the present document are subject to continuing work within the TSG and ma
17、y change following formal TSG approval. Should the TSG modify the contents of the present document, it will be re-released by the TSG with an identifying change of release date and an increase in version number as follows: Version x.y.z where: x the first digit: 1 presented to TSG for information; 2
18、 presented to TSG for approval; 3 or greater indicates TSG approved document under change control. y the second digit is incremented for all changes of substance, i.e. technical enhancements, corrections, updates, etc. z the third digit is incremented when editorial only changes have been incorporat
19、ed in the document. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 5 3GPP TS 31.112 version 8.0.0 Release 8 1 Scope The present document defines the stage 2 description for the USAT Interpreter system. As the second stage of a three-level structure, it is derived from the stage 1 service description. The pre
20、sent document defines the overall architecture for the USAT Interpreter system: Role models; System architecture; Function and information flow. The stage 3 documents shall conform to the present document. 2 References The following documents contain provisions which, through reference in this text,
21、 constitute provisions of the present document. References are either specific (identified by date of publication, edition number, version number, etc.) or non-specific. For a specific reference, subsequent revisions do not apply. For a non-specific reference, the latest version applies. In the case
22、 of a reference to a 3GPP document (including a GSM document), a non-specific reference implicitly refers to the latest version of that document in the same Release as the present document. 1 3GPP TS 31.111: “USIM Application Toolkit (USAT)“. 2 3GPP TS 31.113: “USAT Interpreter Byte Codes“. 3 3GPP T
23、S 31.114: “USAT Interpreter Protocol and Administration“. 4 3GPP TS 23.048: “Security Mechanisms for the (U)SIM Application Toolkit; Stage2“. 3 Definitions and abbreviations 3.1 Definitions For the purposes of the present document, the following terms and definitions apply: Access Node: entity that
24、provides the transparent transport of the USAT Gateway to USAT Interpreter content Application Provider: entity that defines services using USAT Interpreter functionality Application System: entity that is a collection of Application Providers that utilise the USAT Interpreter for services requiring
25、 the usage of USIM Gateway: network program that translates from a source language to the USAT Interpreter byte codes NOTE 1: The gateway resides between the application providers server that contains pages written in the source language and a USIM containing the USAT Interpreter that will render th
26、ese pages. Gateway Selector: entity in the system architecture that decides which gateway shall be used to exchange user data Master Application Provider: entity that has the capability to act as a proxy between the Service Access Provider and the Application Providers that do not connect directly t
27、o the Service Access Provider. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 6 3GPP TS 31.112 version 8.0.0 Release 8 Page: the context of a USAT Interpreter rendering, the scope of USAT Interpreter variables and the unit of transmission between the Gateway and a USIM containing the USAT Interpreter NOTE 2:
28、 Pages exist in source code form expressed in a mark-up language and in compiled form as USAT Interpreter byte codes. Post mode: data transmission from the USAT Interpreter and the Application Provider triggered by the USAT Interpreter NOTE 3: The USAT Interpreter does not expect a related reply in
29、this mode. Pull mode: data exchange between the USAT Interpreter and the Application Provider triggered by the USAT Interpreter NOTE 4: The USAT Interpreter does expect a related reply in this mode by entering the Wait State. Push mode: data transmission between the USAT Interpreter and the Applicat
30、ion Provider triggered by the Application Provider NOTE 5: In the Push Mode information is received by the USAT Interpreter without an explicit preceding request as in the Pull Mode. Security Node: entity that provides security mechanisms according to TS 23.048 4. Service: collection of pages that d
31、efines an unitary capability of the user equipment from the point of view of the user NOTE 6: Examples include remote database access, electronic mail, and alerts. Service Access Provider: entity in the role model that provides connectivity between the 3G operator and the Application System Wait Sta
32、te: state which is entered by the USAT Interpreter in Pull Mode to wait for a response 3.2 Abbreviations For the purposes of the present document, the following abbreviations apply: GGSN Gateway GPRS Support Node GPRS General Packet Radio System HTTP Hyper Text Transfer Protocol IP Internet Protocol
33、 OSI Open System Interconnection RFC Request For Comments SMS Short Message Service SSL Secure Socket Layer as defined in a RFC TAR Toolkit Application Reference TS Technical Specification UE User Equipment URL Uniform Resource Locators USAT USIM Application Toolkit USIM Universal Subscriber Identit
34、y Module 4 Main concept 4.1 USAT Interpreter system definition The USAT Interpreter System allows Application Systems to use an USAT Interpreter for services requiring the usage of USAT (refer to TS 31.111 1) specific functionality. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 7 3GPP TS 31.112 version 8.0.
35、0 Release 8 4.2 Role model The role model gives an architectural overview of the requirements for USAT Interpreter systems. ApplicationProvider 3Service AccessProvider 2ApplicationProvider 2ApplicationProvider 1MasterApplicationProviderApplicationProvider 5ApplicationProvider 43G Operator 23G Operat
36、or 1Service AccessProvider 1UserUserApplication SystemFigure 1: USAT Interpreter role model The user has the USAT Interpreter installed on his USIM and uses the USAT Interpreter to gain access to applications that reside in the Application System. The 3G Operator is the entity that provides 3G-netwo
37、rk connectivity to the user. The Service Access Provider is the entity that provides connectivity between the 3G-operator network and the application system. The Service Access Provider can be either the same 3G operator or another party. The Service Access Provider can be shared between several 3G-
38、operators. The Application System provides the applications that are made available to the user through the system and the USAT Interpreter. The application system can be owned either by the operator or by another party, either completely or partially. It is also possible from an architecture point
39、of view to provide access to the same Application Provider through different operators and Service Access Providers. The Master Application Provider acts as a proxy between the Service Access Provider and Application Providers that do not connect directly to the Service Access Provider. From the Ser
40、vice Access Provider, the Master Application Provider acts just as a regular Application Provider. The Master Application Provider can have the capability to translate between application languages and protocols. The role model puts no limitation on the number of different 3G Operators, Service Acce
41、ss Providers or Application Providers. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 8 3GPP TS 31.112 version 8.0.0 Release 8 4.3 USAT Interpreter System Architecture ApplicationAddressGatewayAddressTransportLevelAddressAccessNodeAddress TARUSAT Interpreter Gateway SystemGateway2Gateway3Gateway4Gateway1Gate
42、way5ApplicationProviderApplicationProviderApplicationProviderApplicationProviderApplication SystemApplicationProviderN 1N 1N 1OperationalPullOperationalPushAdminUSAT InterpreterGateway SelectorSystemN N SecurityNodeAccessNodeMEUSIMN multiple entities1 single entityFigure 2: System Architecture The A
43、ccess Node is the network entity that provide the transport layer specific connectivity to the Security Node as specified in TS 23.048 4. The Access Node can be connected to any number of different Security Nodes. The bearer type determines the access node. For example in the case where SMS is the b
44、earer, the Access Node would be an SMSC. In GPRS the Access node would be a GGSN. The Access Node is addressed according to the bearers addressing principle. The user reaches the Access Node using the Service Center Address if the bearer is SMS. If the bearer is IP, the user addresses the Access Nod
45、e using its IP Address. The Security Node is the entity that terminates the 23.048 protocol. The Security Node is addressed according to the used bearer. For example in the case where SMS is used as bearer, the Access Node addresses the Security Node using the Destination Address. In the case where
46、the bearer is IP, the IP Port addressing is used to reach the Security Node. The Gateway Selector is the entity that subscribes to data from the Security Node based on TAR value and is responsible for connecting the data flow into the appropriate Gateway for the application that is addressed. The Ga
47、teway Selector System consists of logically separate Gateway Selectors to handle the different types of access. These are Administrative, Operational Pull and Operational Push Access. The distinction between these is made using separate TAR value ranges. Thus, one TAR value range is reserved for eac
48、h of these three different access types. The TAR value ranges are specified in TS 31.114 3. ETSI ETSI TS 131 112 V8.0.0 (2009-03) 9 3GPP TS 31.112 version 8.0.0 Release 8 The Gateway is the entity that has the capability to encode and decode data between the formats used by the application system an
49、d the USAT Interpreter byte codes. The Gateway terminates the operational layer of the protocols. One Gateway potentially handles only a limited set of conversions from Application encoding to USAT Interpreter byte codes. There might be Gateways for dedicated purposes that can be addressed using the Gateway Address. Examples can be separate Gateways for banking, different application languages, content types etc. The Gateway Selector addresses the Gateway using the Gateway Address. The Gateway Address is defined in the Operational Layer, wh