1、 ETSI TS 1Universal Mobile TelLawful intercept(3GPP TS 33.1TECHNICAL SPECIFICATION133 107 V13.5.0 (2017elecommunications System (LTE; 3G security; ption architecture and functio.107 version 13.5.0 Release 1317-01) (UMTS); tions 13) ETSI ETSI TS 133 107 V13.5.0 (2017-01)13GPP TS 33.107 version 13.5.0
2、 Release 13Reference RTS/TSGS-0333107vd50 Keywords LTE,SECURITY,UMTS ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 780
3、3/88 Important notice The present document can be downloaded from: http:/www.etsi.org/standards-search The present document may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prio
4、r written authorization of ETSI. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present d
5、ocument should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at https:/portal.etsi.org/TB/ETSIDeliverableStatus.aspx If you find errors in the present document, please send your comment to on
6、e of the following services: https:/portal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The conten
7、t of the PDF version shall not be modified without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2017. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI logo are Trade Mar
8、ks of ETSI registered for the benefit of its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 133 107 V13.5.0 (2017-01)23GP
9、P TS 33.107 version 13.5.0 Release 13Intellectual Property Rights IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found in ET
10、SI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (https:/ipr.etsi.org/). Pursuant to the ETSI IPR Policy, no
11、 investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword This Technical
12、Specification (TS) has been produced by ETSI 3rd Generation Partnership Project (3GPP). The present document may refer to technical specifications or reports using their 3GPP identities, UMTS identities or GSM identities. These should be interpreted as being references to the corresponding ETSI deli
13、verables. The cross reference between GSM, UMTS, 3GPP and ETSI identities can be found under http:/webapp.etsi.org/key/queryform.asp. Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be inte
14、rpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of provisions). “must“ and “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. ETSI ETSI TS 133 107 V13.5.0 (2017-01)33GPP TS 33.107 version 13.5.0 Release 13Contents Intel
15、lectual Property Rights 2g3Foreword . 2g3Modal verbs terminology 2g3Foreword . 13g3Introduction 13g31 Scope 14g32 References 14g33 Definitions, symbols and abbreviations . 17g33.1 Definitions 17g33.2 Abbreviations . 17g34 Functional architecture . 19g35 Activation, deactivation and interrogation . 2
16、5g35.0 General . 25g35.1 Activation . 26g35.1.0 General 26g35.1.1 X1_1-interface 26g35.1.2 X1_2-interface (IRI) . 28g35.1.3 X1_3-interface (CC) . 29g35.2 Deactivation . 29g35.2.0 General 29g35.2.1 X1_1-interface 29g35.2.2 X1_2-interface (IRI) . 30g35.2.3 X1_3-interface (CC) . 30g35.3 Interrogation .
17、 31g35.3.0 General 31g35.3.1 Interrogation of the 3G ICEs. 31g35.3.2 Interrogation of Delivery Functions 32g36 Invocation of Lawful Interception (LI) for Circuit Switched (CS) services 33g36.0 General . 33g36.1 Provision of Intercept CC - Circuit Switched . 34g36.2 Provision of CC - Short Message Se
18、rvice 35g36.3 Provision of Intercept Related Information 35g36.3.0 General 35g36.3.1 X2-interface 36g36.3.2 Structure of the events 36g36.3.3 Call Related events . 39g36.3.3.1 Call establishment . 39g36.3.3.2 Answer 39g36.3.3.3 Supplementary Services 40g36.3.3.4 Handover . 40g36.3.3.5 Release 40g36.
19、3.4 Non Call Related events . 41g36.3.4.1 SMS. 41g36.3.4.2 Location update . 41g36.3.4.3 Subscriber Controlled Input (SCI) 41g36.3.5 HLR Related events 41g36.3.5.1 Serving system 41g36.3.5.2 HLR subscriber record change 42g36.3.5.3 Cancel location 42g36.3.5.4 Register location . 43g36.4 Intercept ca
20、ses for circuit switched supplementary services 44g3ETSI ETSI TS 133 107 V13.5.0 (2017-01)43GPP TS 33.107 version 13.5.0 Release 136.4.1 Interception of Multiparty call 44g36.4.2 Interception for Call Forwarding / Call Deflection / ECT 44g37 Invocation of Lawful Interception for GSN Packet Data serv
21、ices . 45g37.0 General . 45g37.1 Provision of Intercept Product - Short Message Service 46g37.2 Provision of Intercepted Content of Communications - Packet data GSN services . 47g37.2.0 General 47g37.2.1 X3-interface 47g37.3 Provision of Intercept Related Information 48g37.3.0 General 48g37.3.1 X2-i
22、nterface 48g37.3.2 Structure of the events 49g37.4 Packet Data related events 52g37.4.1 Mobile Station Attach. 52g37.4.2 Mobile Station Detach 52g37.4.3 Packet Data PDP context activation . 53g37.4.4 Start of interception with PDP context active . 53g37.4.5 Packet Data PDP context deactivation 54g37
23、.4.6 RA update . 54g37.4.7 SMS 54g37.4.8 Packet Data PDP context modification . 55g37.4.9 Serving System . 55g37.4.10 Start of interception with mobile station attached. 56g37.4.11 Packet Data Header Information . 56g37.4.11.0 Introduction . 56g37.4.11.1 Packet Data Header Report . 56g37.4.11.2 Pack
24、et Data Summary Report . 56g37.4.12 HLR subscriber record change 58g37.4.13 Cancel location . 58g37.4.14 Register location . 58g37.4.15 Location information request 59g37.4.16 Void 59g37.5 Void 59g37.6 Interception of the Multimedia Messaging Service (MMS) . 59g37A Invocation of Lawful Interception
25、for Packet Data Multi-media Service 59g37A.1 Provision of content of communications 59g37A.1.A Decryption for IMS Media Plane Security . 60g37A.2 Provision of IRI 60g37A.2.1 Provision of IRI with SIP messaging 60g37A.2.2 Provision of IRI with XCAP messages . 61g37A.2.3 Provision of IRI with Diameter
26、 messages related to HSS 61g37A.2.3.0 General 61g37A.2.3.1 Serving system 63g37A.2.3.2 HSS subscriber record change. 63g37A.2.3.3 Registration Termination 64g37A.2.4 Provision of IRI for WebRTC. 65g37A.3 Multi-media events . 65g37A.3.0 General 65g37A.3.1 Mid IMS Session Interception 67g37A.3.1.0 Gen
27、eral 67g37A.3.1.1 SDES Media Security . 68g37A.4 Multi-media Call State Control Service Scenarios . 68g37A.5 Push to talk over Cellular (PoC) . 68g37A.6 SMS over IMS 68g37A.7 LI for KMS based IMS Media Security . 68g37A.7.1 LI Architecture and functions . 68g37A.7.2 Signalling over the Xk interfaces
28、 and LI events . 69g37A.7.3 Cooperating KMSs . 70g37A.7.4 Security . 70g37A.7.5 Start of interception for an already established IMS media secured session 71g3ETSI ETSI TS 133 107 V13.5.0 (2017-01)53GPP TS 33.107 version 13.5.0 Release 137A.8 IMS IMEI Interception . 71g37A.9 Constraints for IMS VoIP
29、 Roaming Interception . 71g38 Security. 72g38.0 General . 72g38.1 Administration security 72g38.2 IRI security . 72g38.2.1 Normal operation 72g38.2.2 Communication failure . 73g38.3 CC security . 73g38.4 Security aspects of Lawful Interception (LI) billing 73g38.5 Other security issues . 73g38.5.1 L
30、og files 73g38.5.2 Data consistency . 73g39 Invocation of Lawful Interception (LI) for 3GPP WLAN interworking services 74g39.0 General . 74g39.1 Provision of Intercept Product - Short Message Service 74g39.2 Provision of Intercepted Content of Communications - 3GPP WLAN Interworking services 74g39.2
31、.0 General 74g39.2.1 X3-interface 75g39.3 Provision of Intercept Related Information 75g39.3.0 General 75g39.3.1 X2-interface 76g39.3.2 3GPP WLAN Interworking LI Events and Event Information . 76g39.4 Structure of I-WLAN Events 81g39.4.1 I-WLAN Access Initiation 81g39.4.2 WLAN Access Termination . 8
32、2g39.4.3 I-WLAN Tunnel Establishment 82g39.4.4 I-WLAN Tunnel Disconnect. 83g39.4.5 Start of Intercept with I-WLAN Communication Active 84g39.4.6 Packet Data Header Information . 85g39.4.6.0 Introduction . 85g39.4.6.1 Packet Data Header Report . 85g39.4.6.2 Packet Data Summary Report . 86g310 Interce
33、ption of Multimedia Broadcast/MultiCast Service (MBMS) 88g310.0 General . 88g310.1 Provision of Content of Communications 88g310.2 Provision of Intercept Related Information 88g310.2.0 General 88g310.2.1 X2-interface 89g310.2.2 MBMS LI Events and Event Information . 89g310.3 Structure of MBMS Events
34、 91g310.3.1 Service Joining 91g310.3.2 Service Leaving 91g310.3.3 Start of Interception with Service Active 92g310.3.4 Subscription Activation 92g310.3.5 Subscription Modification 92g310.3.6 Subscription Termination . 93g311 IMS Conference Services . 94g311.1 Background for IMS Conference Services .
35、 94g311.1A Start of Interception for IMS Conference Services 94g311.2 Provision of Intercepted Content of Communication - IMS Conference Services . 94g311.2.0 General 94g311.2.1 X3-interface 95g311.3 Provision of Intercept Related Information for IMS Conference Service 96g311.3.0 General 96g311.3.1
36、X2-interface 96g311.3.2 IMS Conference Events and Event Information . 96g311.3.3 Structure of Conference Events 99g311.3.3.1 Start of Conference . 99g3ETSI ETSI TS 133 107 V13.5.0 (2017-01)63GPP TS 33.107 version 13.5.0 Release 1311.3.3.2 Party Join 99g311.3.3.3 Party Leave . 100g311.3.3.3A Conferen
37、ce Bearer Modification . 100g311.3.3.4 Start of Intercept on an Active Conference . 101g311.3.3.5 Conference End . 101g311.3.3.6 Creation of Conference . 102g311.3.3.7 Update of Conference . 102g312 Lawful Interception for Evolved Packet System 104g312.1 LI functional architecture for EPS 104g312.2
38、Functional requirements for LI in case of E-UTRAN access and GTP based S5/S8. 106g312.2.0 General 106g312.2.1 Provision of Intercept Related Information 106g312.2.1.0 General 106g312.2.1.1 X2-interface 107g312.2.1.2 Structure of the events . 107g312.2.2 X3-interface 111g312.2.3 EPS related events 11
39、2g312.2.3.1 Attach 112g312.2.3.2 Detach . 112g312.2.3.3 Bearer activation . 112g312.2.3.4 Bearer deactivation 113g312.2.3.5 Bearer modification . 114g312.2.3.6 Start of interception with active bearer . 115g312.2.3.7 Tracking Area/EPS Location Update 115g312.2.3.8 Serving Evolved Packet System 115g3
40、12.2.3.9 UE requested PDN connectivity . 116g312.2.3.10 UE requested PDN disconnection . 116g312.2.3.11 UE requested Bearer Resource Modification 116g312.2.3.12 Void. 117g312.2.3.13 Start of interception with E-UTRAN attached UE 117g312.2.3.14 Packet Data Header Information . 117g312.2.3.14.0 Introd
41、uction . 117g312.2.3.14.1 Packet Data Header Report 118g312.2.3.14.2 Packet Data Summary Report 118g312.2.3.15 HSS subscriber record change. 119g312.2.3.16 Cancel location 120g312.2.3.17 Register location . 120g312.2.3.18 Location information request 120g312.3 Functional requirements for LI in case
42、of E-UTRAN access and PMIP based S5/S8 interfaces . 120g312.3.0 General 120g312.3.1 Provision of intercept related information 121g312.3.1.0 General 121g312.3.1.1 X2 interface . 121g312.3.1.2 Structure of the events . 122g312.3.2 X3-interface 124g312.3.3 LI events for E-UTRAN access with PMIP-based
43、S5 or S8 . 124g312.3.3.1 Initial E-UTRAN Attach and UE PDN requested connectivity with PMIP-based S5 or S8 . 124g312.3.3.2 Detach and PDN disconnection for PMIP-based S5/S8 125g312.3.3.3 Start of interception with active tunnel for PMIP based S5/S8 . 125g312.3.3.4 Dedicated Bearer Procedures for E-U
44、TRAN Access with PMIP-based S5/S8 . 125g312.3.3.5 PDN-GW initiated PDN-disconnection Procedure . 125g312.3.3.6 PMIP Session modification . 126g312.3.3.7 Packet Data Header Information . 126g312.3.3.7.0 Introduction . 126g312.3.3.7.1 Packet Data Header Report 126g312.3.3.7.2 Packet Data Summary Repor
45、t 127g312.4 Functional requirements for LI in case of trusted non-3GPP IP access . 128g312.4.0 General 128g312.4.1 Provision of Intercept Related Information 129g312.4.1.0 General 129g312.4.1.1 X2-interface 129g3ETSI ETSI TS 133 107 V13.5.0 (2017-01)73GPP TS 33.107 version 13.5.0 Release 1312.4.1.2
46、Structure of the events . 129g312.4.2 X3-interface 133g312.4.3 LI events for trusted Non-3GPP IP access 133g312.4.3.1 Initial Attach and PDN connection activation with PMIPv6 on S2a . 133g312.4.3.2 Initial Attach and PDN connection activation procedures with MIPv4 FACoA on S2a 134g312.4.3.3 Initial
47、Attach and PDN connection activation procedures with DSMIPv6 over S2c 134g312.4.3.4 Detach and PDN disconnection with PMIPv6 on S2a 135g312.4.3.5 Detach and PDN disconnection with MIPv4 FACoA . 135g312.4.3.6 Detach and PDN disconnection with DSMIPv6 on S2c . 135g312.4.3.7 PDN-GW reallocation upon in
48、itial attach on s2c 136g312.4.3.8 PDN GW initiated Resource Allocation Deactivation with S2a PMIP . 136g312.4.3.9 PDN GW initiated Resource Allocation Deactivation with S2a MIP v4 . 136g312.4.3.10 Serving Evolved Packet System 137g312.4.3.11 Start of interception with active tunnel or bearer 137g312
49、.4.3.12 PMIP session modification 137g312.4.3.13 DSMIP session modification . 137g312.4.3.14 Bearer activation . 138g312.4.3.15 Bearer deactivation 138g312.4.3.16 Bearer modification . 138g312.4.3.17 Packet Data Header Information . 138g312.4.3.17.0 Introduction . 138g312.4.3.17.1 Packet Data Header Report 138g312.4.3.17.2 Packet Data Summary Report 139g312.4.3.18 HSS subscriber record change. 140g312.4.3.19 Registration Termination 141g312.4.3.20 Location Information request 141g312.5 Functional requirements for LI in case of untrusted non-3GPP IP access 142g312.5.0 Introduc
