Transcript Security and Lawful Intercept - GSC-16

Document No:
GSC16-PLEN-39
Source:
TIA
Contact:
Jane Brownley ([email protected]
GSC Session:
PLENARY
Agenda Item:
6.3
Security and Lawful Intercept
Jane Brownley
Chair, TIA TR-45
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
GSC16-PLEN-39
Security
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
2
GSC16-PLEN-39
Current Activities - Security
• TIA Committee TR-45 supports security
standards development for US TDMA (TIA-136)
and CDMA (TIA-2000 and TIA-856)
• Most of TR-45’s work involves transposition of
specifications developed by 3GPP2 TSG-S WG4
• Current efforts:
– New Revision of Security framework for Femto-cells
– Advanced Security Framework for HRPD, eHRPD
and xHRPD
– Security for cdma2000 1x
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
3
GSC16-PLEN-39
Current Activities - Security
• Equipment Numbering Identifier security
continues as an agenda item during Global
Numbering Joint Expert Meetings moderated by
TR-45 EUMAG and hosted by TIA as MEID Global Hexadecimal Administrator (GHA) and
GSMA as IMEI -Global Decimal Administrator
(GDA)
• Air-Interface Application Layer Security
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
4
GSC16-PLEN-39
Strategic Direction
• TIA expects its TR-45 security work to continue
to be driven by 3GPP2, with input from IETF and
3GPP
• Security for Machine-to-machine
communications will be addressed in 2010-2011
• TR-45 EUMAG Chair moderates Global
Numbering Administrators i.e., IMEI (GSMA) &
MEID (TIA) sessions to co-ordinate
Administration of multimode equipment identifier
assignments.
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
5
GSC16-PLEN-39
Challenges
• ESN and UIMID resources are exhausted,
therefore Global implementation of MEID and
EUIMID for CDMA2000 continues to be
imperative
• Inconsistent implementation of security in the
networks
– Security is perceived as preventing fraud adequately,
therefore may lead to complacency in some systems
– Cost and complexity are usually cited as reasons for
not using authentication
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
6
GSC16-PLEN-39
Next Steps / Actions
• TIA plans to continue to monitor the security
environment faced by operators and users
• Any issues identified that are not addressed by
3GPP or 3GPP2 will be studied by TR-45
• TR-8, TR-34, and other TIA Engineering
Committees will continue to work on Security
requirements in their respective standards scope
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
7
GSC16-PLEN-39
Next Steps / Actions
• TR-45 EUMAG continues to support ESN/UIM
migration to MEID/EUIMID while maintaining
updates to Numbering Administration guidelines.
• TR-45 continues active participation during
3GPP2 SC M2M numbering Ad-Hoc activities.
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
8
GSC16-PLEN-39
Lawful Intercept (LI)
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
9
GSC16-PLEN-39
Current Activities – Lawful Intercept
• TR-45.8 Lawful Intercept Group (LIG) working on a draft
strawman document for a possible cdma2000®
Femtocell Lawful Interception Implementation Guide
based on the TR-45.8 internal report on LAES support
for cdma2000 with Femtocells
• TR-45.8 Lawful Intercept Group (LIG) continues to
address contributions received regarding cdma2000 LI.
• TR-45 and ATIS reaffirmed ANS J-STD-025B LAES joint
standard.
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
10
GSC16-PLEN-39
Strategic Direction
• TR-45 continues collaboration and coordination
with LI development in groups such as ATIS
WTSC and PTSC and 3GPP SA3 LI.
• TR-45 maintains the J-STD-025 LAES series of
joint standards as the lead SDO.
• TR-45 co-ordinates LAES Object IDentifier (OID)
administration under the “TIA” OID tree branch
for ASN.1 modules.
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
11
GSC16-PLEN-39
Challenges
• Keeping pace with the ongoing introduction of
new features and services to support LI
capabilities while maintaining LI standards
already implemented
• Consideration of the unique issues presented
with access to the Internet
– e.g., Local Breakout
• Communications protocols involved in
technology areas such as “Smart Grid” or
“Cloud Computing”
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
12
GSC16-PLEN-39
Next Steps/Actions
• TR-45 (jointly with ATIS) activity on a third Addendum
to ANS J-STD-025B is underway
• Potential TR45.8 LIG work in support of LI for
Femtocells based on the study
• Potential TR45.8 LIG work in support of new CDMA
features and services
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
13
GSC16-PLEN-39
Summary
• Contributions from ATIS, ETSI, and TIA
– Lawful Intercept
• Focus is on VOIP, Internet Access and Services, Local Breakout, Femtocells, Smart
Grid.
• Continue cross coordination and collaboration among the SDOs.
• Challenge is to develop standards to satisfy regulatory/mandated target dates so timely
consensus building is afforded and reliable implementations can be deployed.
– Security
• Focus on security enhancements for Femtocells, advanced security for HRPD, eHRPD
and XHRPD, Reconfigurable Radio Systems, IPv6, and new developments in the 3G
Partnership Projects. New key area for security is M2M.
• Equipment Numbering Identifier security continues as discussion items during Global
Numbering JEM moderated by TR-45 EUMAG hosted by IMEI (GSMA) & MEID (TIA)
• Stressed importance of cooperation among the SDOs.
• Challenge is to address the inconsistent implementations of security in the network.
• Recommendation
– Retain HIS for GSC-17
Halifax, 31 Oct – 3 Nov 2011
ICT Accessibility For All
14