Therefore there is a need to ensure that simple yet

Info icon This preview shows pages 106–107. Sign up to view the full content.

View Full Document Right Arrow Icon
Therefore, there is a need to ensure that simple, yet adequately secure, mechanisms are in place to protect against the most significant security threats that will exist in early IMS implementations. This Annex documents an interim security solution for early IMS implementations that are not fully compliant with the IMS security architecture specified in the main body of this specification. For security reasons, the provisions in this Annex only apply to IMS procedures used over the 3GPP PS domain. T.2 Requirements The following requirements apply for GPRS-IMS-Bundled Authentication (GIBA): Low impact on existing entities: GIBA should be such that impacts on existing entities, especially on the UE, are minimised and would be quick to implement. It is especially important to minimise impact on the UE to maximise interoperability with early IMS UEs. Adequate level of security: Although it is recognised that the GIBA solution will be simpler than the fully compliant IMS security solution as specified in the main body of this specification, it should still provide an adequate level of security to protect against the most significant security threats that will exist in early IMS implementations. As a guide, the strength of subscriber authentication should be comparable to the level of authentication provided for existing chargeable services in mobile networks. Smooth and cost effective migration path to fully compliant solution: Clearly, any security mechanisms developed for early IMS systems will provide a lower level of protection compared with that offered by the fully compliant IMS security solution. The security mechanisms developed for early IMS systems should therefore be considered as an interim solution and migration to the fully compliant IMS security solution should take place as soon as suitable products become available at an acceptable cost. In particular, the GIBA solution should not be used as a long-term replacement for the fully compliant IMS security solution. It is important that the GIBA solution allows a smooth and cost-effective migration path to the fully compliant IMS security solution. Co-existence with fully compliant solution: It is clear that UEs supporting the GIBA solution will need to be supported even after fully compliant IMS UEs are deployed. The GIBA solution should therefore be able to co-exist with the fully compliant IMS security solution. In particular, it shall be possible for the SIP/IP core to differentiate between a subscription using the GIBA mechanism and a subscription using the fully compliant IMS security solution. Protection against bidding down: It should not be possible for an attacker to force the use of the GIBA solution when both the UE and the network support the fully compliant IMS security solution.
Image of page 106

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Image of page 107
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern