TS 33515 4.2.2.1.1 Priority of UP security policy
TS 33515 4.2.2.1. 3 Security functional requirements on the SMF checking UP security policy
4.2.2.1.1 Priority of UP security policy
Requirement Name: Priority of UP security policy
Requirement Reference: TS 23.501 [1], clause 5.10.3
Requirement Description: “User Plane Security Policy from UDM takes precedence over locally configured User Plane Security Policy.” as specified in TS 23.501 [1], clause 5.10.3
Threat References: TR 33.926 [4], clause J.2.2.1 Non-compliant UP security policy handling
Test Case:
Test Name: TC_UP_POLICY_PRECEDENCE_SMF
Purpose:
Verify that the user plane security policy from the UDM takes precedence at the SMF under test over locally configured user plane security policy.
Pre-Conditions:
Test environment with AMF and UDM may be simulated.
Both UDM and SMF under test are configured with UP security policy, and the UP security policies are different.
There is no Session Management Subscription data in SMF.
Execution Steps
- The tester triggers PDU session establishment procedure by sending Nsmf_PDUSession_CreateSMContext Request message to the SMF.
- The SMF under test retrieves the Session Management Subscription data using Nudm_SDM_Get service from UDM, where the Session Management Subscription data includes the user plane security policy stored in UDM.
- The tester captures the Namf_Communication_N1N2MessageTransfer message sent from the SMF under test to the AMF.
Expected Results:
There is a Security Indication IE in the N2 SM information contained in the Namf_Communication_N1N2MessageTransfer message, which is the same with the UP security policy configured in the UDM.
4.2.2.1. 3 Security functional requirements on the SMF checking UP security policy
Requirement Name: UP security policy check.
Requirement Reference: TS 33.501 [8], clause 6.6.1
Requirement Description:
"The SMF shall verify that the UE’s UP security policy received from the target ng-eNB/gNB is the same as the UE’s UP security policy that the SMF has locally stored. If there is a mismatch, the SMF shall send its locally stored UE’s UP security policy of the corresponding PDU sessions to the target gNB. This UP security policy information, if included by the SMF, is delivered to the target ng-eNB/gNB in the Path-Switch Acknowledge message. The SMF shall log capabilities for this event and may take additional measures, such as raising an alarm. "
Threat References: TR 33.926 [4], clause J.2.2.4, Unchecked UP security policy.
TEST CASE:
Test Name: TC_UP_SECURITY_POLICY _SMF
Purpose:
Verify that the SMF checks the UP security policy that is sent by the ng-eNB/gNB during handover.
Pre-Conditions:
The SMF under test is preconfigured with a UE UP security policy.
Execution
- The tester sends the Nsmf_PDUSession_SMContextUpate Request message to the SMF under test. A UE UP security policy different than the one preconfigured at the SMF under test is included in the Request message.
- The tester captures the Nsmf_PDUSession_SMContextUpdate Response message sent from the SMF under test.
Expected Results:
The preconfigured UE security policy is contained in the ‘n2SmInf’ IE in the captured Response message.