iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST EN 300 392-7 V3.4.1:2017

(Main)

Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 7: Security

Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 7: Security

The present document defines the Terrestrial Trunked Radio system (TETRA) supporting Voice plus Data (V+D). It
specifies the air interface, the inter-working between TETRA systems and to other systems via gateways, the terminal
equipment interface on the mobile station, the connection of line stations to the infrastructure, the security aspects in
TETRA networks, the management services offered to the operator, the performance objectives, and the supplementary
services that come in addition to the basic and teleservices.
The present part describes the security mechanisms in TETRA V+D. It provides mechanisms for confidentiality of
control signalling and user speech and data at the air interface, authentication and key management mechanisms for the
air interface and for the Inter-System Interface (ISI).
Clause 4 describes the authentication and key management mechanisms for the TETRA air interface. The following two
authentication services have been specified for the air-interface in ETSI ETR 086-3 [i.3], based on a threat analysis:
• authentication of an MS by the TETRA infrastructure;
• authentication of the TETRA infrastructure by an MS.
Clause 5 describes the mechanisms and protocol for enable and disable of both the mobile station equipment and the
mobile station user's subscription.
Air interface encryption may be provided as an option in TETRA. Where employed, clause 6 describes the
confidentiality mechanisms using encryption on the air interface, for circuit mode speech, circuit mode data, packet data
and control information. Clause 6 describes both encryption mechanisms and mobility procedures. It also details the
protocol concerning control of encryption at the air interface.
The present document does not address the detail handling of protocol errors or any protocol mechanisms when TETRA
is operating in a degraded mode. These issues are implementation specific and therefore fall outside the scope of the
TETRA standardization effort.
The detail description of the Authentication Centre is outside the scope of the present document.

Prizemni snopovni radio (TETRA) - Govor in podatki (V+D) - 7. del: Varnost

Ta dokument opredeljuje prizemni snopovni radijski sistem (TETRA), ki podpira govor in podatke (V+D). Določa radijski vmesnik, medsebojno delovanje med prizemnimi snopovnimi radijskimi sistemi in drugimi sistemi prek prehodov, vmesnik terminalske opreme na mobilni postaji, povezavo linijskih postaj z infrastrukturo, varnostne vidike prizemnih snopovnih radijskih omrežij, storitve upravljanja, ki so razpoložljive operaterju, cilje učinkovitosti ter dopolnilne storitve, ki so na voljo poleg osnovnih in telekomunikacijskih storitev.
Ta del opisuje varnostne mehanizme govora in podatkov v okviru prizemnega snopovnega radia. Zagotavlja mehanizme za zaupnost krmilne signalizacije ter govora in podatkov uporabnika prek radijskega vmesnika, mehanizme za preverjanje pristnosti in ključne mehanizme za upravljanje radijskega vmesnika in medsistemskega vmesnika (ISI).
Točka 4 opisuje mehanizme za preverjanje pristnosti in ključne mehanizme za upravljanje za radijski vmesnik prizemnega snopovnega radia. Naslednji storitvi preverjanja pristnosti za radijski vmesnik sta na podlagi analize groženj določeni v standardu ETSI ETR 086-3 [i.3]:
• preverjanje pristnosti mobilne postaje (MS) z infrastrukturo prizemnega snopovnega radia;
• preverjanje pristnosti infrastrukture prizemnega snopovnega radia z mobilno postajo.
Točka 5 opisuje mehanizme in protokole za omogočanje in onemogočanje opreme mobilnih postaj in naročnine uporabnika.
Prizemni snopovni radio lahko omogoča možnost šifriranja radijskega vmesnika. Točka 6, kadar se uporablja,
opisuje mehanizme zaupnosti s šifriranjem radijskega vmesnika, govor v vodovnem načinu, podatke v vodovnem načinu, paketne podatke in informacije o nadzoru. Točka 6 opisuje mehanizme šifriranja in postopke mobilnosti. Vključuje tudi podroben opis protokola za nadzor šifriranja prek radijskega vmesnika.
Ta dokument ne obravnava podrobne obravnave napak protokola ali mehanizmov protokola, kadar prizemni snopovni radio deluje v degradiranem načinu. Ta vprašanja so specifična za posamezno izvedbo in zato ne spadajo na področje prizadevanj za standardizacijo prizemnega snopovnega radia.
Podroben opis centra za preverjanje pristnosti ne spada na področje uporabe tega dokumenta.

General Information

Status
Published
Public Enquiry End Date
29-Jun-2016
Publication Date
17-Jan-2017
ICS
33.070.10 - Terrestrial Trunked Radio (TETRA)
Technical Committee
MOC - Mobile Communications
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
09-Jan-2017
Due Date
16-Mar-2017
Completion Date
18-Jan-2017
Ref Project
ETSI EN 300 392-7 V3.4.1 (2017-01) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security

Buy Standard

EN 300 392-7 V3.4.1:2017EN 300 392-7 V3.4.1:2017
PreviousNext
Standard
EN 300 392-7 V3.4.1:2017
English language
216 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day
ETSI EN 300 392-7 V3.4.1 (2017-01) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: SecurityETSI EN 300 392-7 V3.4.1 (2017-01) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
PreviousNext
Standard
ETSI EN 300 392-7 V3.4.1 (2017-01) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
English language
216 pages
sale 15% off
Preview
sale 15% off
Preview
ETSI EN 300 392-7 V3.4.1 (2016-10) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: SecurityETSI EN 300 392-7 V3.4.1 (2016-10) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
PreviousNext
Standard
ETSI EN 300 392-7 V3.4.1 (2016-10) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
English language
217 pages
sale 15% off
Preview
sale 15% off
Preview
ETSI EN 300 392-7 V3.4.0 (2016-04) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: SecurityETSI EN 300 392-7 V3.4.0 (2016-04) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
PreviousNext
Standard
ETSI EN 300 392-7 V3.4.0 (2016-04) - Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
English language
214 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.Prizemni snopovni radio (TETRA) - Govor in podatki (V+D) - 7. del: VarnostTerrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 7: Security33.070.10Prizemni snopovni radio (TETRA)Terrestrial Trunked Radio (TETRA)ICS:Ta slovenski standard je istoveten z:ETSI EN 300 392-7 V3.4.1 (2017-01)SIST EN 300 392-7 V3.4.1:2017en01-marec-2017SIST EN 300 392-7 V3.4.1:2017SLOVENSKI
STANDARD



SIST EN 300 392-7 V3.4.1:2017



ETSI EN 300 392-7 V3.4.1 (2017-01) Terrestrial Trunked Radio (TETRA); Voice plus Data (V+D); Part 7: Security
EUROPEAN STANDARD SIST EN 300 392-7 V3.4.1:2017



ETSI ETSI EN 300 392-7 V3.4.1 (2017-01) 2
Reference REN/TETRA-06184 Keywords security, TETRA, V+D ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE
Tel.: +33 4 92 94 42 00
Fax: +33 4 93 65 47 16
Siret N° 348 623 562 00017 - NAF 742 C Association à but non lucratif enregistrée à la Sous-Préfecture de Grasse (06) N° 7803/88
Important notice The present document can be downloaded from: http://www.etsi.org/standards-search The present document may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx If you find errors in the present document, please send your comment to one of the following services: https://portal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The content of the PDF version shall not be modified without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media.
© European Telecommunications Standards Institute 2017. All rights reserved.
DECTTM, PLUGTESTSTM, UMTSTM and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM and LTE™ are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM® and the GSM logo are Trade Marks registered and owned by the GSM Association. SIST EN 300 392-7 V3.4.1:2017



ETSI ETSI EN 300 392-7 V3.4.1 (2017-01) 3 Contents Intellectual Property Rights . 11 Foreword . 11 Modal verbs terminology . 12 1 Scope . 13 2 References . 13 2.1 Normative references . 13 2.2 Informative references . 14 3 Definitions and abbreviations . 15 3.1 Definitions . 15 3.2 Abbreviations . 18 4 Air Interface authentication and key management mechanisms . 20 4.a General . 20 4.0 Security classes . 20 4.1 Air interface authentication mechanisms . 21 4.1.1 Overview . 21 4.1.1a Authentication and key management algorithms . 21 4.1.2 Authentication of an MS . 21 4.1.3 Authentication of the infrastructure . 22 4.1.4 Mutual authentication of MS and infrastructure . 23 4.1.5 The authentication key . 25 4.1.6 Equipment authentication . 25 4.1.6a Request for information related to an MS . 26 4.1.7 Authentication of an MS when migrated . 26 4.1.8 Authentication of the home SwMI when migrated . 27 4.1.9 Mutual Authentication of MS and infrastructure when migrated . 28 4.2 Air Interface key management mechanisms . 29 4.2.0 General . 29 4.2.1 The DCK . 29 4.2.2 The GCK . 30 4.2.2.0 General . 30 4.2.2.1 Session key modifier GCK0 . 31 4.2.3 The CCK . 32 4.2.4 The SCK . 33 4.2.4.0 General . 33 4.2.4.1 SCK association for DMO use . 35 4.2.4.1.0 General . 35 4.2.4.1.1 DMO SCK subset grouping . 35 4.2.5 The GSKO . 37 4.2.5.0 General . 37 4.2.5.1 SCK distribution to groups with OTAR . 38 4.2.5.2 GCK distribution to groups with OTAR . 38 4.2.5.3 Rules for MS response to group key distribution . 39 4.2.6 Encrypted Short Identity (ESI) mechanism . 39 4.2.7 Encryption Cipher Key . 40 4.2.8 Summary of AI key management mechanisms . 40 4.3 Service description and primitives . 42 4.3.1 Authentication primitives . 42 4.3.2 SCK transfer primitives . 42 4.3.3 GCK transfer primitives . 43 4.3.4 GSKO transfer primitives . 44 4.4 Authentication protocol . 45 4.4.1 Authentication state transitions . 45 4.4.2 Authentication protocol sequences and operations . 48 4.4.2.0 General . 48 4.4.2.1 MSCs for authentication . 49 SIST EN 300 392-7 V3.4.1:2017



ETSI ETSI EN 300 392-7 V3.4.1 (2017-01) 4 4.4.2.2 MSCs for authentication and security type-3 elements . 55 4.4.2.3 Control of authentication timer T354 at MS . 58 4.4a Information request protocol . 59 4.5 OTAR protocols . 62 4.5.1 CCK delivery - protocol functions . 62 4.5.1.0 General . 62 4.5.1.1 SwMI-initiated CCK provision . 63 4.5.1.2 MS-initiated CCK provision with U-OTAR CCK demand. 65 4.5.1.3 MS-initiated CCK provision with announced cell reselection . 65 4.5.2 OTAR protocol functions - SCK . 66 4.5.2.0 General . 66 4.5.2.1 MS requests provision of SCK(s) . 67 4.5.2.2 SwMI provides SCK(s) to individual MS . 68 4.5.2.3 SwMI provides SCK(s) to group of MSs . 70 4.5.2.4 SwMI rejects provision of SCK . 71 4.5.3 OTAR protocol functions - GCK . 72 4.5.3.0 General . 72 4.5.3.1 MS requests provision of GCK . 72 4.5.3.2 SwMI provides GCK to an individual MS . 74 4.5.3.3 SwMI provides GCK to a group of MSs . 75 4.5.3.4 SwMI rejects provision of GCK . 77 4.5.4 Cipher key association to group address . 78 4.5.4.0 General . 78 4.5.4.1 SCK association for DMO . 79 4.5.4.2 GCK association . 82 4.5.5 Notification of key change over the air . 84 4.5.5.0 General . 84 4.5.5.1 Change of DCK . 85 4.5.5.2 Change of CCK . 86 4.5.5.3 Change of GCK . 86 4.5.5.4 Change of SCK for TMO . 86 4.5.5.5 Change of SCK for DMO . 86 4.5.5.6 Synchronization of Cipher Key Change . 87 4.5.6 Security class change . 87 4.5.6.0 General . 87 4.5.6.1 Change of security class to security class 1 . 88 4.5.6.2 Change of security class to security class 2 . 88 4.5.6.3 Change of security class to security class 3 . 88 4.5.6.4 Change of security class to security class 3 with GCK . 88 4.5.7 Notification of key in use . 89 4.5.8 Notification of GCK Activation/Deactivation . 89 4.5.9 Deletion of SCK, GCK and GSKO . 89 4.5.10 Air Interface Key Status Enquiry . 91 4.5.11 Crypto management group . 93 4.5.12 OTAR retry mechanism . 94 4.5.13 OTAR protocol functions - GSKO . 94 4.5.13.0 General . 94 4.5.13.1 MS requests provision of GSKO . 95 4.5.13.2 SwMI provides GSKO to an MS . 95 4.5.13.3 SwMI rejects provision of GSKO . 96 4.5.14 OTAR protocol functions - interaction and queuing . 96 4.5.15 KSOv for OTAR operations in visited SwMI . 96 4.5.16 Transfer of AI cipher keys across the ISI . 100 5 Enable and disable mechanism . 100 5.0 General . 100 5.1 General relationships . 101 5.2 Enable/disable state transitions . 101 5.3 Mechanisms . 102 5.3.0 General . 102 5.3.1 Disable of MS equipment . 103 5.3.2 Disable of an subscription . 103 SIST EN 300 392-7 V3.4.1:2017



ETSI ETSI EN 300 392-7 V3.4.1 (2017-01) 5 5.3.3 Disable of subscription and equipment . 103 5.3.4 Enable an MS equipment . 103 5.3.5 Enable an MS subscription . 103 5.3.6 Enable an MS equipment and subscription . 103 5.4 Enable/disable protocol . 104 5.4.1 General case . 104 5.4.2 Status of cipher key material. 105 5.4.2.1 Permanently disabled state . 105 5.4.2.2 Temporarily disabled state . 105 5.4.3 Specific protocol exchanges . 106 5.4.3.0 General . 106 5.4.3.1 Disabling an MS with mutual authentication . 106 5.4.3.2 Enabling an MS with mutual authentication . 107 5.4.3.3 Enabling an MS with non-mutual authentication . 108 5.4.3.4 Disabling an MS with non-mutual authentication . 110 5.4.4 Enabling an MS without authentication . 111 5.4.5 Disabling an MS without authentication . 111 5.4.6 Rejection of enable or disable command . 111 5.4.6a Expiry of Enable/Disable protocol timer . 112 5.4.7 MM service primitives . 112 5.4.7.0 General . 112 5.4.7.1 TNMM-DISABLING primitive . 113 5.4.7.2 TNMM-ENABLING primitive . 113 6 Air Interface (AI) encryption . 113 6.1 General principles. 113 6.2 Security class . 114 6.2.a General . 114 6.2.0 Notification of security class . 115 6.2.0.0 General . 115 6.2.0.1 Security Class of Neighbouring Cells . 116 6.2.0.2 Identification of MS security capabilities . 116 6.2.1 Constraints on LA arising from cell class . 116 6.3 Key Stream Generator (KSG) . 116 6.3.0 General . 116 6.3.1 KSG numbering and selection . 117 6.3.2 Interface parameters . 117 6.3.2.1 Initial Value (IV) . 117 6.3.2.2 Cipher Key . 118 6.4 Encryption mechanism . 118 6.4.0 General . 118 6.4.1 Allocation of KSS to logical channels . 118 6.4.2 Allocation of KSS to logical channels with PDU association . 120 6.4.2.1 General . 120 6.4.2.2 KSS allocation on phase modulation channels . 121 6.4.2.3 KSS allocation on QAM channels . 122 6.4.2.3.0 General . 122 6.4.2.3.1 Fixed mapping . 122 6.4.2.3.2 Offset mapping . 123 6.4.3 Synchronization of data calls where data is multi-slot interleaved . 124 6.4.4 Recovery of stolen frames from interleaved data . 125 6.5 Use of cipher keys . 126 6.5.0 General . 126 6.5.1 Identification of encryption state of downlink MAC PDUs . 127 6.5.1.0 General . 127 6.5.1.1 Class 1 cells . 127 6.5.1.2 Class 2 cells . 128 6.5.1.3 Class 3 cells . 128 6.5.2 Identification of encryption state of uplink MAC PDUs . 128 6.6 Mobility proce
...

ETSI EN 300 392-7 V3.4.1 (2017-01)






EUROPEAN STANDARD
Terrestrial Trunked Radio (TETRA);
Voice plus Data (V+D);
Part 7: Security

---------------------- Page: 1 ----------------------
2 ETSI EN 300 392-7 V3.4.1 (2017-01)



Reference
REN/TETRA-06184
Keywords
security, TETRA, V+D
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - NAF 742 C
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° 7803/88

Important notice
The present document can be downloaded from:
http://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the
print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying
and microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© European Telecommunications Standards Institute 2017.
All rights reserved.

TM TM TM
DECT , PLUGTESTS , UMTS and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members.
TM
3GPP and LTE™ are Trade Marks of ETSI registered for the benefit of its Members and
of the 3GPP Organizational Partners.
GSM® and the GSM logo are Trade Marks registered and owned by the GSM Association.
ETSI

---------------------- Page: 2 ----------------------
3 ETSI EN 300 392-7 V3.4.1 (2017-01)
Contents
Intellectual Property Rights . 11
Foreword . 11
Modal verbs terminology . 12
1 Scope . 13
2 References . 13
2.1 Normative references . 13
2.2 Informative references . 14
3 Definitions and abbreviations . 15
3.1 Definitions . 15
3.2 Abbreviations . 18
4 Air Interface authentication and key management mechanisms . 20
4.a General . 20
4.0 Security classes . 20
4.1 Air interface authentication mechanisms . 21
4.1.1 Overview . 21
4.1.1a Authentication and key management algorithms . 21
4.1.2 Authentication of an MS . 21
4.1.3 Authentication of the infrastructure . 22
4.1.4 Mutual authentication of MS and infrastructure . 23
4.1.5 The authentication key . 25
4.1.6 Equipment authentication . 25
4.1.6a Request for information related to an MS . 26
4.1.7 Authentication of an MS when migrated . 26
4.1.8 Authentication of the home SwMI when migrated . 27
4.1.9 Mutual Authentication of MS and infrastructure when migrated . 28
4.2 Air Interface key management mechanisms . 29
4.2.0 General . 29
4.2.1 The DCK . 29
4.2.2 The GCK . 30
4.2.2.0 General . 30
4.2.2.1 Session key modifier GCK0 . 31
4.2.3 The CCK . 32
4.2.4 The SCK . 33
4.2.4.0 General . 33
4.2.4.1 SCK association for DMO use . 35
4.2.4.1.0 General . 35
4.2.4.1.1 DMO SCK subset grouping . 35
4.2.5 The GSKO . 37
4.2.5.0 General . 37
4.2.5.1 SCK distribution to groups with OTAR . 38
4.2.5.2 GCK distribution to groups with OTAR . 38
4.2.5.3 Rules for MS response to group key distribution . 39
4.2.6 Encrypted Short Identity (ESI) mechanism . 39
4.2.7 Encryption Cipher Key . 40
4.2.8 Summary of AI key management mechanisms . 40
4.3 Service description and primitives . 42
4.3.1 Authentication primitives . 42
4.3.2 SCK transfer primitives . 42
4.3.3 GCK transfer primitives . 43
4.3.4 GSKO transfer primitives . 44
4.4 Authentication protocol . 45
4.4.1 Authentication state transitions . 45
4.4.2 Authentication protocol sequences and operations . 48
4.4.2.0 General . 48
4.4.2.1 MSCs for authentication . 49
ETSI

---------------------- Page: 3 ----------------------
4 ETSI EN 300 392-7 V3.4.1 (2017-01)
4.4.2.2 MSCs for authentication and security type-3 elements . 55
4.4.2.3 Control of authentication timer T354 at MS . 58
4.4a Information request protocol . 59
4.5 OTAR protocols . 62
4.5.1 CCK delivery - protocol functions . 62
4.5.1.0 General . 62
4.5.1.1 SwMI-initiated CCK provision . 63
4.5.1.2 MS-initiated CCK provision with U-OTAR CCK demand. 65
4.5.1.3 MS-initiated CCK provision with announced cell reselection . 65
4.5.2 OTAR protocol functions - SCK . 66
4.5.2.0 General . 66
4.5.2.1 MS requests provision of SCK(s) . 67
4.5.2.2 SwMI provides SCK(s) to individual MS . 68
4.5.2.3 SwMI provides SCK(s) to group of MSs . 70
4.5.2.4 SwMI rejects provision of SCK . 71
4.5.3 OTAR protocol functions - GCK . 72
4.5.3.0 General . 72
4.5.3.1 MS requests provision of GCK . 72
4.5.3.2 SwMI provides GCK to an individual MS . 74
4.5.3.3 SwMI provides GCK to a group of MSs . 75
4.5.3.4 SwMI rejects provision of GCK . 77
4.5.4 Cipher key association to group address . 78
4.5.4.0 General . 78
4.5.4.1 SCK association for DMO . 79
4.5.4.2 GCK association . 82
4.5.5 Notification of key change over the air . 84
4.5.5.0 General . 84
4.5.5.1 Change of DCK . 85
4.5.5.2 Change of CCK . 86
4.5.5.3 Change of GCK . 86
4.5.5.4 Change of SCK for TMO . 86
4.5.5.5 Change of SCK for DMO . 86
4.5.5.6 Synchronization of Cipher Key Change . 87
4.5.6 Security class change . 87
4.5.6.0 General . 87
4.5.6.1 Change of security class to security class 1 . 88
4.5.6.2 Change of security class to security class 2 . 88
4.5.6.3 Change of security class to security class 3 . 88
4.5.6.4 Change of security class to security class 3 with GCK . 88
4.5.7 Notification of key in use . 89
4.5.8 Notification of GCK Activation/Deactivation . 89
4.5.9 Deletion of SCK, GCK and GSKO . 89
4.5.10 Air Interface Key Status Enquiry . 91
4.5.11 Crypto management group . 93
4.5.12 OTAR retry mechanism . 94
4.5.13 OTAR protocol functions - GSKO . 94
4.5.13.0 General . 94
4.5.13.1 MS requests provision of GSKO . 95
4.5.13.2 SwMI provides GSKO to an MS . 95
4.5.13.3 SwMI rejects provision of GSKO . 96
4.5.14 OTAR protocol functions - interaction and queuing . 96
4.5.15 KSOv for OTAR operations in visited SwMI . 96
4.5.16 Transfer of AI cipher keys across the ISI . 100
5 Enable and disable mechanism . 100
5.0 General . 100
5.1 General relationships . 101
5.2 Enable/disable state transitions . 101
5.3 Mechanisms . 102
5.3.0 General . 102
5.3.1 Disable of MS equipment . 103
5.3.2 Disable of an subscription . 103
ETSI

---------------------- Page: 4 ----------------------
5 ETSI EN 300 392-7 V3.4.1 (2017-01)
5.3.3 Disable of subscription and equipment . 103
5.3.4 Enable an MS equipment . 103
5.3.5 Enable an MS subscription . 103
5.3.6 Enable an MS equipment and subscription . 103
5.4 Enable/disable protocol . 104
5.4.1 General case . 104
5.4.2 Status of cipher key material. 105
5.4.2.1 Permanently disabled state . 105
5.4.2.2 Temporarily disabled state . 105
5.4.3 Specific protocol exchanges . 106
5.4.3.0 General . 106
5.4.3.1 Disabling an MS with mutual authentication . 106
5.4.3.2 Enabling an MS with mutual authentication . 107
5.4.3.3 Enabling an MS with non-mutual authentication . 108
5.4.3.4 Disabling an MS with non-mutual authentication . 110
5.4.4 Enabling an MS without authentication . 111
5.4.5 Disabling an MS without authentication . 111
5.4.6 Rejection of enable or disable command . 111
5.4.6a Expiry of Enable/Disable protocol timer . 112
5.4.7 MM service primitives . 112
5.4.7.0 General . 112
5.4.7.1 TNMM-DISABLING primitive . 113
5.4.7.2 TNMM-ENABLING primitive . 113
6 Air Interface (AI) encryption . 113
6.1 General principles. 113
6.2 Security class . 114
6.2.a General . 114
6.2.0 Notification of security class . 115
6.2.0.0 General . 115
6.2.0.1 Security Class of Neighbouring Cells . 116
6.2.0.2 Identification of MS security capabilities . 116
6.2.1 Constraints on LA arising from cell class . 116
6.3 Key Stream Generator (KSG) . 116
6.3.0 General . 116
6.3.1 KSG numbering and selection . 117
6.3.2 Interface parameters . 117
6.3.2.1 Initial Value (IV) . 117
6.3.2.2 Cipher Key . 118
6.4 Encryption mechanism . 118
6.4.0 General . 118
6.4.1 Allocation of KSS to logical channels . 118
6.4.2 Allocation of KSS to logical channels with PDU association . 120
6.4.2.1 General . 120
6.4.2.2 KSS allocation on phase modulation channels . 121
6.4.2.3 KSS allocation on QAM channels . 122
6.4.2.3.0 General . 122
6.4.2.3.1 Fixed mapping . 122
6.4.2.3.2 Offset mapping . 123
6.4.3 Synchronization of data calls where data is multi-slot interleaved . 124
6.4.4 Recovery of stolen frames from interleaved data . 125
6.5 Use of cipher keys . 126
6.5.0 General . 126
6.5.1 Identification of encryption state of downlink MAC PDUs . 127
6.5.1.0 General . 127
6.5.1.1 Class 1 cells . 127
6.5.1.2 Class 2 cells . 128
6.5.1.3 Class 3 cells . 128
6.5.2 Identification of encryption state of uplink MAC PDUs . 128
6.6 Mobility procedures . 129
6.6.1 General requirements .
...

Final draft ETSI EN 300 392-7 V3.4.1 (2016-10)






EUROPEAN STANDARD
Terrestrial Trunked Radio (TETRA);
Voice plus Data (V+D);
Part 7: Security

---------------------- Page: 1 ----------------------
2 Final draft ETSI EN 300 392-7 V3.4.1 (2016-10)



Reference
REN/TETRA-06184
Keywords
security, TETRA, V+D
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - NAF 742 C
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° 7803/88

Important notice
The present document can be downloaded from:
http://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the
print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying
and microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© European Telecommunications Standards Institute 2016.
All rights reserved.

TM TM TM
DECT , PLUGTESTS , UMTS and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members.
TM
3GPP and LTE™ are Trade Marks of ETSI registered for the benefit of its Members and
of the 3GPP Organizational Partners.
GSM® and the GSM logo are Trade Marks registered and owned by the GSM Association.
ETSI

---------------------- Page: 2 ----------------------
3 Final draft ETSI EN 300 392-7 V3.4.1 (2016-10)
Contents
Intellectual Property Rights . 11
Foreword . 11
Modal verbs terminology . 12
1 Scope . 13
2 References . 13
2.1 Normative references . 13
2.2 Informative references . 14
3 Definitions and abbreviations . 15
3.1 Definitions . 15
3.2 Abbreviations . 18
4 Air Interface authentication and key management mechanisms . 20
4.a General . 20
4.0 Security classes . 20
4.1 Air interface authentication mechanisms . 21
4.1.1 Overview . 21
4.1.1a Authentication and key management algorithms . 21
4.1.2 Authentication of an MS . 21
4.1.3 Authentication of the infrastructure . 22
4.1.4 Mutual authentication of MS and infrastructure . 23
4.1.5 The authentication key . 25
4.1.6 Equipment authentication . 26
4.1.6a Request for information related to an MS . 26
4.1.7 Authentication of an MS when migrated . 26
4.1.8 Authentication of the home SwMI when migrated . 27
4.1.9 Mutual Authentication of MS and infrastructure when migrated . 28
4.2 Air Interface key management mechanisms . 29
4.2.0 General . 29
4.2.1 The DCK . 29
4.2.2 The GCK . 30
4.2.2.0 General . 30
4.2.2.1 Session key modifier GCK0 . 31
4.2.3 The CCK . 32
4.2.4 The SCK . 33
4.2.4.0 General . 33
4.2.4.1 SCK association for DMO use . 35
4.2.4.1.0 General . 35
4.2.4.1.1 DMO SCK subset grouping . 35
4.2.5 The GSKO . 37
4.2.5.0 General . 37
4.2.5.1 SCK distribution to groups with OTAR . 38
4.2.5.2 GCK distribution to groups with OTAR . 38
4.2.5.3 Rules for MS response to group key distribution . 39
4.2.6 Encrypted Short Identity (ESI) mechanism . 39
4.2.7 Encryption Cipher Key . 40
4.2.8 Summary of AI key management mechanisms . 40
4.3 Service description and primitives . 42
4.3.1 Authentication primitives . 42
4.3.2 SCK transfer primitives . 42
4.3.3 GCK transfer primitives . 43
4.3.4 GSKO transfer primitives . 44
4.4 Authentication protocol . 45
4.4.1 Authentication state transitions . 45
4.4.2 Authentication protocol sequences and operations . 48
4.4.2.0 General . 48
4.4.2.1 MSCs for authentication . 49
ETSI

---------------------- Page: 3 ----------------------
4 Final draft ETSI EN 300 392-7 V3.4.1 (2016-10)
4.4.2.2 MSCs for authentication and security type-3 elements . 55
4.4.2.3 Control of authentication timer T354 at MS . 58
4.4a Information request protocol . 59
4.5 OTAR protocols . 62
4.5.1 CCK delivery - protocol functions . 62
4.5.1.0 General . 62
4.5.1.1 SwMI-initiated CCK provision . 63
4.5.1.2 MS-initiated CCK provision with U-OTAR CCK demand. 65
4.5.1.3 MS-initiated CCK provision with announced cell reselection . 65
4.5.2 OTAR protocol functions - SCK . 66
4.5.2.0 General . 66
4.5.2.1 MS requests provision of SCK(s) . 67
4.5.2.2 SwMI provides SCK(s) to individual MS . 68
4.5.2.3 SwMI provides SCK(s) to group of MSs . 70
4.5.2.4 SwMI rejects provision of SCK . 71
4.5.3 OTAR protocol functions - GCK . 72
4.5.3.0 General . 72
4.5.3.1 MS requests provision of GCK . 72
4.5.3.2 SwMI provides GCK to an individual MS . 74
4.5.3.3 SwMI provides GCK to a group of MSs . 75
4.5.3.4 SwMI rejects provision of GCK . 77
4.5.4 Cipher key association to group address . 78
4.5.4.0 General . 78
4.5.4.1 SCK association for DMO . 79
4.5.4.2 GCK association . 82
4.5.5 Notification of key change over the air . 84
4.5.5.0 General . 84
4.5.5.1 Change of DCK . 85
4.5.5.2 Change of CCK . 86
4.5.5.3 Change of GCK . 86
4.5.5.4 Change of SCK for TMO . 86
4.5.5.5 Change of SCK for DMO . 86
4.5.5.6 Synchronization of Cipher Key Change . 87
4.5.6 Security class change . 87
4.5.6.0 General . 87
4.5.6.1 Change of security class to security class 1 . 88
4.5.6.2 Change of security class to security class 2 . 88
4.5.6.3 Change of security class to security class 3 . 88
4.5.6.4 Change of security class to security class 3 with GCK . 88
4.5.7 Notification of key in use . 89
4.5.8 Notification of GCK Activation/Deactivation . 89
4.5.9 Deletion of SCK, GCK and GSKO . 89
4.5.10 Air Interface Key Status Enquiry . 91
4.5.11 Crypto management group . 93
4.5.12 OTAR retry mechanism . 94
4.5.13 OTAR protocol functions - GSKO . 95
4.5.13.0 General . 95
4.5.13.1 MS requests provision of GSKO . 95
4.5.13.2 SwMI provides GSKO to an MS . 96
4.5.13.3 SwMI rejects provision of GSKO . 96
4.5.14 OTAR protocol functions - interaction and queuing . 96
4.5.15 KSOv for OTAR operations in visited SwMI . 97
4.5.16 Transfer of AI cipher keys across the ISI . 100
5 Enable and disable mechanism . 100
5.0 General . 100
5.1 General relationships . 101
5.2 Enable/disable state transitions . 101
5.3 Mechanisms . 102
5.3.0 General . 102
5.3.1 Disable of MS equipment . 103
5.3.2 Disable of an subscription . 103
ETSI

---------------------- Page: 4 ----------------------
5 Final draft ETSI EN 300 392-7 V3.4.1 (2016-10)
5.3.3 Disable of subscription and equipment . 103
5.3.4 Enable an MS equipment . 103
5.3.5 Enable an MS subscription . 103
5.3.6 Enable an MS equipment and subscription . 103
5.4 Enable/disable protocol . 104
5.4.1 General case . 104
5.4.2 Status of cipher key material. 105
5.4.2.1 Permanently disabled state . 105
5.4.2.2 Temporarily disabled state . 105
5.4.3 Specific protocol exchanges . 106
5.4.3.0 General . 106
5.4.3.1 Disabling an MS with mutual authentication . 106
5.4.3.2 Enabling an MS with mutual authentication . 107
5.4.3.3 Enabling an MS with non-mutual authentication . 108
5.4.3.4 Disabling an MS with non-mutual authentication . 110
5.4.4 Enabling an MS without authentication . 111
5.4.5 Disabling an MS without authentication . 111
5.4.6 Rejection of enable or disable command . 111
5.4.6a Expiry of Enable/Disable protocol timer . 112
5.4.7 MM service primitives . 113
5.4.7.0 General . 113
5.4.7.1 TNMM-DISABLING primitive . 113
5.4.7.2 TNMM-ENABLING primitive . 113
6 Air Interface (AI) encryption . 113
6.1 General principles. 113
6.2 Security class . 114
6.2.a General . 114
6.2.0 Notification of security class . 115
6.2.0.0 General . 115
6.2.0.1 Security Class of Neighbouring Cells . 116
6.2.0.2 Identification of MS security capabilities . 116
6.2.1 Constraints on LA arising from cell class . 116
6.3 Key Stream Generator (KSG) . 116
6.3.0 General . 116
6.3.1 KSG numbering and selection . 117
6.3.2 Interface parameters . 117
6.3.2.1 Initial Value (IV) . 117
6.3.2.2 Cipher Key . 118
6.4 Encryption mechanism . 118
6.4.0 General . 118
6.4.1 Allocation of KSS to logical channels . 118
6.4.2 Allocation of KSS to logical channels with PDU association . 120
6.4.2.1 General . 120
6.4.2.2 KSS allocation on phase modulation channels . 121
6.4.2.3 KSS allocation on QAM channels . 122
6.4.2.3.0 General . 122
6.4.2.3.1 Fixed mapping . 122
6.4.2.3.2 Offset mapping . 123
6.4.3 Synchronization of data calls where data is multi-slot interleaved . 124
6.4.4 Recovery of stolen frames from interleaved data . 125
6.5 Use of cipher keys . 126
6.5.0 General . 126
6.5.1 Identification of encryption state of downlink MAC PDUs . 127
6.5.1.0 General . 127
6.5.1.1 Class 1 cells . 127
6.5.1.2 Class 2 cells . 128
6.5.1.3 Class 3 cells . 128
6.5.2 Identification of encryption state of uplink MAC PDUs . 128
6.6 Mobility procedures .
...

Draft ETSI EN 300 392-7 V3.4.0 (2016-04)






EUROPEAN STANDARD
Terrestrial Trunked Radio (TETRA);
Voice plus Data (V+D);
Part 7: Security

---------------------- Page: 1 ----------------------
2 Draft ETSI EN 300 392-7 V3.4.0 (2016-04)



Reference
REN/TETRA-06184
Keywords
security, TETRA, V+D
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - NAF 742 C
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° 7803/88

Important notice
The present document can be downloaded from:
http://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the
print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying
and microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© European Telecommunications Standards Institute 2016.
All rights reserved.

TM TM TM
DECT , PLUGTESTS , UMTS and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members.
TM
3GPP and LTE™ are Trade Marks of ETSI registered for the benefit of its Members and
of the 3GPP Organizational Partners.
GSM® and the GSM logo are Trade Marks registered and owned by the GSM Association.
ETSI

---------------------- Page: 2 ----------------------
3 Draft ETSI EN 300 392-7 V3.4.0 (2016-04)
Contents
Intellectual Property Rights . 11
Foreword . 11
Modal verbs terminology . 12
1 Scope . 13
2 References . 13
2.1 Normative references . 13
2.2 Informative references . 14
3 Definitions and abbreviations . 15
3.1 Definitions . 15
3.2 Abbreviations . 18
4 Air Interface authentication and key management mechanisms . 20
4.a General . 20
4.0 Security classes . 20
4.1 Air interface authentication mechanisms . 21
4.1.1 Overview . 21
4.1.1a Authentication and key management algorithms . 21
4.1.2 Authentication of an MS . 21
4.1.3 Authentication of the infrastructure . 22
4.1.4 Mutual authentication of MS and infrastructure . 23
4.1.5 The authentication key . 25
4.1.6 Equipment authentication . 26
4.1.6a Request for information related to an MS . 26
4.1.7 Authentication of an MS when migrated . 26
4.1.8 Authentication of the home SwMI when migrated . 27
4.1.9 Mutual Authentication of MS and infrastructure when migrated . 28
4.2 Air Interface key management mechanisms . 29
4.2.0 General . 29
4.2.1 The DCK . 29
4.2.2 The GCK . 30
4.2.2.0 General . 30
4.2.2.1 Session key modifier GCK0 . 31
4.2.3 The CCK . 32
4.2.4 The SCK . 33
4.2.4.0 General . 33
4.2.4.1 SCK association for DMO use . 35
4.2.4.1.0 General . 35
4.2.4.1.1 DMO SCK subset grouping . 35
4.2.5 The GSKO . 37
4.2.5.0 General . 37
4.2.5.1 SCK distribution to groups with OTAR . 38
4.2.5.2 GCK distribution to groups with OTAR . 38
4.2.5.3 Rules for MS response to group key distribution . 38
4.2.6 Encrypted Short Identity (ESI) mechanism . 39
4.2.7 Encryption Cipher Key . 39
4.2.8 Summary of AI key management mechanisms . 40
4.3 Service description and primitives . 42
4.3.1 Authentication primitives . 42
4.3.2 SCK transfer primitives . 42
4.3.3 GCK transfer primitives . 43
4.3.4 GSKO transfer primitives . 44
4.4 Authentication protocol . 45
4.4.1 Authentication state transitions . 45
4.4.2 Authentication protocol sequences and operations . 48
4.4.2.0 General . 48
4.4.2.1 MSCs for authentication . 49
ETSI

---------------------- Page: 3 ----------------------
4 Draft ETSI EN 300 392-7 V3.4.0 (2016-04)
4.4.2.2 MSCs for authentication and security type-3 elements . 55
4.4.2.3 Control of authentication timer T354 at MS . 58
4.4a Information request protocol . 59
4.5 OTAR protocols . 62
4.5.1 CCK delivery - protocol functions . 62
4.5.1.0 General . 62
4.5.1.1 SwMI-initiated CCK provision . 63
4.5.1.2 MS-initiated CCK provision with U-OTAR CCK demand. 64
4.5.1.3 MS-initiated CCK provision with announced cell reselection . 64
4.5.2 OTAR protocol functions - SCK . 65
4.5.2.0 General . 65
4.5.2.1 MS requests provision of SCK(s) . 66
4.5.2.2 SwMI provides SCK(s) to individual MS . 67
4.5.2.3 SwMI provides SCK(s) to group of MSs . 68
4.5.2.4 SwMI rejects provision of SCK . 70
4.5.3 OTAR protocol functions - GCK . 71
4.5.3.0 General . 71
4.5.3.1 MS requests provision of GCK . 71
4.5.3.2 SwMI provides GCK to an individual MS . 73
4.5.3.3 SwMI provides GCK to a group of MSs . 74
4.5.3.4 SwMI rejects provision of GCK . 76
4.5.4 Cipher key association to group address . 77
4.5.4.0 General . 77
4.5.4.1 SCK association for DMO . 78
4.5.4.2 GCK association . 81
4.5.5 Notification of key change over the air . 83
4.5.5.0 General . 83
4.5.5.1 Change of DCK . 84
4.5.5.2 Change of CCK . 85
4.5.5.3 Change of GCK . 85
4.5.5.4 Change of SCK for TMO . 85
4.5.5.5 Change of SCK for DMO . 85
4.5.5.6 Synchronization of Cipher Key Change . 86
4.5.6 Security class change . 86
4.5.6.0 General . 86
4.5.6.1 Change of security class to security class 1 . 87
4.5.6.2 Change of security class to security class 2 . 87
4.5.6.3 Change of security class to security class 3 . 87
4.5.6.4 Change of security class to security class 3 with GCK . 87
4.5.7 Notification of key in use . 88
4.5.8 Notification of GCK Activation/Deactivation . 88
4.5.9 Deletion of SCK, GCK and GSKO . 88
4.5.10 Air Interface Key Status Enquiry . 90
4.5.11 Crypto management group . 92
4.5.12 OTAR retry mechanism . 93
4.5.13 OTAR protocol functions - GSKO . 94
4.5.13.0 General . 94
4.5.13.1 MS requests provision of GSKO . 94
4.5.13.2 SwMI provides GSKO to an MS . 95
4.5.13.3 SwMI rejects provision of GSKO . 95
4.5.14 OTAR protocol functions - interaction and queuing . 95
4.5.15 KSOv for OTAR operations in visited SwMI . 96
4.5.16 Transfer of AI cipher keys across the ISI . 99
5 Enable and disable mechanism . 99
5.0 General . 99
5.1 General relationships . 100
5.2 Enable/disable state transitions . 100
5.3 Mechanisms . 101
5.3.0 General . 101
5.3.1 Disable of MS equipment . 102
5.3.2 Disable of an subscription . 102
ETSI

---------------------- Page: 4 ----------------------
5 Draft ETSI EN 300 392-7 V3.4.0 (2016-04)
5.3.3 Disable of subscription and equipment . 102
5.3.4 Enable an MS equipment . 102
5.3.5 Enable an MS subscription . 102
5.3.6 Enable an MS equipment and subscription . 102
5.4 Enable/disable protocol . 103
5.4.1 General case . 103
5.4.2 Status of cipher key material. 104
5.4.2.1 Permanently disabled state . 104
5.4.2.2 Temporarily disabled state . 104
5.4.3 Specific protocol exchanges . 105
5.4.3.0 General . 105
5.4.3.1 Disabling an MS with mutual authentication . 105
5.4.3.2 Enabling an MS with mutual authentication . 106
5.4.3.3 Enabling an MS with non-mutual authentication . 107
5.4.3.4 Disabling an MS with non-mutual authentication . 109
5.4.4 Enabling an MS without authentication . 109
5.4.5 Disabling an MS without authentication . 110
5.4.6 Rejection of enable or disable command . 110
5.4.6a Expiry of Enable/Disable protocol timer . 111
5.4.7 MM service primitives . 111
5.4.7.0 General . 111
5.4.7.1 TNMM-DISABLING primitive . 111
5.4.7.2 TNMM-ENABLING primitive . 112
6 Air Interface (AI) encryption . 112
6.1 General principles. 112
6.2 Security class . 113
6.2.a General . 113
6.2.0 Notification of security class . 114
6.2.0.0 General . 114
6.2.0.1 Security Class of Neighbouring Cells . 115
6.2.0.2 Identification of MS security capabilities . 115
6.2.1 Constraints on LA arising from cell class . 115
6.3 Key Stream Generator (KSG) . 115
6.3.0 General . 115
6.3.1 KSG numbering and selection . 116
6.3.2 Interface parameters . 116
6.3.2.1 Initial Value (IV) . 116
6.3.2.2 Cipher Key . 117
6.4 Encryption mechanism . 117
6.4.0 General . 117
6.4.1 Allocation of KSS to logical channels . 117
6.4.2 Allocation of KSS to logical channels with PDU association . 119
6.4.2.1 General . 119
6.4.2.2 KSS allocation on phase modulation channels . 120
6.4.2.3 KSS allocation on QAM channels . 121
6.4.2.3.0 General . 121
6.4.2.3.1 Fixed mapping . 121
6.4.2.3.2 Offset mapping . 122
6.4.3 Synchronization of data calls where data is multi-slot interleaved . 123
6.4.4 Recovery of stolen frames from interleaved data . 124
6.5 Use of cipher keys . 125
6.5.0 General . 125
6.5.1 Identification of encryption state of downlink MAC PDUs . 126
6.5.1.0 General . 126
6.5.1.1 Class 1 cells . 126
6.5.1.2 Class 2 cells . 127
6.5.1.3 Class 3 cells . 127
6.5.2 Identification of encryption state of uplink MAC PDUs . 127
6.6 Mobility procedures . 128
6.6.1
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST EN 303 758 V1.1.1:2021(Main)
TETRA radio equipment using non-constant envelope modulation operating in a channel bandwidth of 25 kHz, 50 kHz, 100 kHz or 150 kHz - Harmonised Standard for access to radio spectrum
ETSI EN 303 758 V1.1.1 (2021-07)

The present document specifies the technical requirements and methods of measurements for TETRA radio transmitters
and receivers used in stations and technical requirements and methods of measurements for TMO repeater in the Private
Mobile Radio (PMR) service.
It applies to use in the land mobile service, operating on radio frequencies between 137 MHz and 1 GHz, with channel
separations of 25 kHz, 50 kHz, 100 kHz and 150 kHz.
It applies to equipment for continuous and/or discontinuous transmission of data and/or digital speech.
The equipment (base station and mobile station) comprises a transmitter and associated encoder and modulator and/or a
receiver and associated demodulator and decoder.
The types of equipment covered by the present document are as follows:
• base station (equipment fitted with an antenna connector, intended for use in a fixed location);
• mobile station (equipment fitted with an antenna connector, normally used in a vehicle or as a transportable);
• TMO Repeater; and
• those hand portable stations:
a) fitted with an antenna connector; or
b) without an external antenna connector (integral antenna equipment), but fitted with a permanent internal
or a temporary internal 50 Ω Radio Frequency (RF) connector which allows access to the transmitter
output and the receiver input.
Hand portable equipment without an external or internal RF connector and without the possibility of having a temporary
internal 50 Ω RF connector is not covered by the present document.
NOTE: The relationship between the present document and essential requirements of article 3.2 of Directive
2014/53/EU [i.2] is given in annex A.

  • Standard
    78 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    78 pages
    English language
    sale 15% off
  • Standard
    77 pages
    English language
    sale 15% off
  • Draft
    77 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-11 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 11: General design, SIP/IP
ETSI EN 300 392-3-11 V1.2.1 (2020-04)

The present document defines the transport of Inter System Interface (ISI) PDUs using the Session Initiation Protocol (SIP) as transport layer and the Session Description Protocol (SDP) as media control protocol. It specifies:
• SIP methods and header fields used for transport of ISI PDUs; and
• the SDP content; and
• use the ISI Mediation Function which coordinates the communication between TETRA systems.
The ISI Mediation Function specification applies to an IP based TETRA Switching and Management Infrastructure (SwMI) which supports the ISI.

  • Standard
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 15% off
  • Draft
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-10 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 10: General design, PSS1 over E.1
ETSI EN 300 392-3-10 V1.2.1 (2020-04)

The present document defines the transport of the Inter-System Interface (ISI) using PSS1 as transport layer. It
specifies:
• the PSS1 signalling used for transport of ISI APDUs; and
• the general protocol mechanism, called ISI Mediation Function which coordinates the communication between
TETRA systems.
The ISI Mediation Function applies to any TETRA Switching and Management Infrastructure (SwMI) which supports
the ISI.

  • Standard
    45 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    45 pages
    English language
    sale 15% off
  • Standard
    45 pages
    English language
    sale 15% off
  • Draft
    45 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-1 V1.6.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 1: General network design
ETSI EN 300 392-1 V1.6.1 (2020-04)

The present document defines addressing for Terrestrial Trunked Radio system (TETRA) supporting Voice plus Data
(V+D). It also gives background information of the air interface, the interworking between TETRA systems and to other
systems via gateways, the terminal equipment interface on the Mobile Station (MS), the security aspects in TETRA
networks, the management services offered to the operator, the performance objectives, and the supplementary services
that come in addition to the basic and tele-services used as a basis for TETRA standardization.
The present document defines and specifies the TETRA addressing and identities and their organization in groups
corresponding to the different functions.
It establishes the background of the TETRA general network design for standardization purposes:
• it gives information about the circuit mode and packet mode reference points for the MS and switching and
management infrastructure;
• it gives information about a model of the air interface protocol stack, different functions of layers and
sublayers;
• it gives information about the functions provided by the circuit mode teleservices used for speech and basic
services used for data transfer;
• it gives information about the functions related to the management of the users' mobility across networks and
inside a network including roaming and migration;
• it gives information about the functions related to the transport of short data messages as a service specific to
TETRA;
• it gives information about the functions related to the support of packet data service in a way specific to
TETRA;
• it gives information about the supplementary services that mainly extend the capabilities of the circuit mode
basic and teleservices;
• it gives information about the various possibilities of individual circuit mode call scenarios and provides
guidance on priority concepts for packet data and circuit mode services and on the service quality.
NOTE: This part of the multi-part document may, by its nature as a general design statement, require updating
when later parts of the multi-part document are completed and maintained (in order to avoid any
non-alignment). If a discrepancy occurs between this part and any other part of the multi-part document,
then the other part will take precedence. The present document may be maintained mainly on those
clauses, which are referred from other parts or standards.

  • Standard
    182 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    182 pages
    English language
    sale 15% off
  • Standard
    182 pages
    English language
    sale 15% off
  • Draft
    182 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-9 V1.7.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 9: General requirements for supplementary services
ETSI EN 300 392-9 V1.7.1 (2020-04)

The present document is applicable to any TETRA terminal equipment (Mobile Station (MS)) and to any TETRA network (Switching and Management Infrastructure (SwMI)) which support at least one TETRA Supplementary Service (SS). In addition, its routeing requirements of supplementary service information are applicable to any TETRA
network with a Voice plus Data (V+D) Inter-System Interface (ISI) to another TETRA network which supports at least one TETRA SS.

  • Standard
    46 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    46 pages
    English language
    sale 15% off
  • Standard
    46 pages
    English language
    sale 15% off
  • Draft
    46 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-5 V2.7.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) and Direct Mode Operation (DMO) - Part 5: Peripheral Equipment Interface (PEI)
ETSI EN 300 392-5 V2.7.1 (2020-04)

The present document specifies the functional and technical aspects of TETRA Peripheral Equipment Interface (PEI) that is the interface between a Terminal Equipment type 2 (TE2) and a Mobile Termination type 2 (MT2) at reference point RT.

  • Standard
    320 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    320 pages
    English language
    sale 15% off
  • Standard
    319 pages
    English language
    sale 15% off
  • Draft
    319 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-14 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 14: Transport layer independent Additional Network Feature Short Data Service (ANF-ISISDS)
ETSI EN 300 392-3-14 V1.2.1 (2020-04)

The TETRA V+D interworking - at the Inter-System Interface (ISI) part defines the interworking between TETRA networks over the corresponding interface: the Inter-System Interface (ISI). It comprises the following sub-parts:
• Transport layer independent General design [3];
• General Design, PSS1 over E.1 [i.2];
• General Design, SIP/IP [i.3];
• Transport layer independent Additional Network Feature - ISI Individual Call (ANF-ISIIC) [i.4];
• Transport layer independent Additional Network Feature - ISI Group Call (ANF-ISIGC) [2];
• Transport layer independent Additional Network Feature - ISI Short Data service (ANF-ISISDS) (the present document);
• Transport layer independent Additional Network Feature - ISI Mobility Management (ANF-ISIMM) [i.5];
• Generic Speech Format Implementation [i.6].
The present document specifies the Additional Network Function (ANF) - Inter-System Interface (ISI) Short Data service (ANF-ISISDS) which is part of the Interworking at the Inter-System Interface (ISI) of the Terrestrial Trunked Radio system (TETRA) supporting Voice and Data (V+D). This service comprises of:
• TETRA short message transmission over the ISI to individual and group addresses;
• TETRA pre-defined status message transmission over the ISI to individual and group addresses.
ANF-ISISDS enables short data and status messages to be transferred between a user registered in one TETRA network to another user registered in another TETRA network, operating at the ISI of both SwMIs. Like all other Additional Network Feature (ANF) specifications, those of ANF-ISISDS are produced in three stages, according to the method described in Recommendation ITU-T I.130 [4]. The present document contains the stage 1 and 2 descriptions of ANF-ISIIC, and stage 3 description. The stage 1 description specifies the ANF as seen by its users, which are essentially the CMCE SDS entities in both TETRA networks. The stage 2 description identifies the functional entities involved in the ANF and the information flows between them. The stage 3 description of ANF-ISISDS specifies its protocol.

  • Standard
    27 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    27 pages
    English language
    sale 15% off
  • Standard
    29 pages
    English language
    sale 15% off
  • Draft
    29 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-13 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 13: Transport layer independent Additional Network Feature Group Call (ANF-ISIGC)
ETSI EN 300 392-3-13 V1.2.1 (2020-04)

The present document defines the group call communication of interworking at the Inter-System Interface (ISI) for Terrestrial Trunked Radio system (TETRA) supporting Voice plus Data (V+D). The TETRA V+D interworking - basic operation part defines the interworking between TETRA networks over the corresponding interface: the Inter-System Interface (ISI). It comprises the following sub-parts:
• Transport Layer Independent Specification ISI general design [2];
• General Design, PSS1 over E.1 [i.7];
• General Design, SIP/IP [i.8];
• Transport Layer Independent Additional Network Feature - ISI Individual Call (ANF-ISIIC) [3];
• Transport Layer Independent Additional Network Feature Group Call (ANF-ISIGC) (the present document);
• Transport Layer Independent Additional Network Feature Short Data service (ANF-ISISD) [i.9];
• Transport Layer Independent Additional Network Feature Mobility Management (ANF-ISIMM) [4];
• Generic Speech Format Implementation [i.10].
The present document is the ANF-ISIGC sub-part 3-13. In analogy with Recommendation ITU-T I.130 [i.3], the stage one, stage two and stage three of the three level structure is used to describe the TETRA Inter-System Interface services as provided by European Private or Public Trunked Radio System operators:
• Stage 1, is an overall service description, from the service subscriber's and user's standpoint;
• Stage 2, identifies the functional capabilities and information flows needed to support the services described in stage 1; and
NOTE: The information flows in stage 2 have been drawn as Message Sequence Charts (MSC).
• Stage 3, defines the signalling system protocols and functions needed to implement the services described in stage 1.
The present document details the Interworking Basic Operation of the Terrestrial Trunked Radio system (TETRA). Specifically the present document details the stage 1 aspects (overall service description) of the ANF-ISIGC as seen from the TETRA Switching and Maintenance Infrastructure point of view at the Inter-System Interface (ISI). It details the stage 2 aspects (functional partitioning) of ANF-ISIGC which includes the identification of the functional entities and the flows between them, and finally it details the stage 3 signalling protocols for the ANF-ISIGC services, i.e. the protocols at the relevant reference points between the functional entities defined in stage 2. The ANF-ISIGC service specifies:
• TETRA Group Call Clear Speech over the ISI, acknowledged and unacknowledged;
• TETRA Group Call End-to-End Encrypted Speech over the ISI;
• TETRA Group Call Circuit Mode one slot data over the ISI;
• TETRA Group Call Circuit Mode one slot End-to-End Encrypted data over the ISI;
• TETRA Group Call Circuit Mode N × 2,4 kbit/s, N × 4,8 kbit/s or N × 7,2 kbit/s data, with N = 2, 3 or 4;
• TETRA Group Call Circuit Mode N × 2,4 kbit/s N × 4,8 kbit/s or N × 7,2 kbit/s End-to-End Encrypted data,
with N = 2, 3 or 4.

  • Standard
    191 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    191 pages
    English language
    sale 15% off
  • Standard
    191 pages
    English language
    sale 15% off
  • Draft
    191 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-15 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 15: Transport layer independent Additional Network Feature, Mobility Management (ANF-ISIMM)
ETSI EN 300 392-3-15 V1.2.1 (2020-04)

The present document defines the mobility management of interworking at the Inter-System Interface (ISI) for Terrestrial Trunked Radio (TETRA) system supporting Voice plus Data (V+D). The TETRA V+D Inter-working - basic operation part defines the Inter-System Interface (ISI) between the SwMIs as specified in the following sub-parts:
• Transport layer independent, General design [i.5].
• General design, PSS1 over E.1 [13].
• General design, SIP/IP [14].
• Transport layer independent Additional Network Feature Individual Call (ANF-ISIIC) [9].
• Transport layer independent Additional Network Feature Group Call (ANF-ISIGC) [10].
• Transport layer independent Additional Network Feature Short Data Service (ANF-ISISDS) [i.2].
• Transport layer independent Additional Network Feature, Mobility Management (ANF-ISIMM) (the present document).
• Generic Speech Format Implementation [i.4].
NOTE: These TSs are produced in analogy with the Recommendation ITU-T I.130 [4].
The present document contains the ANF-ISIMM part. The ANF-ISIMM part defines additional Mobility Management (MM) services to the SwMIs. If supported, the ANF-ISIMM services complement the intra-SwMI-MM, authentication and key management services. In support of these, the ANF-ISIMM enables the invocation and operation of these services between the SwMIs over the ISI. Thus, ANF-ISIMM offers the following services:
• Migration and restricted migration.
• Individual subscriber and group profile update.
• Supplementary Service profile update.
• De-registration.
• Group attachment/detachment.
• Linked group attachment/detachment.
• Individual subscriber and group database recovery.
• Authentication, one-directionally or mutually between the individual subscriber and the home SwMI.
• Over-The-Air-Re-keying (OTAR) for Static Cipher Key (SCK) generation and SCK delivery. For the following service are only included in the stage 1 descriptions:
• Group Linking/unlinking.
• GTSI attachment/detachment to a linking participating group from another SwMI.

  • Standard
    379 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    379 pages
    English language
    sale 15% off
  • Standard
    387 pages
    English language
    sale 15% off
  • Draft
    387 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 300 392-3-12 V1.2.1:2020(Main)
Terrestrial Trunked Radio (TETRA) - Voice plus Data (V+D) - Part 3: Interworking at the Inter-System Interface (ISI) - Sub-part 12: Transport layer independent Additional Network Feature Individual Call (ANF-ISIIC)
ETSI EN 300 392-3-12 V1.2.1 (2020-04)

The present document defines the Terrestrial Trunked Radio (TETRA) system supporting Voice plus Data (V+D). It specifies:
• the interworking of individual calls between TETRA networks;
• the supplementary services interaction with individual calls between TETRA networks.
The TETRA V+D interworking - basic operation part defines the interworking between TETRA networks over the corresponding interface: the Inter-System Interface (ISI). It comprises the following sub-parts:
• Transport layer independent General design [2];
• General Design, PSS1 over E.1 [3];
• General Design, SIP/IP [4];
• Transport layer independent Additional Network Feature - ISI Individual Call (ANF-ISIIC) (the present document);
• Transport layer independent Additional Network Feature - ISI Group Call (ANF-ISIGC) [5];
• Transport layer independent Additional Network Feature - ISI Short Data service (ANF-ISISDS) [i.8];
• Transport layer independent Additional Network Feature - ISI Mobility Management (ANF-ISIMM) [6];
• Generic Speech Format Implementation [i.7].
The present document is the ANF-ISIIC sub-part. Like all other Additional Network Feature (ANF) specifications, those of ANF-ISIIC are produced in three stages, according to the method described in Recommendation ITU-T I.130 [i.4]. The present document contains the stage 1 and 2 descriptions of ANF-ISIIC, and stage 3 description. The stage 1 description specifies the ANF as seen by its users, which are essentially the individual call control entities in both TETRA networks. The stage 2 description identifies the functional entities involved in the ANF and the information flows between them. And the stage 3 description of ANF-ISIIC specifies its protocol. NOTE 1: According to Recommendation ITU-T I.130 [i.4], the stage 3 description of a bearer or tele-service addresses the network implementation aspects. Consequently, it comprises two steps: the specifications of all protocols at the various reference points involved in any of the service procedures (notably the service operation) are the first step of the stage 3 description, and the specifications of the functions of the corresponding network entities are its second step. NOTE 2: The SDL diagrams have not been provided since they can be derived from the specification of the functional entity actions in the stage 2 description. The present document applies to TETRA networks which support inter-TETRA individual calls. More specifically, it applies to their Circuit Mode Control Entities (CMCE), as defined in clause 14.2 of ETSI EN 300 392-2 [1], and to their ANF-ISIIC entities defined in the stage 2 description. The relation between the ANF-ISIIC and the transport layer protocol is described in the General Design documents [2], [3] and [4].

  • Standard
    117 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    117 pages
    English language
    sale 15% off
  • Standard
    117 pages
    English language
    sale 15% off
  • Draft
    117 pages
    English language
    sale 10% off
    e-Library read for
    1 day