SIST EN 300 920 V6.0.1:2003

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.Digital cellular telecommunications system (Phase 2+) (GSM); Security aspects (GSM 02.09 version 6.0.1 Release 1997)33.070.50Globalni sistem za mobilno telekomunikacijo (GSM)Global System for Mobile Communication (GSM)ICS:Ta slovenski standard je istoveten z:EN 300 920 Version 6.0.1SIST EN 300 920 V6.0.1:2003en01-december-2003SIST EN 300 920 V6.0.1:2003SLOVENSKI
STANDARD



SIST EN 300 920 V6.0.1:2003



EN 300 920 V6.0.1 (1999-05)European Standard (Telecommunications series)Digital cellular telecommunications system (Phase 2+);Security aspects(GSM 02.09 version 6.0.1 Release 1997)GLOBAL SYSTEM
FOR MOBILE COMMUNICATIONSRSIST EN 300 920 V6.0.1:2003



ETSIEN 300 920 V6.0.1 (1999-05)2GSM 02.09 version 6.0.1 Release 1997ReferenceDEN/SMG-010209Q6 (8io0300o.PDF)KeywordsDigital cellular telecommunications system,Global System for Mobile communications (GSM)ETSIPostal addressF-06921 Sophia Antipolis Cedex - FRANCEOffice address650 Route des Lucioles - Sophia AntipolisValbonne - FRANCETel.: +33 4 92 94 42 00
Fax: +33 4 93 65 47 16Siret N° 348 623 562 00017 - NAF 742 CAssociation à but non lucratif enregistrée à laSous-Préfecture de Grasse (06) N° 7803/88Internetsecretariat@etsi.frIndividual copies of this ETSI deliverablecan be downloaded fromhttp://www.etsi.orgCopyright NotificationNo part may be reproduced except as authorized by written permission.The copyright and the foregoing restriction extend to reproduction in all media.© European Telecommunications Standards Institute 1999.All rights reserved.SIST EN 300 920 V6.0.1:2003



ETSIEN 300 920 V6.0.1 (1999-05)3GSM 02.09 version 6.0.1 Release 1997ContentsIntellectual Property Rights.4Foreword.41Scope.51.1Normative references.51.2Abbreviations.52General.53Security features provided in a GSM PLMN.63.1Subscriber identity confidentiality.63.1.1Definition.63.1.2Purpose.63.1.3Functional requirements.73.2Subscriber identity authentication.73.2.1Definition.73.2.2Purpose.73.2.3Functional requirements.73.2.4Authentication during a malfunction of the network.73.3User data confidentiality on physical connections (Voice and Non-voice).83.3.1Definition.83.3.2Purpose.83.3.3Functional requirements.83.4Connectionless user data confidentiality.83.4.1Definition.83.4.2Purpose.83.4.3Functional requirements.93.5Signalling information element confidentiality.93.5.1Definition.93.5.2Purpose.93.5.3Functional requirements.9Annex A (informative):Change history.10History.11SIST EN 300 920 V6.0.1:2003



ETSIEN 300 920 V6.0.1 (1999-05)4GSM 02.09 version 6.0.1 Release 1997Intellectual Property RightsIPRs essential or potentially essential to the present document may have been declared to ETSI. The informationpertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be foundin SR 000 314: "Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respectof ETSI standards", which is available free of charge from the ETSI Secretariat. Latest updates are available on theETSI Web server (http://www.etsi.org/ipr).Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guaranteecan be given as to the existence of other IPRs not referenced in SR 000 314 (or the updates on the ETSI Web server)which are, or may be, or may become, essential to the present document.ForewordThis European Standard (Telecommunications series) has been produced by the Special Mobile Group (SMG) of theEuropean Telecommunications Standards Institute (ETSI).This EN defines security features within the digital cellular telecommunications system.The contents of this standard may be subject to continuing work within SMG and may change following formal SMGapproval. Should SMG modify the contents of this standard it will then be re-submitted for formal approval proceduresby ETSI with an identifying change of release date and an increase in version number as follows:Version 6.x.ywhere:6GSM Phase 2+ Release 1997xthe second digit is incremented for changes of substance, i.e. technical enhancements, corrections, updates,etc.;ythe third digit is incremented when editorial only changes have been incorporated in the specification.Proposed national transposition datesDate of adoption of this EN:28 May 1999Date of latest announcement of this EN (doa):31 August 1999Date of latest publication of new National Standardor endorsement of this EN (dop/e):29 February 2000Date of withdrawal of any conflicting National Standard (dow):29 February 2000SIST EN 300 920 V6.0.1:2003



ETSIEN 300 920 V6.0.1 (1999-05)5GSM 02.09 version 6.0.1 Release 19971ScopeBearer and Teleservices, as respectively defined in GSM 02.02 and GSM 02.03, are the objects which the GSM PLMNoperators offer to their customers. Besides these basic telecommunications services, features which aim at up-gradingthese basic services need also to be offered. Due to the use of radiocommunications in a PLMN, which are of a specialnature compared to classical distribution transmission techniques used in the fixed networks, such a category of featuresis related to security aspects.In a GSM PLMN, both the users and the network operator have to be protected against undesirable intrusion of thirdparties. However, measures should be provided for in order to insure maximum protection of the rights of theindividuals concerns. As a consequence, a security feature is either a supplementary service to Tele or Bearer services,which can be selected by the subscriber, or a network function involved in the provision of one or severaltelecommunication services.The purpose of this EN is to define the security features which are to be available in a GSM PLMN, together with theassociated levels of protection. This EN is only concerned with those security features which aim at the up-grading ofthe security in a GSM PLMN. In particular, end-to-end security is outside the scope of this EN.The implementation aspects of security features are described in GSM 03.20.1.1Normative referencesThe following documents contain provisions which, through reference in this text, constitute provisions of the presentdocument.-References are either specific (identified by date of publication, edition number, version number, etc.) ornon-specific.-For a specific reference, subsequent revisions do not apply.-For a non-specific reference, the latest version applies.-A non-specific reference to an ETS shall also be taken to refer to later versions published as an EN with the samenumber.[1]GSM 01.04: "Digital cellular telecommunications system (Phase 2+); Abbreviations andacronyms".[2]GSM 02.02: "Digital cellular telecommunications system (Phase 2+); Bearer Services (BS)supported by a GSM Public Land Mobile Network (PLMN)".[3]GSM 02.03: "Digital cellular telecommunications system (Phase 2+); Teleservices supported by aGSM Public Land Mobile Network (PLMN)".[4]GSM 03.20: "Digital cellular telecommunications system (Phase 2+); Security related networkfunctions".[5]GSM 11.11: "Digital cellular telecommunications system (Phase 2+); Specification of theSubscriber Identity Module - Mobile Equipment (SIM - ME) interface".1.2AbbreviationsAbbreviations used in this EN are listed in GSM 01.04.2GeneralThe use of radiocom
...