行业研究公司研究宏观策略财报招股书会议纪要 seedance2.0 低空经济 DeepSeek AIGC 大模型

PQ.05 5G漫游用例的后量子密码学

文化传媒2025-07-04GSMA七***

AI智能总结

1. 引言

该文档探讨了后量子密码学（PQC）对电信领域的影响，重点关注4G和5G漫游场景。文档扩展了PQ.03 v2，分析了针对漫游架构和接口的威胁、影响和缓解机制。

2. 范围

文档涵盖了保护用户设备和运营商网络免受密码学相关量子计算机（CRQC）攻击的机制，这些机制在用户设备在归属网络（HPLMN）和访客网络（VPLMN）之间漫游并连接到访客网络时发挥作用。漫游架构考虑了安全边缘保护代理（SEPP）负责保护运营商核心网络免受针对（或源自）互联接口（N32-c、N32-f）的攻击的场景。接口可以使用以下方式之一进行保护：

直接TLS：当两个运营商之间没有中间人（例如IPX）时使用。
N32互联安全协议（PRINS）：当运营商之间存在漫游中间人（例如IPX）时使用。

3. 标准和用例

文档介绍了3GPP和GSMA的相关标准，包括：

3GPP标准：TS 23.501（系统架构）、TS 33.501（安全架构）、TS 33.210（网络域安全）、TS 33.310（认证框架）
GSMA建议和指南：NG.113（5G漫游指南）、FS.36（5G互联安全）、FS.40（5G安全指南）

文档还详细介绍了5G和4G漫游架构，包括直接TLS、PRINS和互联用户平面安全（IPUPS）等机制。

4. 敏感数据发现

文档列出了漫游接口中包含的敏感数据，包括：

静态数据：用户数据、漫游协议和政策、私钥、证书链、会话密钥等。
动态数据：用户设备身份、位置信息、密钥材料、认证材料、授权令牌等。

5. 密码学清单

文档列出了漫游接口中使用的密码学套件，包括：

TLS 1.3：ECDHE_ECDSA_with_AES_128_GCM_SHA256、DHE_RSA_with_AES_128_GCM_SHA256
数字签名：ECDSA_SEPCP384r1_SHA384、RSA_PSS_RSAE、secp2256r1、secp384r1

6. 迁移策略分析和依赖关系

文档分析了迁移策略，包括：

标准：3GPP标准、PKI和证书管理、TLS 1.3、IKEv2 / IPSec、混合密码学
法规和漫游合作伙伴的迁移策略：国家指南、供应商、运营商、第三方（例如IPX提供者）、执法机构、性能、PQC迁移甘特图、PQC迁移流程描述、与内部程序的协同、与外部程序的协同

7. 研究结论

文档强调了PQC在保护漫游接口免受CRQC攻击的重要性，并提出了迁移策略和协同方案。文档建议优先使用ML-KEM作为TLS 1.3中的密钥封装机制，并逐步将PKI和证书迁移到PQC解决方案。

Security Classification:Non-confidential Access to and distribution of this document is restricted to the personspermitted by the securityclassification. This document is subject tocopyright protection. This document is to be used only for the purposes for which it has been supplied and information contained in it must not bedisclosed or in any other way made available, in whole or in part,to persons other than thosepermitted under the securityclassification withoutthe prior written approval of the Association. Copyright Notice Copyright ©2025GSM Association Disclaimer The GSM Association (“Association”) makes no representation, warranty or undertaking (express or implied) with respect to anddoes not acceptany responsibility for, and hereby disclaims liability for the accuracy or completeness or timeliness of the information contained in this document.The information contained in this document may be subject to change without prior notice. Compliance Notice The information contain herein is in full compliance with the GSM Association’s antitrust compliance policy. GSM AssociationNon-confidentialPQ.05Official DocumentPost Quantum Cryptography for 5G Roaming use case Table of Contents 1Introduction 1.1Overview1.2Scope1.3Abbreviations.1.4References 4446 2Executive Summary2.1Migration Plan2.2Migration Prioritization 3.13GPP Standards103.2GSMA Recommendations & Guidelines10 4Roaming Use-cases114.15G Roaming Architecture114.1.1Direct TLS114.1.2Protocol for N32 Interconnect Security (PRINS)114.1.3Inter-PLMN User Plane Security124.24G Roaming12VoNR / VoLTE Roaming13 5Scope155.1Sensitive Data Discovery155.1.15G Roaming155.1.24G Roaming16VoNR / VoLTE Roaming165.2Cryptographic Inventory175.3Threats and Attacks against Roaming Interfaces17 6Migration Strategy Analysis and Dependencies 6.1Standards196.1.1Public Key Infrastructure & Certificate Management (Not just a QSCissue)196.1.2TLS 1.3206.1.3IKEv2 / IPSec206.1.4Hybrid Cryptography206.2Regulations & Migration Strategy with Roaming Partners206.2.1National Guidelines: Regulation (Intra-PLMN) and Inter-PLMN206.2.2Vendors206.2.3Operators216.2.43rd-parties (e.g. IPX providers)216.2.5LEAs216.2.6Performance216.2.7Gantt Chart for PQC Migration226.2.8PQC Migration Process Description226.2.9Synergy with Internal Programs23 GSM AssociationNon-confidentialPQ.05Official DocumentPost Quantum Cryptography for 5G Roaming use case 6.2.10Synergy with External Programs23A.1Document History24A.2Other Information24 GSM AssociationNon-confidentialPQ.05Official DocumentPost Quantum Cryptography for 5G Roaming use case 1Introduction The GSMA PQTN Task Force has published a series of documents about the impact of PostQuantum Cryptography (PQC) on telecoms. This document is an extension ofPQ.03 v2-Quantum Safe User Cases and Migration [1]and address 4G and 5Gtheroaming. 1.1Overview 3GPP and GSMAhavedevelopeda standardisedroaming architecture, specifications andrequirements for use-cases wherea UE roams fromitsHome PLMN (HPLMN) to a VisitedPLMN (VPLMN) and vice-versa. This document provides an overview of threats, impacts andmitigation mechanisms against a Cryptographically Relevant Quantum Computer (CRQC)targeting the roaming architecture anditsinterfaces. 1.2Scope This document covers mechanisms that may be employed to protect UEs and operatornetworks fromaCRQC when a UE roams between HPLMN and VPLMN and connects to thevisitor network. The roaming architecture considers the scenarios where a Security EdgeProtection Proxy (SEPP) is responsible for protecting the operator’s core network from attackstargeting(ororiginating from)the inter-connect interfaces (N32-c, N32-f). The interfaces maybe secured using either: 1.Direct TLS between SEPPs2.PRotocol for N32 INterconnect Security (PRINS) Diameter inter-connect securityis included inthe analysis:when a 5G UE connects to a 4Groaming network and vice-versa. 1.3Abbreviations. 1.4References GSM AssociationNon-confidentialPQ.05Official DocumentPost Quantum Cryptography for 5G Roaming use case 2Executive Summary 2.1Migration Plan A threat actor may use aCRQCwhen available, to decrypt messages transported betweenmobile operators when a UE roams. The attacker may be an un-authorized Man-in-the-Middle(MITM) ora compromisedentity with access to the roaming intermediaries thatcanharvestthemessages(e.g.IPX providers).Since the messages carry subscriber information(including session keys, profile, call data, CDRs, etc.)data leakagemay impact the privacy ofsubscribers.Internal network function deployment and identifiers may be exposed toattackers, which can be used to perform secondary attacks (e.g. DoS).Networks shouldprotect the roaming interfaces using PQC-compliant key encapsulation mechanisms (e.g. ML-KEM[15]) in order that the interfaces remain protected both from classical as well as fromCRQC. Impersonation, spoofing and tampering attacks on the roaming interface may cause servicedegradation, stealing of services an

点击免费查看完整报告