7 Security
22.2623GPPMessage service within the 5G System (5GS)Release 17Stage 1TS
7.1 Description
The messages of thing-to-thing or person-to-thing can be critical, e.g., a message for remote control may trigger actions of a device. To protect an IoT device from malicious attack, only authorized UEs can send messages to this device. In addition, the content of messages need to be integrity and confidentiality protected.
The IoT devices may be battery-powered, so the security mechanism for MSGin5G needs to be light weight.
7.2 Requirements
[R-7.2-001] The MSGin5G Service shall support a mechanism for the operator to configure the allow-list of UEs that are authorized to send messages to a specific UE. The MSGin5G Service shall be able to block messages from non-authorized UEs.
[R-7.2-002] The MSGin5G Service shall support integrity and confidentiality protection for the payload of a message.