6a.12 User authorisation and preferences
23.2373GPPIP Multimedia Subsystem (IMS) Service ContinuityRelease 17Stage 2TS
There are two different kinds of authorization in the IUT architecture:
Authorization by the SCC AS. The SCC AS responsibilities includes:
– checking that the subscription allows the requested operation
– enforcing network based user preferences, e.g. check whether other UEs shall be allowed to retrieve session information related to the UE.
– enforcing restrictions provided by the remote party network. The SCC AS shall reject requests for Inter-UE Transfer operations on sessions where the remote party is served by a network that has expressed preferences to restrict Inter-UE transfer actions on on-going sessions between the remote party and an IUT user served by the SCC AS.
NOTE: The remote party network, through service agreements with the network operator serving the IUT user, can restrict IUT actions to be performed on sessions that users served by the remote party network are involved in. Such restrictions are expected to be applied on all sessions the remote party users are involved in. In the absence of privacy preferences indicated by the remote party network, the default behaviour of the SCC AS serving the IUT user is to carry out any requested IUT actions subject to other successful authorization checks.
Authorization of incoming request by the UE. The UE based authorization includes:
– authorization through end-user interaction, e.g. the end user authorizes requests for IUT Media Control Related Procedures by pressing a button on the device.
– automatic authorization by UE configuration, e.g. the UE automatically authorizes requests for IUT Media Control Related Procedures from a specific device.
The UE based authorization is considered to be a local implementation of the UE.
If the user requires configuring IUT authorisation and preference settings to the SCC AS, this shall be possible via the Ut interface. The information that can be configured includes:
– UEs authorised by the user to perform the IUT Media Control Related Procedures; and
– authorisation for the SCC AS to preferentially route incoming session invitations from the remote party towards Controller capable UE(s). The user may additionally define criteria to determine whether to preferentially route incoming session invitations from the remote party towards Controller capable UE(s). It shall be possible to apply, for example, the following criteria and combinations of the following criteria to the incoming request:
– Calling party identity (Public User Identity);
– Called party identity used;
– Identification of the Service (Service Identifier); and
– Media types being offered in the incoming request.
The SCC AS shall take in account operator policy and the above user preferences when determining:
– whether the UE is authorised to perform the Controller UE functions, and
– whether to preferentially route incoming session requests from a remote party towards Controller capable UE(s).