- Verify that the IUT sends an AUTHENTICATION REQUEST message correctly upon receipt of a NAS Registration without an active security context.
- TP_5GNAS_AMF_AUT_REQ_02 (FF)
- Verify that the IUT sends an AUTHENTICATION REJECT message correctly upon receipt of an AUTHENTICATION RESPONSE message indicating a wrong ARP IEI.
- TP_5GNAS_AMF_AUT_REQ_03 (FF)
- Verify that the IUT stops re-sending an AUTHENTICATION REQUEST message if no AUTHENTICATION RESPONSE message is received on the fifth expiry of timer T3560.
- TP_5GNAS_AMF_AUT_REQ_04 (FF)
- Verify that the IUT sends an IDENTITY REQUEST message correctly upon receipt of an AUTHENTICATION FAILURE message indicating a 5GMM cause value #20.
- TP_NGNAS_AMF_AUT_SEQ_01 (FF)
- Verify that the IUT sends a SECURITY MODE CONTROL message correctly to indicate NAS security mode procedure upon receipt of a NAS AUTHENTICATION RESPONSE.
- TP_5GNAS_AMF_REG_REJ_01 (SINTESIO)
- Verify that the IUT rejects initial registration request due to general NAS level mobility management congestion control with 5GMM cause value #22 - congestion and assign a value for back-off timer T3346.
- TP_5GNAS_AMF_REG_REJ_02 (SINTESIO)
- Verify that the IUT rejects initial registration request because all the S-NSSAI(s) included in the requested NSSAI are either rejected for current PLMN, rejected for the current registration area or rejected due to failed or revoked NSSAIs.
# TP objective ideas reviewed
# TP objectives ideas
Section 5.4.2: Security mode control procedure
- Verify that the IUT, upon receiving the NAS Security Mode Complete Message after completing the NAS Authentication and Security procedure, successfully completes the registration process by accepting the registration.
- Verify that the IUT, upon receiving the NAS Security Mode Reject Message after a failed NAS Authentication and security procedure, successfully aborts the registration process by rejecting the registration.
Section 5.4.3: Identification procedure
- Verify that the IUT sends an IDENTITY REQUEST message correctly upon receipt of an AUTHENTICATION FAILURE message indicating a 5GMM cause value #20. (already implemented as: TP_5GNAS_AMF_AUT_REQ_04)
- Verify that the IUT, upon receiving an IDENTITY RESPONSE message from the UE with an incorrect IMSI, correctly sends an AUTHENTICATION REQUEST message. The IDENTITY REQUEST message is triggered during an authentication procedure with a failed authentication (AUTHENTICATION FAILURE).
- Verify that the IUT, upon receiving an IDENTITY RESPONSE message from the UE with a correct IMSI, correctly sends an AUTHENTICATION REJECT message. The IDENTITY REQUEST message is triggered during an authentication procedure with a failed authentication (AUTHENTICATION FAILURE).
- Verify that the IUT stops re-sending an Identity REQUEST message if no Identity RESPONSE message is received on the fifth expiry of timer T3519.
Section 5.5.1.2.4: Initial registration accepted by the network
-Verify that the IUT sends a REGISTRATION ACCEPT message containing the 5GS registration result, TAI list, 5G-GUTI and T3512 when initial registration is accepted by the network.
-Verify that the IUT sends a REGISTRATION ACCEPT message indicating SMS over NAS allowed when initial registration with SMS over NAS is requested and network allows SMS service.
-Verify that the IUT sends a REGISTRATION ACCEPT message indicating SMS over NAS not allowed when initial registration with SMS over NAS is requested and network does not support SMS service.
Section 8.2.10, 8.2.11
- Verify that the IUT correctly handles a UL NAS transport message containing a PDU SESSION ESTABLISHMENT REQUEST from the UE and responds with a DL NAS transport message containing a PDU SESSION ESTABLISHMENT ACCEPT.
Note: This test idea could be unnecessary. Since the messages DL and UL NAS transport are intrinsically linked to PDU Sessions, their functionality is already verified within the scope of sections 6.3 and 6.4.
security_header_type set to NOT_SECURITY_PROTECTED,
registration_request_message_identity set to REGISTRATION_REQUEST
;
;
}
then {
the IUT entity sends an DOWNLINK_NAS_TRANSFER containing
@@ -126,11 +126,11 @@ Package TP_AMF {
PICS Selection NONE
Initial conditions with {
the UE entity isNotRegisteredTo the AMF and
(.) at time point start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
(!) 6s after time point start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
(!) 12s after time point start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
(!) 18s after time point start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
the UE entity isNotRegisteredTo the AMF
and (.) at time point start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
and (!) 6s after start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
and (!) 12s after start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
and (!) 18s after start_initial_T3560 : event AUTHENTICATION_REQUEST occurs
}
Expected behaviour
ensure that {
@@ -138,12 +138,66 @@ Package TP_AMF {
(.) at time point start_trigger_T3560 : event AUTHENTICATION_REQUEST occurs
}
then {
(!) 6s after time point start_trigger_T3560 : the IUT entity aborts AUTHENTICATION_REQUEST procedure
(!) 6s after start_trigger_T3560 : the IUT entity aborts AUTHENTICATION_REQUEST procedure
(Note 1: "It is not expected to receive another AUTHENTICATION message on the N2N1 interface.")
}
}
} // end TP_5GNAS_AMF_AUT_REQ_03
Test Purpose {
TP Id TP_5GNAS_AMF_AUT_REQ_04
Test objective "Verify that the IUT sends an IDENTITY REQUEST message correctly upon receipt of an AUTHENTICATION FAILURE message indicating a 5GMM cause value #20."
Reference
"ETSI TS 124 501 [1], Clause 5.4.1.3.7 c) and 8.2.4"
Config Id CF_AMF_N2N1
PICS Selection NONE
Initial conditions with {
the UE entity isNotRegisteredTo the AMF and
the IUT entity sends an DOWNLINK_NAS_TRANSFER containing
NAS_PDU containing
security_header_type set to INTEGRITY_PROTECTED,
authentication_parameter_AUTN containing
AUTN indicating value PX_WRONG_MAC_CODE
;
;
;
to the UE entity
}
Expected behaviour
ensure that {
when {
the IUT entity receives an UPLINK_NAS_TRANSFER containing
NAS_PDU containing
extended_protocol_discriminator set to 5GS_MOBILITY_MANAGEMENT_MESSAGE, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values
security_header_type set to INTEGRITY_PROTECTED,
authentication_failure_message_identity set to AUTHENTICATION_FAILURE,
5GMM_cause set to MAC_failure
;
;
from the UE entity
}
then {
the IUT entity sends an DOWNLINK_NAS_TRANSFER containing
NAS_PDU containing
extended_protocol_discriminator set to 5GS_MOBILITY_MANAGEMENT_MESSAGE, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values
security_header_type set to INTEGRITY_PROTECTED,
identity_request_message_identity set to IDENTITY_REQUEST,
identity_type set to SUCI
;
;
to the UE entity
}
}
} // end TP_5GNAS_AMF_AUT_REQ_04
} // end Group Primary authentication and key agreement procedure
Group "5.4.2 Security mode control procedure"
@@ -155,7 +209,7 @@ Package TP_AMF {
TP Id TP_NGNAS_AMF_AUT_SEQ_01
Test objective "Verify that the IUT sends a SECURITY MODE CONTROL message with all mandatory IEs to indicate NAS security mode procedure upon receipt of a NAS AUTHENTICATION_RESPONSE"
Test objective "Verify that the IUT sends a SECURITY MODE CONTROL message correctly to indicate NAS security mode procedure upon receipt of a NAS AUTHENTICATIONRESPONSE."
Reference
"ETSI TS 124 501 [1], Clause 5.4.1.2"
@@ -167,7 +221,9 @@ Package TP_AMF {
Initial conditions with {
the UE entity isNotRegisteredTo the AMF and
event AUTHENTICATION_REQUEST occurs with {
argument replaced by the security_header_type set to INTEGRITY_PROTECTED_WITH_NEW_5G_NAS_SECURITY_CONTEXT
argument replaced by the AUTHENTICATION_REQUEST containing
security_header_type set to INTEGRITY_PROTECTED_WITH_NEW_5G_NAS_SECURITY_CONTEXT
;
}
}
@@ -178,7 +234,8 @@ Package TP_AMF {
NAS_PDU containing
extended_protocol_discriminator set to 5GS_MOBILITY_MANAGEMENT_MESSAGE, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values
security_header_type set to INTEGRITY_PROTECTED_WITH_NEW_5G_NAS_SECURITY_CONTEXT,
authentication_response_message_identity set to AUTHENTICATION_RESPONSE, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values
authentication_response_message_identity set to AUTHENTICATION_RESPONSE //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values
;
;
from the UE entity
}
@@ -190,7 +247,8 @@ Package TP_AMF {
security_mode_command_message_identity set to SECURITY_MODE_COMMAND,
Test objective "Verify that the IUT sends a REGISTRATION ACCEPT message containing the 5GS registration result, TAI list, 5G-GUTI and T3512 when initial registration is accepted by the network."
Reference
"ETSI TS 124 501 [1], Clauses 5.5.1.2.4 and 8.2.7"
Config Id CF_AMF_N2N1
PICS Selection NONE
Initial conditions with {
the UE entity isNotRegisteredTo the AMF
}
Expected behaviour
ensure that {
when {
the IUT entity receives an INITIAL_UE_MESSAGE containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to NOT_SECURITY_PROTECTED,
Registration_request_message_identity set to REGISTRATION_REQUEST,
5GS_registration_type containing
5GS_registration_type_value set to INITIAL_REGISTRATION,
FOR indicating value 1;, //Follow-on request pending
5GS_mobile_identity containing
SUPI_format indicating value IMSI,
Type_of_idenity indicating value SUCI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
Routing_indicator indicating value PX_ROUTING_INDICATOR,
Protection_scheme_id indicating value PX_PROTECTION_SCHEME_ID,
Home_network_public_key_identifier indicating value PX_HOME_NETWORK_PUBLIC_KEY_IDENTIFIER,
MSIN indicating value PX_MSIN;;;
from the GNB entity
}
then {
the IUT entity sends a INITIAL_CONTEXT_SETUP_REQUEST containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to INTEGRITY_PROTECTED_AND_CIPHERED,
Registration_reject_message_identity set to REGISTRATION_ACCEPT,
5GS_registration_result containing
55GS_registration_result_value set to 3GPP_ACCESS;,
5G_GUTI containing
Type_of_identity set to 5G_GUTI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
AMF_Region_ID indicating value PX_AMF_REGION_ID,
AMF_Set_ID indicating value PX_AMF_SET_ID,
AMF_Pointer indicating value PX_AMF_POINTER,
5G_TMSI indicating value RV_5G_TMSI;,
TAI_list containing
Partial_tracking_area_list_1 containing
Type_of_list,
Number_of_elements,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
TAC indicating value PX_TAC;;,
T3512_value containing
Timer_value indicating value nonZeroValue;;;
to the GNB entity
}
}
}// end TP_5GNAS_AMF_REG_ACC_01
Test Purpose {
TP Id TP_5GNAS_AMF_REG_ACC_02
Test objective "Verify that the IUT sends a REGISTRATION ACCEPT message indicating SMS over NAS allowed when initial registration with SMS over NAS is requested and network allows SMS service."
Reference
"ETSI TS 124 501 [1], Clauses 5.5.1.2.4 and 8.2.7"
Config Id CF_AMF_N2N1
PICS Selection NONE //SMS over NAS supported on AMF
Initial conditions with {
the UE entity isNotRegisteredTo the AMF
}
Expected behaviour
ensure that {
when {
the IUT entity receives an INITIAL_UE_MESSAGE containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to NOT_SECURITY_PROTECTED,
Registration_request_message_identity set to REGISTRATION_REQUEST,
5GS_registration_type containing
5GS_registration_type_value set to INITIAL_REGISTRATION,
FOR indicating value 1;, //Follow-on request pending
5GS_mobile_identity containing
SUPI_format indicating value IMSI,
Type_of_idenity indicating value SUCI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
Routing_indicator indicating value PX_ROUTING_INDICATOR,
Protection_scheme_id indicating value PX_PROTECTION_SCHEME_ID,
Home_network_public_key_identifier indicating value PX_HOME_NETWORK_PUBLIC_KEY_IDENTIFIER,
MSIN indicating value PX_MSIN;,
5GS_update_type containing
SMS_over_NAS_transport_requested set to 1;;; //SMS over NAS supported
from the GNB entity
}
then {
the IUT entity sends a INITIAL_CONTEXT_SETUP_REQUEST containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to INTEGRITY_PROTECTED_AND_CIPHERED,
Registration_reject_message_identity set to REGISTRATION_ACCEPT,
5GS_registration_result containing
5GS_registration_result_value set to 3GPP_ACCESS,
SMS_over_NAS_transport_allowed set to 1;, //SMS over NAS allowed
5G_GUTI containing
Type_of_identity set to 5G_GUTI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
AMF_Region_ID indicating value PX_AMF_REGION_ID,
AMF_Set_ID indicating value PX_AMF_SET_ID,
AMF_Pointer indicating value PX_AMF_POINTER,
5G_TMSI indicating value RV_5G_TMSI;,
TAI_list containing
Partial_tracking_area_list_1 containing
Type_of_list,
Number_of_elements,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
TAC indicating value PX_TAC;;,
T3512_value containing
Timer_value indicating value nonZeroValue;;;
to the GNB entity
}
}
}// end TP_5GNAS_AMF_REG_ACC_02
Test Purpose {
TP Id TP_5GNAS_AMF_REG_ACC_03
Test objective "Verify that the IUT sends a REGISTRATION ACCEPT message indicating SMS over NAS not allowed when initial registration with SMS over NAS is requested and network does not support SMS service."
Reference
"ETSI TS 124 501 [1], Clauses 5.5.1.2.4 and 8.2.7"
Config Id CF_AMF_N2N1
PICS Selection NONE //SMS over NAS not supported on AMF
Initial conditions with {
the UE entity isNotRegisteredTo the AMF
}
Expected behaviour
ensure that {
when {
the IUT entity receives an INITIAL_UE_MESSAGE containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to NOT_SECURITY_PROTECTED,
Registration_request_message_identity set to REGISTRATION_REQUEST,
5GS_registration_type containing
5GS_registration_type_value set to INITIAL_REGISTRATION,
FOR indicating value 1;, //Follow-on request pending
5GS_mobile_identity containing
SUPI_format indicating value IMSI,
Type_of_idenity indicating value SUCI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
Routing_indicator indicating value PX_ROUTING_INDICATOR,
Protection_scheme_id indicating value PX_PROTECTION_SCHEME_ID,
Home_network_public_key_identifier indicating value PX_HOME_NETWORK_PUBLIC_KEY_IDENTIFIER,
MSIN indicating value PX_MSIN;,
5GS_update_type containing
SMS_over_NAS_transport_requested set to 1;;; //SMS over NAS supported
from the GNB entity
}
then {
the IUT entity sends a INITIAL_CONTEXT_SETUP_REQUEST containing
NAS_PDU containing
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to INTEGRITY_PROTECTED_AND_CIPHERED,
Registration_reject_message_identity set to REGISTRATION_ACCEPT,
5GS_registration_result containing
5GS_registration_result_value set to 3GPP_ACCESS,
SMS_over_NAS_transport_allowed set to 0;, //SMS over NAS not allowed
5G_GUTI containing
Type_of_identity set to 5G_GUTI,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
AMF_Region_ID indicating value PX_AMF_REGION_ID,
AMF_Set_ID indicating value PX_AMF_SET_ID,
AMF_Pointer indicating value PX_AMF_POINTER,
5G_TMSI indicating value RV_5G_TMSI;,
TAI_list containing
Partial_tracking_area_list_1 containing
Type_of_list,
Number_of_elements,
MCC indicating value PX_MCC,
MNC indicating value PX_MNC,
TAC indicating value PX_TAC;;,
T3512_value containing
Timer_value indicating value nonZeroValue;;;
to the GNB entity
}
}
}// end TP_5GNAS_AMF_REG_ACC_03
Test Purpose {
TP Id TP_5GNAS_AMF_REG_REJ_01
Test objective "Verify that the IUT rejects initial registration request due to general NAS level mobility management congestion control with 5GMM cause value #22 - congestion and assign a value for back-off timer T3346."
@@ -228,8 +501,8 @@ Package TP_AMF {
when {
the IUT entity receives an INITIAL_UE_MESSAGE containing
NAS_PDU containing
extended_protocol_discriminator indicating value 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type indicating value NOT_SECURITY_PROTECTED,
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to NOT_SECURITY_PROTECTED,
Registration_request_message_identity set to REGISTRATION_REQUEST,
5GS_registration_type containing
5GS_registration_type_value set to INITIAL_REGISTRATION,
@@ -248,11 +521,12 @@ Package TP_AMF {
then {
the IUT entity sends a DOWNLINK_NAS_TRANSPORT containing
NAS_PDU containing
extended_protocol_discriminator indicating value 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type indicating value INTEGRITY_PROTECTED_AND_CIPHERED,
extended_protocol_discriminator set to 5G_MOBILITY_MANAGEMENT_MESSAGES,
security_header_type set to INTEGRITY_PROTECTED_AND_CIPHERED,
Registration_reject_message_identity set to REGISTRATION_REJECT,
