Commit c86277eb authored by Steffen Ludtke's avatar Steffen Ludtke
Browse files

add new TP for security mode command

parent c610dfb5

test_purposes/ngnas/TP_AMF_NGNAS.tplan2

+55 −2
Original line number Diff line number Diff line
@@ -49,7 +49,7 @@ Package TP_AMF { 
							security_header_type set to NOT_SECURITY_PROTECTED,

							registration_request_message_identity set to REGISTRATION_REQUEST

							;

						;

						

					}

					then {

						the IUT entity sends an DOWNLINK_NAS_TRANSFER containing
@@ -115,6 +115,59 @@ Package TP_AMF { 
		Group "5.4.2 Security mode control procedure"

		{



			import all from Ngnas_Common;

    	 

			Test Purpose {

			

			TP Id TP_NGNAS_AMF_AUT_SEQ_01 

			

			// TODO:

			Test objective "Verify that the IUT sends an Security mode command message correctly upon receipt of a NAS Registration without an active security context."

			

			Reference 

				"ETSI TS 124 501 [1], Clause 5.4.1"

			

			// TODO

			Config Id CF_AMF_N2

			

			PICS Selection NONE

			

			Initial conditions with {

				the UE entity isNotRegisteredTo the AMF

			}

			

			Expected behaviour

				ensure that {

					when {

						the IUT entity receives a UPLINK_NAS_TRANSFER containing // AUTHENTICATION_RESPONSE

							NAS_PDU containing

								extended_protocol_discriminator indicating value 01010111, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values 

								security_header_type indicating value 0000,

								authentication_response_message_identity set to AUTHENTICATION_RESPONSE, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values 

								authentication_response_parameter, // optional: This IE is included if the message is sent in a 5G AKA based primary authentication and key agreement procedure.

								EAP_message //optional: TODO: EAP message IE is included if the EAP message received in a related AUTHENTICATION REQUEST message was an EAP-request.

								;

					 from the UE entity

					}

					then {

					the IUT entity sends an DOWNLINK_NAS_TRANSFER containing // Security mode command

						NAS_PDU containing

							extended_protocol_discriminator indicating value 01111110, //reference ts_124007v180200p: Table 11.2.3.1.1A.1: EPD values 

							security_header_type indicating value 0000, //not security protected

							security_mode_command_message_identity set to SECURITY_MODE_COMMAND,

							selected_NAS_security_algorithms,

							ngKSI, //TODO: see [1] Table 9.11.3.32.1

							replayed_UE_security_capabilities, // UE security capability 9.11.3.54	

							

							IMEISV request,	//optional: The AMF may include this information element to request the UE to send its IMEISV with the corresponding SECURITY MODE COMPLETE message. 

							Selected EPS NAS security algorithms,	//TODO optional: This IE shall be included if the AMF supports N26 interface and the UE set the S1 mode bit to "S1 mode supported" in the 5GMM capability IE of the REGISTRATION REQUEST message. 

							Additional 5G security information, //optional: weglassen // raus

							EAP message // TODO: optional, see 5.4.1.2 // Raus

						;

					to the UE entity

					}

				}

			} // end TP_NGNAS_AMF_AUT_SEQ_01



		} // end Group Security mode control procedure