Table of Contents

Foreword
Introduction
1 Scope
2 Normative references
3 Definition and abbreviations
   3.1 Definition
   3.2 Abbreviations
4 Security requirements and security features
   4.1 UPT Phase 2 security requirements
   4.2 UPT security features
   4.3 UPT security limitations
5 Security mechanisms
   5.1 Access control mechanisms
   5.2 User authentication mechanism
   5.3 Extra authentication for outgoing calls
   5.4 Special authentication for called party
       specified secure answering of incoming calls
   5.5 Security management
   5.6 Service limitations
   5.7 Security profiles
6 Parameter sizes and values
7 Functional specification of the UPT card
   7.1 Storage of data
   7.2 Processing
   7.3 User interface
8 Functional specification of the security protocol
   8.1 Two pass strong authentication
   8.2 Extra authentication for OCPIN
   8.3 Special authentication for SAPIN
9 Functional specification of the AE
   9.1 Check of PUI and authentication type used
   9.2 Two-pass strong authentication
   9.3 SAPIN and OCPIN procedures
   9.4 PIN change check
10 Authentication algorithms
   10.1 The USA-4 algorithm
   10.2 The TESA-7 algorithm
   10.3 Other algorithms
   10.4 Same algorithm for one pass and two pass
        strong authentication
Annex A (normative): Implementation Conformance
        Statement (ICS) proformas
    A.1 Scope
    A.2 Abbreviations
    A.3 ICS proforma for UPT cards used for two
        pass strong authentication
    A.4 ICS proforma for card reading terminals
        supporting UPT
    A.5 ICS proforma for the AE
Annex B (informative): Bibliography
History

Abstract

Provides a description of the additional requirements, features and mechanisms necessary to provide adequate security within the UPT service for Phase 2.

General Product Information

Published
Document Type	Standard
Status	Current
Publisher	European Telecommunications Standards Institute
Pages
ISBN
Committee	NA 6
Supersedes	PRETS 300 790 : AUG 96