-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Specify client-facing 5GMS AF host name to be used by Media Session Handler at M5 #42
Comments
@ibouazizi comment: The 5GMS AF was intentionally not specified at reference point M1. The intention was that the Media Session Handler is pre-configured with the 5GMS AF host address(es), for example by the operator. TS 26.512 could specify a well-known FQDN for the 5GMS AF that resolves in the local network to the correct IP address using DNS. Alternatively, there could be something defined in the NRF. This would require discussion with SA2. |
It is unclear in both of @ibouazizi's alternative proposed solutions how the address of the 5GMS AF is made available to the Media Session Handler in the collaboration scenario where it is deployed outside the Trusted DN. |
@rjb1000 I agree with Richard. If the AF is hosted by the AP in the untrusted domain, then we would need a way to convey the address to the MSH, either through M8-M6 or M1-M5 or for a common solution it would be M1 - Nnrf. |
To develop your proposal a bit, @ibouazizi, I think you are suggesting something along the following lines:
A first-order approximation of the changes required for this outline solution appears to be:
This all seems quite a tall order, but it does appear to close the gap that has been identified, and would allow 5G Media Streaming to move from an unimplementable condition to an implementable one. |
Hello, btw, there is an informative Annex B in TS 26.501, with title: "MNO-specific Service Access Information acquisition". The Annex also considers usage of GSMA managed FQDNs (i.e. 3gppnetworks.org). |
Thanks for pointing this out, @tlohmar. I found this informative statement in clause B.1:
|
Having re-read annex B in TS 26.501, I have summarised my understanding in the list of solutions at the top. |
@ibouazizi comments:
|
This could be specified in Rel-18 as part of the "5GMS_Pro_Ph2" Work Item. Is it acceptable to leave this underspecified in Rel-17 and Rel-16? |
Draft specification text proposal contributed to SA4 ad hoc meeting:
|
TS 26.512 CR0036 endorsed at SA4#125. (Possible future merger with CR0046 from @haudiobe.) |
The contribution addressing this issue was split into two at SA4#127 (Sophia Antipolis):
Both documents were agreed.
|
Context
In order to retrieve full Service Access Information from the 5GMS AF via reference point M5, the Media Session Handler in the 5GMS Client needs to be provided with the following baseline Service Access Information parameters:
These parameters are combined by the Media Session Handler to form the request URL to retrieve the full Service Access Information from a particular 5GMS AF instance at reference point M5.
These two parameters correspond to the minimum baseline Service Access Information described in TS 26.501 when the 5GMS Application Provider announces the 5GMS service privately to the 5GMS-Aware Application (via reference point M8),
There is a one-to-one correspondence in the 5GMS architecture between a Service Access Information resource exposed by the 5GMS AF at reference point M5 and a Provisioning Session resource created at reference point M1. All of the baseline Service Access Information parameters therefore need to be exposed to the 5GMS Application Provider at reference point M1 so that they can be included in a (private) M8 Service Announcement.
Problem description
The Provisioning Session resource defined in clause 7.2.3.1 of TS 26.512 includes a
provisioningSessionId
property which is assigned by the 5GMS AF when the resource is created.It does not, however, expose the client-facing 5GMS AF host address(es), which may differ from the host address used for M1 provisioning interactions for operational and/or security reasons.
At present, the client-facing 5GMS AF host address(es) must be communicated manually to the 5GMS Application Provider, and thence to the 5GMS-Aware Application via M8 which is sub-optimal. A better solution is needed
It is recommended to fix this in Rel-16 onwards.
Suggested solutions
Solution 1
Add a new array property (e.g.
serviceAccessInformationLocators
) to theProvisioningSession
resource in table 7.2.3.1-1 of TS 26.512.Each member of the array is an opaque URL of the client-facing M5 API, following 5GMS URL format. In the interests of simplicity, it is proposed that the Provisioning Session ID is included as a path element so that it forms the complete URL required by the
M5_ServiceAccessInformation_retrieveServiceAccessInformation
operation specified in clause 11.2.2.Solution 2 (DNS-based resolution for 5GMS AF deployed inside the Trusted DN)
(This solution is described in TS 26.501 clause B.2.)
A well-known DNS name for the 5GMS AF (e.g. msaf.3gppnetworks.org) is specified by clause 6.1 of TS 26.512.
When the Media Session Handler attempts to resolve this DNS host name, the MNO's DNS service provides a resolution if a 5GMS System is deployed in the 5G System. Failure to resolve the host name is an indication to the Media Session Handler that the 5GMS System is not available in the current PDU Session. The Media Session Handler can then re-attempt the resolution in other PDU Sessions that are currently configured in the UE until it has exhausted all possibilities.
It is not clear in this solution how the resolution of a 5GMS AF deployed outside the Trusted DN works.
Solution 3 (Lookup service)
The host name of the 5GMS AF is registered in the Network Repository Function (NRF). This solution would require liaison with SA2.
Again, it is not clear how the resolution of a 5GMS AF deployed outside the Trusted DN works in this solution.
Solution 4 (HTTPS-based redirection or request proxying for 5GMS AF deployed outside the Trusted DN)
(This solution is described in TS 26.501 clause B.3.)
A trusted 5GMS AF (i.e. a 5GMS AF deployed in the Trusted DN) is provisioned with a mapping from an ASP identifier to the host name of the 5GMS AF deployed outside the Trusted DN. The M5-facing host name of the trusted 5GMS AF is preferably well known (e.g. msaf.3gppnetworks.org), but could be MNO-specific (e.g. msaf.mno.net).
Conventional provisioning at M1 is used to create a "dummy" Provisioning Session with no other 5GMS features (e.g. no Content Hosting Configuration). This provides a Provisioning Session ID valid in the 5GMS System and an implicit binding to the ASP identifier of the party that provisioned it.
For Service Announcement, the 5GMS AF address may be passed to the 5GMS-Aware Application via M8. If the well-known address is used, it can be burned into the 5GMS-Aware Application or even into the Media Session Handler.
When the Media Session Handler resolves the host name, it initially connects to the trusted 5GMS AF at reference point M5 and provides the Provisioning Session identifier as a parameter. The trusted 5GMS AF looks up the mapping from this to the ASP identifier and then to the (privately provisioned) host name of the externally-deployed 5GMS AF. It issues an HTTP(S) redirect to this host name. The Media Session Handler follows this redirect and retrieves the Service Access Information. The Media Session Handler may cache the redirect response for a period of time to make future requests for Service Access Information faster.
Alternatively, instead of issuing a redirect, the trusted 5GMS AF can proxy the request to the externally-deployed 5GMS AF on behalf of the Media Session Handler. In this case, the trusted 5GMS AF still looks up the mapping from the requested Provisioning Session identifier to the ASP identifier and then to the (privately provisioned) host name of the externally-deployed 5GMS AF. But in this variant, the trusted 5GMS AF makes the request to the externally-deployed 5GMS AF and returns it to the requesting Media Session Handler. The trusted 5GMS AF may cache the Service Access Information document for a period of time to make future requests for Service Access Information faster.
This solution solves the problem of the 5GMS AF being deployed outside the Trusted DN. However, it requires additional provisioning that is currently outside the scope of the M1 Provisioning API currently specified in TS 26.512. Specifically, the ProvisioningSession resource (TS 26.512 clause 7.2.3.1) currently lacks an optional property conveying the name of an externally-deployed 5GMS AF. This resource type could potentially be extended to include such a property. If present, the Provisioning Session acts as a "dummy" for redirection/proxying purposes and provisioning 5GMS features as subresources would not be allowed.
The text was updated successfully, but these errors were encountered: