Professional Documents
Culture Documents
Disclaimer
The contents of this document are subject to revision without notice due to
continued progress in methodology, design and manufacturing. Ericsson shall
have no liability for any error or damage of any kind resulting from the use of this
document.
Contents
The SGSN-MME identifies whether a request is from the same UE based on the
UE identity, which can be permanent or temporary, see page 1.
The messages are measured and controlled according to configured rules. A rule
is configured per message type and access type, and can be performed for all UEs
served by the SGSN-MME or the UEs in one or more specified UE device groups.
Table 1 UE Identity
GSM WCDMA LTE
Permanent UE IMSI IMSI IMSI
identity
IMEI/IMEISv
(only for
Emergency
Attach).
Temporary UE P-TMSI and RAI P-TMSI and RAI GUTI
identity
Note: The SGSN-MME can receive a different temporary UE identity for the
same UE in the inter-node Attach Request, Inter-RAU Request, and
inter-TAU Request messages. In this case, the SGSN-MME regards the
UE a different UE and does not trigger the control action when the
number of request messages exceeds the threshold.
The control actions include ignoring messages of the same type, rejecting
requests, and detaching the UE.
For ignoring messages of the same type, the UE Signaling Control feature
supports the measuring of the following message types:
— Attach Request
— Intra-TAU Request
For rejecting requests, the UE Signaling Control feature supports the controlling
of the following message types (excluding Emergency messages):
Note: For mobility management message types, the cause code of rejecting is
configurable. For session management message types, the cause code
of rejecting is always #26 INSUFFICIENT_RESOURCES.
For detaching the UE, the UE Signaling Control feature supports the controlling of
the following message types (excluding emergency messages):
Note: Based on the control action of detaching, the SGSN-MME sends the
Detach Request message with the re-attach not required detach
type and the configured cause code.
The following methods are used for detecting situations with a high message
rate:
— EBM can be used to log events for completed procedures. The EBM data
must be thoroughly analyzed.
When a UE Signaling Control rule is created, if the control period is set to 0, the
rule is configured for the Measurement Only mode. If the control period is set to a
value greater than 0, the rule is configured for the Measurement and Control
modes.
In the Measurement Only mode, messages of the specified message type and
access type are measured per UE. A log record is generated if the SGSN-MME
receives ThresholdNumber messages of the specified type from one UE within
one measurement interval. The log record is written to a log file after a
measurement duration ends. For more information, see UE Signaling Control Log.
If the control action is detach, upon receiving the subsequent message of the
specified message type, the SGSN-MME initiates a Detach procedure. The control
period terminates when the Detach procedure is finished.
Note: For the Attach, Inter-SGSN RAU, and Inter-MME TAU procedures, if the
UE sends the SGSN-MME a message including an unknown identity, the
SGSN-MME cannot identify if the message rate is already measured for
the UE. An unknown identity means that the UE has no record of this
identity, for example, an old GUTI. The SGSN-MME thus cannot include
the message in the rate measurement or take the configured control
action.
4.1 Parameters
To display the configuration classes and parameters related to UE Signaling
Control, use the get_config_area CLI command for the UESignalingControl
configuration area.
4.2 Counters
The following counters and PmGroup are valid for UE Signaling Control:
— SGSN-MME_Mobility_ISYSC
— SGSN-MME_Mobility_ISYSC_E
— SGSN-MME_Mobility_MM_E
— SGSN-MME_Mobility_MM_G
— SGSN-MME_Mobility_MM_U
— SGSN-MME_Mobility_U
— SGSN-MME_Session_SM_E
— SGSN-MME_Session_SM_G
— SGSN-MME_Session_SM_U
— SGSN-MME_SMS_G
— SGSN-MME_SMS_U
4.3 Logs
The UE Signaling Control Log is valid for UE Signaling Control.
For descriptions of the log files, see Operation and Maintenance Description.
4.4 Toolbox
The usc_report.pl Toolbox command is used to query UE Signaling Control logs
and print a log report for analyzing potential UE attacks on the network.
4.5 EBM
For descriptions of Sub-Cause Codes and EBM Events, see EBM Cause Codes and
EBM Events and Parameters.