SA WG3 is responsible for security and privacy in 3GPP systems, determining the security and privacy requirements, and specifying the security architectures and protocols. The WG also ensures the availability of cryptographic algorithms which need to be part of the specifications.

The sub-WG SA3-LI provides the requirements and specifications for lawful interception in 3GPP systems.

Terms of reference

The latest terms of reference were approved at SA#54 in document SP-110862.

SA WG3 has the overall responsibility for security and privacy in 3GPP systems. The WG will perform analysis of potential threats to these systems. Based on the threat analysis, the WG will determine the security and privacy requirements for 3GPP systems, and specify the security architectures and protocols. The WG will ensure the availability of any cryptographic algorithms which need to be part of the specifications. The WG will accommodate, as far as is practicable, any regional regulatory variations in security objectives and priorities for 3GPP partners. The WG will further accommodate, as far as is practicable, regional regulatory requirements that are related to the processing of personal data and privacy.

The subworking group SA WG3-LI will detail the requirements for lawful interception in 3GPP systems, and produce all specifications needed to meet those requirements. This work shall be performed in conjunction with the regional standards bodies. 

Useful links and information

A new 3GPP Coordinated Vulnerability Disclosure (CVD) is now available:- SA3 and the 3GPP Mobile Competence Centre have implemented a process to allow suspected or proven vulnerability caused by errors, omissions or ambiguities in our Technical Specifications to be reported and quickly forwarded to the appropriate 3GPP Group, to analyse and resolve the problem.