CAPIF

Common API Framework

Interface →
Introduced in Rel-15 Also in: Core Network

CAPIF is a standardized framework for securely exposing and managing 3GPP network capabilities via northbound APIs to third-party applications and service providers.

Category
Interface
Introduced
Rel-15
Where
Services › Codecs
Also touches
1 segments
Specifications
36 specs
CAPIF Description Purpose Related Classification Detected Changes Specifications

Description

The Common API Framework (CAPIF) is a cornerstone of 3GPP's service-based architecture, designed to provide a unified, standardized, and secure method for exposing network capabilities to external entities. It functions as an API management layer that sits between the 3GPP core network functions (NFs) and external Application Functions (AFs) or third-party service providers. CAPIF's primary role is to abstract the complexity of the underlying network, offering a consistent, well-defined, and discoverable set of northbound APIs. This allows developers to create applications that leverage network capabilities—such as quality of service (QoS) control, location information, network status, and user authentication—without needing deep knowledge of the proprietary interfaces or internal protocols of the network. The framework is built on RESTful principles, typically using HTTP/2 and JSON, aligning with modern web development practices for ease of adoption.

Architecturally, CAPIF is centered around several key logical functions. The CAPIF Core Function (CCF) is the central entity that provides API publishing, discovery, and registration services. It maintains a repository of available APIs from various API exposing functions. The API Invoker is the client entity (e.g., an external AF) that discovers and invokes APIs after proper authentication and authorization. The API Exposing Function (AEF) is the entity that hosts and exposes the actual network capability APIs, such as a Network Exposure Function (NEF) or a Charging Function. The CAPIF Provider Domain represents the administrative domain that operates the CAPIF framework, typically the mobile network operator (MNO). Security is paramount, managed by the CAPIF Security Function, which handles authentication, authorization, and certificate management for all entities interacting within the framework.

The operation of CAPIF follows a defined lifecycle. First, an API Provider (like an NEF) publishes its API interface details (the API definition, endpoints, and supported operations) to the CCF. An external API Invoker (an application server) then discovers available APIs by querying the CCF. Before invocation, the API Invoker must register with the CAPIF framework and obtain the necessary credentials and access tokens. The CCF and Security Function perform authentication and policy-based authorization to ensure the invoker is permitted to access the specific API. Once authorized, the API Invoker can directly invoke the API on the respective AEF. CAPIF also supports API lifecycle management, including versioning and deprecation, as well as logging and charging for API usage. This managed, secure gateway model prevents unauthorized access to sensitive network functions while enabling controlled and monetizable exposure.

CAPIF's role extends beyond simple API exposure; it is an enabler for network programmability and open innovation. By providing a single, standardized framework, it eliminates the need for bilateral, custom integrations between application providers and each MNO. This reduces development time and cost for third parties and allows MNOs to consistently manage and monetize their network assets. In the context of 5G and network slicing, CAPIF is crucial for allowing vertical industries (e.g., automotive, manufacturing) to request and manage slices or specific network behaviors for their applications through standardized APIs. It thus acts as the bridge that transforms the telecom network from a closed, monolithic system into an open platform for service creation.

Purpose & Motivation

CAPIF was created to address the historical challenge of 'walled gardens' in telecommunications networks. Before its introduction, network capabilities were largely inaccessible or exposed through proprietary, operator-specific interfaces. This made it difficult and expensive for third-party application developers and enterprises to innovate and create services that leveraged real-time network intelligence, such as user location, bandwidth management, or connectivity status. The lack of a common framework resulted in fragmented ecosystems, duplicated development efforts, and slowed the pace of service innovation in the mobile domain.

The primary problem CAPIF solves is providing a standardized, secure, and scalable method for Network Exposure. As 3GPP evolved towards a cloud-native, service-based architecture (SBA) with 5G, the need for a formalized exposure layer became critical. CAPIF provides this layer, defining the common rules, security procedures, discovery mechanisms, and lifecycle management for all northbound APIs. This solves the integration complexity problem, allowing an application written for one operator's network to more easily work with another's, fostering a healthier application ecosystem.

Furthermore, CAPIF enables new business models for Mobile Network Operators (MNOs). By offering a controlled and billable gateway to network capabilities, MNOs can monetize their network assets beyond basic connectivity. It empowers vertical industries participating in the 5G economy—like IoT, automotive, and media—to directly interact with the network to fulfill their specific requirements for low latency, high reliability, or massive device connectivity. In essence, CAPIF is the technological foundation that allows the 3GPP network to become a true platform-as-a-service (PaaS), driving innovation and creating new revenue streams in the 5G era.

Classification

Specific typesAPFCRUDNSAFSDK
Related approachesNEF

Detected Changes Across Releases

from 3GPP Change Requests

Specific changes extracted from the „Change history“ tables of 3GPP specifications (205 CRs across 5 releases). Complements the general historical overview above with the evidence-based evolution of this function.

Rel-15 25 changes

In Release 15, the Common API Framework (CAPIF) was newly introduced to provide a standardized framework for 3GPP northbound APIs. The release specified core service APIs including the Publish Service API, Events API, API Invoker Management API, and Authentication Authorization API, along with a discovery service for retrieving API information. It also defined security adaptations for integrating specific service APIs like the NEF northbound and T8 interfaces within the CAPIF architecture.

  • [CAPIF-Sec] 33122 CAPIF access token definition TS 33.122CR0001
  • Corrections for CAPIF-1e and CAPIF-2e TS 23.222CR0002
  • Configuration items for CAPIF TS 23.222CR0007
  • Update to CAPIF relationship with 3GPP EPS and 5GS TS 23.222CR0008
  • CAPIF utilization by service APIs TS 23.222CR0010
  • Supporting Common API framework for NEF TS 23.501CR0124

+ 19 more changes

Rel-16 30 changes

In Release 16, the CAPIF framework was significantly expanded to introduce interconnection capabilities between different administrative domains, enabling API publishing and discovery across these domains. It defined new reference points (3e, 4e, 5e, 7, 7e) and detailed their security requirements and procedures, including the use of TLS profiles. Furthermore, the release integrated CAPIF with both 4G EPS and 5G System network exposure and specified updates for events and service API handling for third-party trust domains.

  • CAPIF interconnection requirements TS 23.222CR0018
  • Integrated CAPIF with 3GPP EPS and 5GS network exposure TS 23.222CR0021
  • Functional architecture for CAPIF interconnection TS 23.222CR0033
  • API publish and API discover for CAPIF interconnection TS 23.222CR0035
  • Service API discover for CAPIF interconnection TS 23.222CR0051
  • Updates to CAPIF events procedures for 3rd party trust domain TS 23.222CR0057

+ 24 more changes

Rel-17 11 changes

In Release 17, the CAPIF function was enhanced with support for mandatory error codes and API redirection, alongside corrections to resource URIs and OAuth 2.0 roles. The release also introduced clarifications for service-based interfaces interaction within CAPIF and added missing description fields and data type tables to the CommonData API's OpenAPI specifications. These updates provided more robust API definitions and error handling for the framework managing 3GPP Northbound APIs.

  • Support CAPIF TS 23.286CR0026
  • CAPIF support TS 29.486CR0055
  • Clarification of Service-based interfaces interaction within CAPIF TS 23.222CR0079
  • Adding some missing description fields to data type definitions in OpenAPI specification files of the CommonData API TS 29.122CR0390
  • Add list of data types table to the CommonData API TS 29.122CR0477
  • Support redirection and mandatory error codes for CAPIF APIs TS 29.222CR0207

+ 5 more changes

Rel-18 58 changes

In Release 18, the CAPIF function was significantly enhanced to support new deployment scenarios and architectural requirements, including explicit support for Standalone Non-Public Networks (SNPN) and updates for Service-based Network Architecture (SNA). Key additions introduced a dedicated CAPIF deployment for exposing Edge Application Server (EAS) Service APIs and new procedures, such as a service procedure for updating subscriptions and operations for RNAA scenarios. The release also focused on extensibility, aligning provider trust domains and completing support for protocol and data format extensibility as requested by external groups like ETSI ISG MEC.

  • Additional CAPIF architectural requirements for SNA TS 23.222CR0090
  • CAPIF business relationship updates for SNA TS 23.222CR0091
  • CAPIF functional model updates for SNA TS 23.222CR0092
  • CAPIF extensibility as requested by ETSI ISG MEC TS 23.222CR0096
  • Solve CAPIF extensibility EN TS 23.222CR0099
  • Support CAPIF in SNPN TS 23.222CR0109

+ 52 more changes

Rel-19 81 changes

In Release 19, the CAPIF function introduced significant enhancements for the Common EAS (Edge Application Server) bundle, including procedures for its discovery, selection based on service KPIs and end-to-end latency, relocation, and service continuity during overload. It also expanded interconnection capabilities and refined API invoker roles, while adding support for group information provisioning to enable RNAA (RAN as a Network Application).

  • CAPIF interconnection TS 23.222CR0201
  • Update to API invoker Roles in CAPIF TS 23.222CR0202
  • Additional CAPIF Interconnection-related requirements TS 23.222CR0231
  • Solving ENs on CAPIF interconnection TS 23.222CR0248
  • Correction on Revocation on CAPIF interconnection TS 23.222CR0255
  • Proposal for AEF instantiation support in CAPIF TS 23.222CR0261

+ 75 more changes

Explore further

Broader topics and technologies where CAPIF plays a role.

Topics
SON (Self-Organizing Networks)Authentication (5G-AKA, EAP)Service Based ArchitectureMEC (Edge Computing)LTE / LTE-AdvancedPolicy & Charging
Technologies
LTE5G

Defining Specifications

3GPP specifications that define or reference CAPIF, with the latest known release. Sourced from the 3GPP document catalog — see methodology.

SpecificationTitleRelease
TR 22.832 vh40 Study on cyber-physical control in vertical domains Rel-17
TS 23.222 vj80 Common API Framework for 3GPP Northbound APIs Rel-19
TS 23.255 vj50 UAS Application Layer Support Rel-19
TS 23.286 vj00 V2X Application Enabler Architecture Rel-19
TS 23.433 vk00 SEAL Data Delivery (SEALDD) for Verticals Rel-20
TS 23.434 vk00 Service Enabler Architecture for Verticals Rel-20
TS 23.438 vk10 SEAL Digital Asset Service for Metaverse Rel-20
TS 23.501 vk00 5G System Architecture Stage 2 Rel-20
TS 23.554 vj70 MSGin5G Service Application Architecture Rel-19
TS 23.558 vk00 Architecture for Edge Applications Rel-20
TS 23.700 vk00 XR Services Application Enablement Layer Rel-20
TS 23.722 vf10 Common API Framework (CAPIF) for 3GPP Northbound APIs Rel-15
TR 23.745 vh00 Study on App Layer Support for Factories of the Future in 5G Rel-17
TR 23.758 vh00 Study on Edge Application Architecture Rel-17
TR 23.764 vh10 Study on V2X Application Layer Enhancements Rel-17
TR 23.958 vj00 EDGEAPP alignment with ETSI MEC and GSMA OP Rel-19
TS 24.538 vj30 MSGin5G Service Protocol Specification Rel-19
TS 24.560 vj00 AIML Enablement (AIMLE) Services Stage 3 Protocol Rel-19
TS 26.501 vj30 5G Media Streaming (5GMS) Architecture Rel-19
TS 26.531 vj00 Data Collection & Reporting Architecture for 5G Rel-19
TS 26.891 vg00 Media Distribution Services in 5G System Rel-16
TS 28.849 vj10 CAPIF Phase2 Charging Study Rel-19
TS 28.879 vj10 OAM for Service Management Exposure Study Rel-19
TS 29.116 vj00 REST-based protocol for xMB reference point Rel-19
TS 29.122 vj40 T8 Reference Point for Northbound APIs Rel-19
TS 29.222 vj40 Common API Framework (CAPIF) for 3GPP Northbound APIs Rel-19
TS 29.486 vj30 V2X Application Enabler (VAE) Services Rel-19
TS 29.522 vj40 5G NEF Northbound APIs Stage 3 Rel-19
TS 29.538 vj30 MSGin5G Service API Specification Rel-19
TS 29.558 vj40 Enabling Edge Applications Rel-19
TS 32.254 vj21 Charging for Northbound APIs Rel-19
TS 32.291 vj40 Charging Management: Service-Based Interface Protocol Rel-19
TS 32.298 vj30 Charging Data Record (CDR) Parameter Specification Rel-19
TS 33.122 vj20 Security Architecture for CAPIF Rel-19
TS 33.519 vk00 5G Security Assurance Specification (SCAS) for NEF Rel-20
TR 33.884 vi01 Technical Report Rel-18