What is SIRF? System Information Retrieval Function

Description

The System Information Retrieval Function (SIRF) is a network function within the 5G Core (5GC) security framework, standardized in 3GPP Release 16 and later. It operates as a security endpoint that facilitates the secure retrieval of System Information (SI) by User Equipment (UE). System Information comprises essential data broadcast by the radio access network (e.g., gNB) that UEs need to discover, select, and access the network, including parameters for cell selection, access control, and neighboring cell information. While some SI is broadcast openly, the SIRF addresses the need for secure, on-demand delivery of certain SI messages.

Architecturally, the SIRF is a logical function that can be co-located with other Network Functions (NFs), such as the Network Repository Function (NRF) or a dedicated SI management function. It exposes a service-based interface (likely using HTTP/2 and JSON, as per 5GC SBI conventions) that is secured using 5G security mechanisms. When a UE requires specific system information that is not broadcast or needs a verified copy, it can initiate a secure session with the SIRF. The interaction is protected by the 5G security context established during initial registration, ensuring mutual authentication between the UE and the network, as well as confidentiality and integrity protection for the retrieved information.

The SIRF works by receiving authenticated requests from UEs, validating them against the UE's security context and subscription profile, and then fetching the requested system information. This information may be sourced from a central repository or generated dynamically. The SIRF then packages and returns the SI to the UE in a protected manner. This mechanism is particularly valuable for delivering sensitive or large SI blocks that are inefficient to broadcast frequently, for providing UE-specific SI configurations, or for ensuring SI authenticity in scenarios where broadcast SI could be spoofed (e.g., in non-terrestrial networks or vulnerable coverage areas). It enhances the overall security and efficiency of system information management in 5G.

Purpose & Motivation

The SIRF was created to address specific security and efficiency challenges in system information delivery for advanced 5G use cases defined from Release 16 onward. Traditional broadcast of all system information is inefficient for rarely-changing parameters and vulnerable to spoofing attacks, where a malicious transmitter could broadcast false network parameters to launch denial-of-service or man-in-the-middle attacks.

Its introduction was motivated by the expansion of 5G into new deployment scenarios such as Non-Public Networks (NPN), Integrated Access and Backhaul (IAB), and Non-Terrestrial Networks (NTN). In these environments, ensuring the authenticity and integrity of system information is paramount. For instance, in an NPN, a UE must be certain it is retrieving SI from the legitimate private network and not a rogue cell. Furthermore, for on-demand SI, the network needs a secure method to deliver potentially large or UE-specific data blocks without relying on insecure broadcast channels.

The SIRF solves these problems by leveraging the established 5G security architecture. It provides a standardized, secure, and service-based method for SI retrieval, moving beyond the purely broadcast model. This allows network operators to control access to certain SI, verify the identity of the retrieving UE, and protect the SI from tampering during delivery. It represents an evolution from a 'trust-the-air-interface' model for SI towards a 'secure-service' model, aligning with the broader 5GC principle of service-based interactions protected by robust security protocols.

Detected Changes Across Releases

from 3GPP Change Requests

Specific changes extracted from the „Change history“ tables of 3GPP specifications (23 CRs across 4 releases). Complements the general historical overview above with the evidence-based evolution of this function.

Rel-15 1 change

In Release 15, the System Information Retrieval Function (SIRF) was newly introduced to provide the LIPF with system-related information, such as network function (NF) details and service topology. This information enables the LIPF and LICF to perform the necessary operations to establish and maintain target service interception. Additionally, the SIRF supports the ADMF in identifying changes to NFs, Points of Interception (POIs), and Triggering Functions (TFs) in virtualised deployments.

Clarifications on the Location information derivation and delivery TS 33.128CR0020

Rel-17 3 changes

In Release 17, the System Information Retrieval Function (SIRF) was enhanced to allow the Lawful Interception Provisioning Function (LIPF) to identify changes to Network Functions (NFs) and Points of Interception (POIs) within virtualised deployments. This enables the LIPF to notify the Lawful Interception Control Function (LICF) of changes affecting the number of active NFs/POIs, which the LICF requires to maintain its master list. These updates provide the ADMF with the system-related information necessary to establish and maintain target service interception.

Update of stage 2 language for packet header information reporting TS 33.127CR0144
Update of stage 3 language and alignment of packet header information reporting TS 33.128CR0228
Avoiding multiple copies of xCC over LI_X3: Additional XID Related Information TS 33.128CR0175

Rel-18 14 changes

In Release 18, the System Information Retrieval Function (SIRF) was enhanced to support the LIPF in identifying changes to network functions and Points of Interception within virtualized deployments, ensuring the LICF maintains an accurate master list. Furthermore, new capabilities were added for the reporting of Cell Site Information in IQF responses and for the inclusion of Access Network Information within IMS records. These extensions provide the ADMF with more detailed system-related information to establish and maintain service interception.

Support of location information request for both T2P and P2T requests in alignment with TS 33.128 TS 33.127CR0180
NTN related information - stage 3 TS 33.128CR0568
Alignment of Cell Site Information reporting Stage 2 TS 33.127CR0205
Addition of Cell Site Information for IQF responses. TS 33.127CR0245
Addition of NG and NAS Information to AMF Registration Record TS 33.128CR0462
Alignment of Cell Site Information reporting Stage 3 TS 33.128CR0475

+ 8 more changes

Rel-19 5 changes

In Release 19, the System Information Retrieval Function (SIRF) was enhanced to provide the LIPF with new system-related information, specifically concerning Integrated Access and Backhaul (IAB) nodes. This includes details for UE context modification and initial context setup to support mobile IAB nodes and their differentiation. Furthermore, the SIRF's role was expanded to assist in location-related operations by providing cell radio information to location structures.

Extra IAB information in stage 2 related to Downlink NAS transport and to UE CONTEXT MODIFICATION REQUEST TS 33.127CR0255
Mobile IAB Authorized Indicator and UE differentiation information in Initial Context Setup Request, NAS transport initial Information with mobile IAB TS 33.128CR0678
Addition of Cell Radio Information to location structures TS 33.128CR0701
Proxying Information from LICF via LIPF TS 33.127CR0260
Clarification on location in RAN Information TS 33.128CR0700

Explore further

Broader topics and technologies where SIRF plays a role.

Topics

SON (Self-Organizing Networks)NTN (Non-Terrestrial Networks)Authentication (5G-AKA, EAP)MEC (Edge Computing)5G NR (New Radio)Lawful Intercept

Technologies

Defining Specifications

3GPP specifications that define or reference SIRF, with the latest known release. Sourced from the 3GPP document catalog — see methodology.

Specification	Title	Release
TS 33.127 vj50	Lawful Interception Architecture and Functions	Rel-19
TS 33.128 vj50	3GPP TS 33.128: Lawful Interception Protocols	Rel-19