Service Specific Access Control

Description

Service Specific Access Control (SSAC) is a radio resource management and congestion control feature defined in 3GPP for Evolved Packet System (EPS) and 5G System (5GS). Its primary function is to manage access attempts from User Equipment (UE) for specific services when the network is experiencing congestion, particularly in the control plane. SSAC operates by allowing the network to broadcast barring parameters for specific services over the radio interface, which UEs are mandated to obey before initiating an access attempt for that service.

Architecturally, SSAC is controlled by the core network, specifically the Mobility Management Entity (MME) in 4G or the Access and Mobility Management Function (AMF) in 5G. These network functions determine the congestion level and decide on the appropriate barring factors. The barring parameters are then sent to the base station (eNB in LTE, gNB in NR), which includes them in System Information Blocks (SIBs) broadcast to all UEs in a cell. Key parameters include the 'ssac-BarringFactor' (a probability value between 0 and 1) and the 'ssac-BarringTime' (a duration).

How it works is probabilistic. When a UE wants to initiate a specific service (e.g., an IMS voice call), it first reads the relevant SSAC parameters from the broadcast system information. The UE then draws a random number between 0 and 1. If this random number is lower than the broadcast 'ssac-BarringFactor', the access attempt is allowed to proceed. If it is higher, the access is barred, and the UE must wait for the duration specified by 'ssac-BarringTime' before drawing a new random number for a subsequent attempt. This mechanism is applied per service; for example, the network could set a high barring factor for video calls while leaving access for voice calls relatively open, or it could bar all access attempts for mobile-originated signaling. This distributes the access attempts over time, preventing a signaling storm that could crash the MME or AMF during a mass event or network failure.

Purpose & Motivation

SSAC was created to address the problem of control plane overload in packet-switched networks like LTE and 5G, which was a new challenge compared to circuit-switched networks. In CS networks, congestion primarily affected bearer resources (trunks), but in all-IP networks, a surge in signaling requests (e.g., millions of devices simultaneously trying to re-register or make VoLTE calls after an outage) could overwhelm the core network control nodes (MME/AMF). The purpose of SSAC is to provide a standardized, service-aware method to throttle this signaling load.

It solves the critical issue of network resilience during emergencies, disasters, or popular events where many users simultaneously attempt to use services. Without SSAC, such a signaling storm could lead to a complete core network failure, denying service to all users. SSAC allows the network to gracefully degrade by selectively restricting less critical services, ensuring that some level of service (e.g., emergency calls, basic registration) can be maintained. It was motivated by lessons learned from early LTE deployments and the need for sophisticated congestion control in the IMS-based service delivery model, where service differentiation is key. It addresses the limitations of more blunt access control mechanisms like Access Class Barring (ACB) by providing granular, service-level control.

Key Features

• Service-specific barring parameters broadcast in system information (SIBs)
• Probabilistic access control using a barring factor and random number draw in the UE
• Independent control for different services (e.g., voice, video, signaling)
• Core network (MME/AMF) controlled, radio access network executed
• Prevents control plane signaling overload and core network node failure
• Enables graceful service degradation during network congestion or disaster scenarios

Evolution Across Releases

Defining Specifications