Abstract: 5G security is an important foundation and solid guarantee for the highquality development of 5G, and the 5G converged application security strategy needs to meet the diversified and differentiated needs of services. Operators can open 5G security capabilities to industry customers and give them the means to independently control management, helping to promote the largescale development of 5G industry applications. This paper first introduces the concept and development status of 5G private network, analyzes the current situation of 5G private network access security control requirements and implementation schemes, puts forward a 5G private network access security management and control scheme based on DNAAA, including networking scheme and system capability, and finally introduces the application practice of the scheme in four industry scenarios of campus, finance, power and industry, and verifies the effectiveness and feasibility of the scheme by testing, it provides a useful reference for the construction of access security management and control capabilities of 5G private networks.

Key words: DNAAA, 5G private network, security access, access control, autonomous O&, M

摘要： 5G安全是5G高质量发展的重要基础和坚实保障，5G融合应用安全策略需满足业务多样化、差异化的需求，运营商可以将5G安全能力开放给行业客户，赋予行业客户自主安全管控的手段，促进5G行业应用规模化发展.首先介绍了5G专网发展现状，分析了5G专网接入安全管控需求及实现方案的现状，提出了基于数据网络认证授权计费(data networkauthentication, authorization, accounting, DNAAA)的5G专网接入安全管控方案，包括组网方案和系统能力，最后介绍了该方案在校园、金融、电力、工业4个行业场景的应用实践，并测试验证了方案的有效性和可行性，为5G专网的接入安全管控能力的建设提供了有益参考.

关键词: DNAAA, 5G专网, 接入安全, 准入控制, 自主运维