LTE学习笔记_re-attach not required-程序员宅基地

技术标签: 安全  移动通信网络  

部分信令包含安全上下文

The EPS security context which is indicated by an eKSI can be taken into use to establish the secure exchange of NAS messages when a new NAS signalling connection is established without executing a new EPS authentication procedure (see clause 4.4.2.3) or when the MME initiates a security mode control procedure. For this purpose the initial NAS messages (i.e. ATTACH REQUEST, TRACKING AREA UPDATE REQUEST, DETACH REQUEST, SERVICE REQUEST, EXTENDED SERVICE REQUEST, and CONTROL PLANE SERVICE REQUEST) and the SECURITY MODE COMMAND message contain an eKSI in the NAS key set identifier IE or the value part of eKSI in the KSI and sequence number IE indicating the current EPS security context used to integrity protect the NAS message. 1

部分信令在安全上下文建立之前可以被处理

Except the messages listed below, no NAS signalling messages shall be processed by the receiving EMM entity in the MME or forwarded to the ESM entity, unless the secure exchange of NAS messages has been established for the NAS signalling connection:2

  • ATTACH REQUEST;
  • IDENTITY RESPONSE (if requested identification parameter is IMSI);
  • AUTHENTICATION RESPONSE;
  • AUTHENTICATION FAILURE;
  • SECURITY MODE REJECT;
  • DETACH REQUEST;
  • DETACH ACCEPT;
  • TRACKING AREA UPDATE REQUEST.

Once a current EPS security context exists, until the secure exchange of NAS messages has been established for the NAS signalling connection, the receiving EMM entity in the MME shall process the following NAS signalling messages, even if the MAC included in the message fails the integrity check or cannot be verified, as the EPS security context is not available in the network:

  • ATTACH REQUEST;
  • IDENTITY RESPONSE (if requested identification parameter is IMSI);
  • AUTHENTICATION RESPONSE;
  • AUTHENTICATION FAILURE;
  • SECURITY MODE REJECT;
  • DETACH REQUEST;
  • DETACH ACCEPT;
  • TRACKING AREA UPDATE REQUEST;
  • SERVICE REQUEST;
  • EXTENDED SERVICE REQUEST;
  • CONTROL PLANE SERVICE REQUEST.

UE收到detach request (Re-attach not required)

The network shall stop timer T3422 upon receipt of the DETACH ACCEPT message. If the Detach type IE indicates “IMSI detach”, or “re-attach not required” and the EMM cause value is #2 “IMSI unknown in HSS”, the network shall not change the current EMM state; otherwise the network shall enter state EMM-DEREGISTERED.
5.5.2.3.4 Abnormal cases in the UE
The following abnormal cases can be identified:
a) Transmission failure of DETACH ACCEPT message indication from lower layers
The detach procedure shall be progressed and the UE shall send the DETACH ACCEPT message.
b) DETACH REQUEST, other EMM cause values than those treated in clause 5.5.2.3.2 or no EMM cause IE is included, and the Detach type IE indicates “re-attach not required”
The UE shall delete any GUTI, TAI list, last visited registered TAI, list of equivalent PLMNs, KSI, shall set the update status to EU2 NOT UPDATED and shall start timer T3402.
A UE operating in CS/PS mode 1 or CS/PS mode 2 of operation which is IMSI attached for non-EPS services is still IMSI attached for non-EPS services and shall set the update status to U2 NOT UPDATED.
A UE not supporting any of A/Gb mode, Iu mode or N1 mode may enter the state EMM-DEREGISTERED.PLMN-SEARCH in order to perform a PLMN selection according to 3GPP TS 23.122 [6]; otherwise the UE shall enter the state EMM-DEREGISTERED.ATTEMPTING-TO-ATTACH.
A UE supporting A/Gb mode, Iu mode or N1 mode shall

  • enter the state EMM-DEREGISTERED and attempt to select GERAN, UTRAN, or NR radio access technology and proceed with the appropriate MM, GMM or 5GMM specific procedures. In this case, the UE may disable the E-UTRA capability (see clause 4.5);
  • enter the state EMM-DEREGISTERED.PLMN-SEARCH in order to perform a PLMN selection according to 3GPP TS 23.122 [6]; or
  • enter the state EMM-DEREGISTERED.ATTEMPTING-TO-ATTACH.
    If A/Gb mode or Iu mode is supported by the UE, the UE shall set the GPRS update status to GU2 NOT UPDATED and shall delete the GMM parameters P-TMSI, P-TMSI signature, RAI, GPRS ciphering key sequence number and shall enter the state GMM-DEREGISTERED.
    If the UE is operating in single-registration mode, the UE shall in addition set the 5GMM state to 5GMM-DEREGISTERED, 5GS update status to 5U2 NOT UPDATED, and shall delete any 5G-GUTI, last visited registered TAI, TAI list and ngKSI.

  1. 3GPP TS 24.301-41 4.4.2.1

  2. 3GPP TS 24.301-41 4.4.4.3

版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/snowleopard_bin/article/details/122116371

智能推荐

K8S集群管理-程序员宅基地

文章浏览阅读1.1k次。这一节,我们从 案例解读、证书实践、环境实践、小结 三个方面来学习。这一节,我们从 令牌基础、令牌实践、小结 三个方面来学习。这一节,我们从 集群缩容、集群扩容、小结 三个方面来学习。这一节,我们从 升级原理、升级实践、小结 三个方面来学习。这一节,我们从 基础知识、证书实践、小结 三个方面来学习。这一节,我们从 方案解读、简单实践、小结 三个方面来学习。这一节,我们从 命令解读、数据操作、小结 三个方面来学习。这一节,我们从 备份实践、还原实践、小结 三个方面来学习。

gradle之buildscript的坑_gradle could not get unknown property 'springbootv-程序员宅基地

文章浏览阅读6.4k次。allprojects { ext { springBootVersion = "1.4.1.RELEASE" springDataVersion = "Hopper-SR4" springCloudVersion = "Camden.SR1" }}buildscript { dependencies { c_gradle could not get unknown property 'springbootversion

扩展js的Math中的方法_js math 如何拓展方法-程序员宅基地

文章浏览阅读2.2k次。prototype 属性可以向对象添加属性和方法。Math 对象并不像 Date 和 String 那样是对象的类,因此没有构造函数 Math(),像 Math.sin() 这样的函数只是静态函数,不是某个对象的方法。因此也不允许直接使用prototype属性来定义新方法和新属性。在Math后面直接跟.方法名或者(.属性名) 。Math.newMethod 注意:不能写成Math.p_js math 如何拓展方法

计算两组2D bbox的IOU_2d box iou计算-程序员宅基地

文章浏览阅读1.2k次。在目标检测任务中,在验证检测精度时需要计算估计的2D bbox和gt bbox的相似性,一般用IOU(交并比)来表示:IOU=CA+B−CIOU = \frac{C}{A+B-C}IOU=A+B−CC​下面是计算两组2D bbox的 IOU的示例代码:_2d box iou计算

python-TCP及UDP实现俩PC之间的简单信息通信_python两台电脑通信-程序员宅基地

文章浏览阅读450次。(只实现单方交流)_python两台电脑通信

springboot web项目debug启动后自动断点在SilentExitException 解决-程序员宅基地

文章浏览阅读1k次。使用eclipse开发springboot web项目,在main方法类上使用debug启动后,会自动断点进入SilentExitException ,如图:解决办法 :window->preferences ->java->debug 取消“suspend execution on uncaught exceptions”选项即可..._silentexitexception

随便推点

系统集成项目管理工程师笔记(3)系统集成技术专业知识_《系统集成项目管理师教程(第3版)》知识点总结笔记-程序员宅基地

文章浏览阅读1.6k次。第三课 系统集成技术专业知识(考试重点) 设备系统集成、应用系统集成1.信息系统建设生命周期:产生阶段、开发阶段、运行阶段和消亡阶段2.信息系统开发方法:结构法方法、快速原型法、企业系统规划方法(BSP)、战略数据规划法、信息工程方法、面向对象方法3.信息系统发展中的四种数据环境:数据文件、应用数据库、主题数据库(业务主题)和信息检索系统4.软件需求包括功能需求、非功能需_《系统集成项目管理师教程(第3版)》知识点总结笔记

解决VS Code集成终端中Node命令不可用的问题_vs终端输入node不是内部指令-程序员宅基地

文章浏览阅读1.6k次。问题:VS Code集成终端中输入node -v提示"node"不是内部命令解决方法:1.右键点击VS Code启动图标,选择属性2.点击兼容性选项卡3.勾选以管理员身份运行4.打开VS Code集成终端,输入node -v 成功_vs终端输入node不是内部指令

C段错误总结-程序员宅基地

文章浏览阅读125次。C段错误总结 2012年01月07日  最近一段时间在linux下用C做一些学习和开发,但是由于经验不足,问题多多。而段错误就是让我非常头痛的一个问题。不过,目前写几百行的代码,也很少出现段错误,或者是即使出现了,也很容易找出来,并且处理掉。  那什么是段错误?段错误为什么是个麻烦事?以及怎么发现程序中的段错误以及如何避免发生段错误呢?  一方面为了给自己的学习做个总结,另一方..._uq669

如何从官网下载最新的jdk API_java官网下载 api-程序员宅基地

文章浏览阅读1.5k次。Java最新官网JDK API文档下载连接及查找方式 连接地址:http://www.oracle.com/technetwork/java/javase/documentation/jdk8-doc-downloads-2133158.html查找方式:1 进入java官网选择Java SE,选择Downloads ,如下路径 2 进入到如下界面_java官网下载 api

王振2020-6-28笔记_王振前端-程序员宅基地

文章浏览阅读138次。# #### 前端的实现原理 socket前端包含(html css js jquery bootstrap)import socketserver = socket.socket()server.bind(("127.0.0.1",9000))server.listen()while True: conn,add = server.accept() client_msg = conn.recv(1024) conn.send(b"HTTP/1.1 200 ok\r\n\r\n _王振前端

freeswitch mod-verto分析_freeswitch verto有杂音-程序员宅基地

文章浏览阅读1k次。https://www.it1352.com/928219.html_freeswitch verto有杂音

推荐文章

热门文章

相关标签