Table of Contents
Advertisement
CHAPTER 4. Message Flow
4.1.2 Authentication
At the Time of Initial Access
The MS authentication procedure performed in '4.1.1 Initial Access' is as follows:
MS
2) PKM-RSP
(PKMv2 EAP-Transfer)
3) PKM-REQ
(PKMv2 EAP-Transfer)
Repeat
8) PKM-RSP
(PKMv2 EAP-Transfer)
9) PKM-REQ
(PKMv2 EAP-Transfer)
14) PKM-RSP
(PKMv2 EAP-Transfer)
17) PKM-RSP
(PKMv2 SA-TEK-Challenge)
18) PKM-REQ
(PKMv2 SA-TEK-Request)
19) PKM-RSP
(PKMv2 SA-TEK-Response)
20) PKM-REQ
(PKMv2 Key Request)
21) PKM-RSP
(PKMv2 Key Reply)
Classification
(0)~(2)
(3)~(5)
(6)~(11)
4-4
RAS
0) MS_PreAttachment_Ack
1) AuthRelay-EAP-Transfer
4) AuthRelay-EAP-Transfer
7) AuthRelay-EAP-Transfer
10) AuthRelay-EAP-Transfer
13) AuthRelay-EAP-Transfer
15) Key_Change_Directive
16) Key_Change_Directive_Ack
Figure 4.2 Authentication Procedure (At the time of initial access)
When the ACR receives MS_PreAttachment_Req_Ack for SBC-RSP from the
RAS, the ACR includes the EAP Request/Identity payload in the AuthRelay-EAP-
Transfer message and transmits the message to the RAS to start the EAP
authentication. The RAS relays the received EAP payload to the MS by using the
PKMv2 EAP-Transfer/PKM-RSP message.
The MS transmits the PKMv2 EAP-Transfer/PKM-REQ message to the RAS by
including the NAI in the EAP Response/Identity, and the RAS relays this to the
ACR by using the AuthRelay-EAP-Transfer message. Then, the authenticator of
the ACR analyzes the NAI and transmits the Diameter EAP Request(DER)
message to the home AAA of the MS.
The subscriber authentication procedure is performed between the MS and the
AAA server according to the EAP-method.
ACR
11) DER
12) DEA
Description
© SAMSUNG Electronics Co., Ltd.
AAA
5) DER
6) DEA
Advertisement
Table of Contents
