SECURITY HANDLING FOR RRC RESUME FROM INACTIVE STATE
First Claim
1. A method of updating a security context, performed by a wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the method comprising, upon attempting to transition to an RRC CONNECTED state:
- generating a second security context using the security update parameter received in the RRC Suspend message;
sending to the network an RRC Resume Request message; and
in response to one of the following events, discarding the second security context;
receiving from the network an RRC Reject message in response to the RRC Resume Request message;
expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and
performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods are provided for a User Equipment, UE, in NR RRC to revert back to an old security context if an RRC Resume procedure from an inactive state fails. In this way, any subsequent Resume attempts by the UE will derive new security keys from the old keys, which means that the keys and security context will be the same for each attempt. In this way, the security context in the UE will remain synchronized with the network security context, regardless of how many attempts the UE has performed (assuming the network does not change the security context when the Resume procedure fails). Alternatively, the UE may store the new security context it derives during the first Resume attempt, and then ensure that it is reused at subsequent Resume attempts.
16 Citations
67 Claims
-
1. A method of updating a security context, performed by a wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the method comprising, upon attempting to transition to an RRC CONNECTED state:
-
generating a second security context using the security update parameter received in the RRC Suspend message; sending to the network an RRC Resume Request message; and in response to one of the following events, discarding the second security context; receiving from the network an RRC Reject message in response to the RRC Resume Request message; expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message. - View Dependent Claims (5, 7, 11, 12, 13, 14)
-
-
2-4. -4. (canceled)
-
6. (canceled)
-
8-10. -10. (canceled)
-
15-36. -36. (canceled)
-
37. A wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the wireless device comprising:
-
communication circuitry; processing circuitry operatively connected to the communication circuitry, and adapted to, upon attempting to transition to an RRC CONNECTED state; generate a second security context using the security update parameter received in the RRC Suspend message; send to the network an RRC Resume Request message; and in response to one of the following events, discard the second security context; receiving from the network an RRC Reject message in response to the RRC Resume Request message; expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message. - View Dependent Claims (41, 43, 44, 47, 48, 49)
-
-
38-40. -40. (canceled)
-
42. (canceled)
-
45-46. -46. (canceled)
-
50-60. -60. (canceled)
-
61. A base station operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, comprising:
-
communication circuitry; processing circuitry operatively connected to the communication circuitry, and adapted to; store a previously active security context for the wireless device; receive from the wireless device an RRC Resume Request message including a security token; generate a temporary security context for the wireless device; use the temporary security context to verify the security token; send an RRC message to the wireless device; and if no response to the RRC message is received from the wireless device, discard the temporary security context and retrieve the previously active security context. - View Dependent Claims (62, 63, 64, 65, 66)
-
-
67-72. -72. (canceled)
Specification