SECURITY HANDLING FOR RRC RESUME FROM INACTIVE STATE
First Claim
1. A method of updating a security context, performed by a wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the method comprising, upon attempting to transition to an RRC CONNECTED state:
- generating a second security context using the security update parameter received in the RRC Suspend message;
sending to the network an RRC Resume Request message; and
in response to one of the following events, discarding the second security context;
receiving from the network an RRC Reject message in response to the RRC Resume Request message;
expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and
performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods are provided for a User Equipment, UE, in NR RRC to revert back to an old security context if an RRC Resume procedure from an inactive state fails. In this way, any subsequent Resume attempts by the UE will derive new security keys from the old keys, which means that the keys and security context will be the same for each attempt. In this way, the security context in the UE will remain synchronized with the network security context, regardless of how many attempts the UE has performed (assuming the network does not change the security context when the Resume procedure fails). Alternatively, the UE may store the new security context it derives during the first Resume attempt, and then ensure that it is reused at subsequent Resume attempts.
16 Citations
67 Claims
-
1. A method of updating a security context, performed by a wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the method comprising, upon attempting to transition to an RRC CONNECTED state:
-
generating a second security context using the security update parameter received in the RRC Suspend message; sending to the network an RRC Resume Request message; and in response to one of the following events, discarding the second security context; receiving from the network an RRC Reject message in response to the RRC Resume Request message; expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message. - View Dependent Claims (5, 7, 11, 12, 13, 14)
-
-
2-4. -4. (canceled)
-
6. (canceled)
-
8-10. -10. (canceled)
-
15-36. -36. (canceled)
-
37. A wireless device operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, wherein the wireless device in RRC CONNECTED state receives from the network an RRC Suspend message including a security update parameter, and in response to the RRC Suspend message enters an RRC INACTIVE state and stores a first security context, the wireless device comprising:
-
communication circuitry; processing circuitry operatively connected to the communication circuitry, and adapted to, upon attempting to transition to an RRC CONNECTED state; generate a second security context using the security update parameter received in the RRC Suspend message; send to the network an RRC Resume Request message; and in response to one of the following events, discard the second security context; receiving from the network an RRC Reject message in response to the RRC Resume Request message; expiration of a timer started upon sending the RRC Resume Request message, without receiving a responsive message from the network; and performing a cell reselection prior to receiving a message from the network responsive to the RRC Resume Request message. - View Dependent Claims (41, 43, 44, 47, 48, 49)
-
-
38-40. -40. (canceled)
-
42. (canceled)
-
45-46. -46. (canceled)
-
50-60. -60. (canceled)
-
61. A base station operative in a wireless communication network employing a Radio Resource Control, RRC, protocol, comprising:
-
communication circuitry; processing circuitry operatively connected to the communication circuitry, and adapted to; store a previously active security context for the wireless device; receive from the wireless device an RRC Resume Request message including a security token; generate a temporary security context for the wireless device; use the temporary security context to verify the security token; send an RRC message to the wireless device; and if no response to the RRC message is received from the wireless device, discard the temporary security context and retrieve the previously active security context. - View Dependent Claims (62, 63, 64, 65, 66)
-
-
67-72. -72. (canceled)
Specification
-
- Resources
-
Current AssigneeTelefonaktiebolaget LM Ericsson
-
Original AssigneeTelefonaktiebolaget LM Ericsson
-
InventorsMildh, Gunnar, da Silva, Icaro L. J.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current
-
CPC Class CodesH04L 63/102 Entity profilesH04W 12/037 of the control plane, e.g. ...H04W 12/04 Key management, e.g. using ...H04W 12/041 Key generation or derivationH04W 12/60 Context-dependent securityH04W 76/18 Management of setup rejecti...H04W 76/19 Connection re-establishmentH04W 76/27 Transitions between radio r...H04W 80/08 Upper layer protocols netwo...H04W 92/10 between terminal device and...
