Refreshing keys for authentication and key management for applications after authentication failures
Patent Information
- Authority / Receiving Office
- EP · EP
- Patent Type
- Applications
- Current Assignee / Owner
- ZTE CORP
- Filing Date
- 2023-12-07
- Publication Date
- 2026-06-10
Smart Images

Figure CN2023136931_12062025_PF_FP_ABST
Abstract
Description
REFRESHING KEYS FOR AUTHENTICATION AND KEY MANAGEMENT FOR APPLICATIONS AFTER AUTHENTICATION FAILURESTECHNICAL FIELD
[0001] This disclosure is directed generally to digital wireless communications.BACKGROUND
[0002] Mobile telecommunication technologies are moving the world toward an increasingly connected and networked society. In comparison with the existing wireless networks, next generation systems and wireless communication techniques will need to support a much wider range of use-case characteristics and provide a more complex and sophisticated range of access requirements and flexibilities.
[0003] Long-Term Evolution (LTE) is a standard for wireless communication for mobile devices and data terminals developed by 3rd Generation Partnership Project (3GPP) . LTE Advanced (LTE-A) is a wireless communication standard that enhances the LTE standard. The 5th generation of wireless system, known as 5G, advances the LTE and LTE-A wireless standards and is committed to supporting higher data-rates, large number of connections, ultra-low latency, high reliability and other emerging business needs.SUMMARY
[0004] Methods, systems, and devices for refreshing keys for Authentication and Key Management Applications (AKMA) are described. In a 5G system, the AKMA service aims at establishing authenticated communications between users and application functions, and ensures the security of communication users and applications. Embodiments of the disclosed technology provide mechanisms for refreshing the AKMA Application Key (KAF) after an unsuccessful home network triggered primary authentication.
[0005] In an example aspect, a wireless communication method includes receiving, by a wireless device from an application function, a message comprising an indication of an unsuccessful home network triggered primary authentication. The method then includes the wireless device transmitting, to an access management function and based on the indication, a request for a primary authentication. Herein, the request comprises a key set identifier associated with an access key for the access management function, and a value of the key set identifier is equal to a predetermined value.
[0006] In another example aspect, a wireless communication method includes transmitting, by an application function to a wireless device, a message comprising an indication of an unsuccessful home network triggered primary authentication. In this method, the wireless device is configured to transmit, to an access management function and based on the indication, a request for a primary authentication. Herein, the request comprises a key set identifier associated with an access key for the access management function, and a value of the key set identifier is equal to a predetermined value.
[0007] In yet another example aspect, the above-described methods are embodied in the form of processor-executable code and stored in a non-transitory computer-readable storage medium. The code included in the computer readable storage medium when executed by a processor, causes the processor to implement the methods described in this patent document.
[0008] In yet another example embodiment, a device that is configured or operable to perform the above-described methods is disclosed.
[0009] The above and other aspects and their implementations are described in greater detail in the drawings, the descriptions, and the claims.
[0010] BRIEF DESCRIPTION OF THE DRAWING
[0011] FIG. 1 shows an example timing diagram for the generation of an AKMA Application Key (KAF) from an AKMA Anchor Key (KAKMA) .
[0012] FIG. 2 shows an example timing diagram for refreshing KAF after an unsuccessful home network triggered primary authentication (HONTRA) .
[0013] FIGS. 3 and 4 show flowcharts of example wireless communication methods.
[0014] FIG. 5 shows an exemplary block diagram of a hardware platform that may be a part of a network device or a communication device.
[0015] FIG. 6 shows an example of wireless communication including a base station (BS) and user equipment (UE) based on some implementations of the disclosed technology.DETAILED DESCRIPTION
[0016] In Fifth Generation (5G) New Radio (NR) , the Authentication and Key Management Applications (AKMA) service enables the authentication and generation of application keys based on 3GPP credentials for all User Equipment (UE) types in the 5G NR System. The AKMA architecture and procedures are specified in Technical Specification (TS) 33.535, entitled “Authentication and Key Management for Applications (AKMA) based on 3GPP credentials in the 5G System (5GS) . ”
[0017] According to TS 33.535, the AKMA procedures specify that when the UE needs AKMA services, it will send an Application Session Establishment Request message (that includes an AKMA Key Identifier (A-KID) ) to the AKMA Application Function (AF) . If the lifetime of the AKMA Application Key (KAF) expires and AF decides to continue the UE’s access based on its policy, it will request the AKMA Anchor Function (AAnF) to get a new KAF. The AAnF then requests Unified Data Management (UDM) to trigger a primary authentication (or reauthentication) to get the AKMA Anchor Key (KAKMA) , which will be further used to generate KAF. Then, the UDM decides whether to trigger the home network triggered primary authentication based on its policy. If the home network triggered primary authentication fails or does not execute, KAF cannot be refreshed, and AF will reject the Application Session Establishment. Existing implementations do not consider or provide techniques for how KAF should be refreshed in such scenarios. Embodiments of the disclosed technology provide at least a mechanism that enables a UE to refresh KAF after an unsuccessful home network triggered primary authentication.
[0018] The example headings for the various sections below are used to facilitate the understanding of the disclosed subject matter and do not limit the scope of the claimed subject matter in any way. Accordingly, one or more features of one example section can be combined with one or more features of another example section. Furthermore, 5G terminology is used for the sake of clarity of explanation, but the techniques disclosed herein are not limited to 5G technology only, and may be used in wireless systems that implemented other protocols.
[0019] Examples of AKMA protocols in 3GPP TS 33.535 and 3GPP 33.501
[0020] 3GPP TS 33.535 clause 6.2.1 specifies the procedure used by the AF to request application function specific AKMA keys from the AAnF, when the AF is located inside the operator's network, and as shown in FIG. 1. Before communication between the UE and the AKMA AF can start, the UE and the AKMA AF need to know whether to use AKMA. This knowledge is implicit to the specific application on the UE and the AKMA AF or indicated by the AKMA AF to the UE. The operations shown in the timing diagram in FIG. 1 include:
[0021] 1. The UE shall generate the AKMA Anchor Key (KAKMA) and the A-KID from the KAUSF before initiating communication with an AKMA Application Function. When the UE initiates communication with the AKMA AF, it shall include the derived A-KID (see clause 6.1) in the Application Session Establishment Request message. The UE may derive KAF before sending the message or afterwards.
[0022] 2. If the AF does not have an active context associated with the A-KID, then the AF selects the AAnF as defined in clause 6.7, and sends a Naanf_AKMA_ApplicationKey_Get request to AAnF with the A-KID to request the KAF for the UE. The AF also includes its identity (AF_ID) in the request.
[0023] AF_ID consists of the FQDN of the AF and the Ua*security protocol identifier (see Annex A.4) . The latter parameter identifies the security protocol that the AF will use with the UE.
[0024] The AAnF shall check whether the AAnF can provide the service to the AF based on the configured local policy or based on the authorization information available in the signaling (i.e., Oauth2.0 token) . If it succeeds, the following procedures are executed. Otherwise, the AAnF shall reject the procedure.
[0025] The AAnF shall verify whether the subscriber is authorized to use AKMA based on the presence of the UE specific KAKMA key identified by the A-KID.
[0026] If KAKMA is present in AAnF, the AAnF shall continue with step 3.
[0027] If KAKMA is not present in the AAnF, the AAnF shall continue with step 4 with an error response.
[0028] 3. Upon receiving the request from the AF, if the AAnF determines this specific AF needs GPSI, according to its local policy, the AAnF sends a Nudm_SDM_Get Request to the UDM to fetch the GPSI of the UE. If the specific AF does not need GPSI, the AAnF shall continue with step 5.
[0029] 4. The UDM responds with the GPSI of the UE. The AAnF shall store the received GPSI as part of UE’s AKMA context.
[0030] 5. The AAnF derives the AKMA Application Key (KAF) from KAKMA if it does not already have KAF.
[0031] The key derivation of KAF shall be performed as specified in Annex A. 4.
[0032] 6. The AAnF sends Naanf_AKMA_ApplicationKey_Get response to the AF with SUPI, KAF and the KAF expiration time. Whether to send SUPI or GPSI is determined by AAnF based on the local policy.
[0033] 7. The AF sends the Application Session Establishment Response to the UE. If the information in step 4 indicates failure of AKMA key request, the AF shall reject the Application Session Establishment by including a failure cause. Afterwards, UE may trigger a new Application Session Establishment request with the latest A-KID to the AKMA AF.
[0034] 3GPP TS 33.501 clause 6.2.3.3 specifies that the key associated with Authentication Server Function (AUSF) , denoted KAUSF, the key associated with the Security Anchor Function (SEAF) , denoted KSEAF, shall be created when running a successful primary authentication as described in clause 6.1.3. Furthermore, it is specified that the key associated with the Access and Mobility Management Function (AMF) , denoted KAMF, is created in the following cases:
[0035] 1. Primary authentication,
[0036] 2. NAS key re-keying as described in clause 6.9.4.2,
[0037] 3. NAS key refresh as described in clause 6.9.4.3, and / or
[0038] 4. Interworking procedures with EPS (cf. clauses 8 and 10) .
[0039] In case the UE does not have a valid KAMF, an ngKSI with value "111" is sent by the UE to the network, which initiates a (re) authentication procedure to get a new KAMF based on a successful primary authentication.
[0040] Examples embodiments of the disclosed technology
[0041] In some embodiments, and as shown in FIG. 2, the UE can trigger a reauthentication procedure after an unsuccessful home network triggered primary authentication. The operations shown in the timing diagram in FIG. 2 include:
[0042] 1. When the UE initiates communication with the AKMA AF, it shall include the derived A-KID in the Application Session Establishment Request message.
[0043] 2. After receiving the request message, the AF checks the status of KAF. If the KAF timer has expired, the AF will request to get a new KAF.
[0044] 3. The AF selects the AAnF and sends a Naanf_AKMA_ApplicationKey_Get request to AAnF with the A-KID to request the KAF for the UE. The AF also includes its identity (AF_ID) in the request.
[0045] 4. If the AAnF decides to refresh the KAKMA based on its local policy, the AAnF sends an authentication request message to the UDM, including the UE’s SUPI. Then, the UDM decides whether to trigger the home network triggered primary authentication based on its policy. If the UDM decides to trigger the home network triggered primary authentication, operations continue from step 5, whereas if the UDM decides not to trigger the home network triggered primary authentication, step 5 will be skipped.
[0046] 5. The UDM starts the home network triggered primary authentication procedure. After the primary authentication is successfully completed, the AUSF shall generate KAKMA and A-KID and send them to AAnF.
[0047] 6. The UDM sends Nudm_UECM_AuthTrigger Response to inform AAnF whether the home network triggered primary authentication is successfully performed.
[0048] 7. If the information in step 6 indicates the home network triggered primary authentication is successfully performed, then the AAnF sends Naanf_AKMA_ApplicationKey_Get response to the AF with SUPI / GPSI, KAF and the KAF expiration time. Whether to send SUPI or GPSI is determined by AAnF based on the local policy. If the information in step 6 indicates the home network triggered primary authentication is failed or not executed, the AAnF shall send Naanf_AKMA_ApplicationKey_Get response to the AF including an failure cause, and step 8 will be skipped.
[0049] 8. The AAnF derives the AKMA Application Key (KAF) from KAKMA.
[0050] 9. If the KAF is refreshed successfully, since the A-KID is also refreshed, the AF shall send an error response to inform UE the A-KID it used is expired, where the error cause value indicates the A-KID and KAF are refreshed. Step 10-12 will be skipped.
[0051] If the information in step 7 indicates failure of AKMA key request, the AF shall reject the Application Session Establishment by including a error cause indicating the KAF is expired or the home network triggered primary authentication is not successful. Step 10 will be continued.
[0052] 10. Upon receiving the response from AF, if UE still need AKMA service, it can set ngKSI with value "111" .
[0053] 11. The ngKSI with value "111" shall be sent by the UE to the network, which can initiate (re) authentication procedure to get a new KAUSF based on a successful primary authentication. After a successful primary authentication, AUSF can derive new KAKMA and A-KID from the KAUSF and send them to AAnF.
[0054] 12. The AAnF derives the AKMA Application Key (KAF) from KAKMA.
[0055] 13. The UE can calculate the new A-KID, KAKMA and KAF, and trigger a new Application Session Establishment request with the latest A-KID to the AKMA AF. According to normal AKMA Procedures, the application session will be established between UE and AF.
[0056] Thus, as illustrated in the context of FIG. 2, the UE is configured to refresh KAF after an unsuccessful home network triggered primary authentication, which is an operation that is not performed or included in existing systems and implementations.
[0057] Methods and implementations of the disclosed technology
[0058] The disclosed embodiments provide a mechanism for a UE to refresh KAF after an unsuccessful home network triggered primary authentication. In an example, if the home network triggered primary authentication failed or was not performed due to UDM’s local policy, the AF will reject the Application Session Establishment by including a failure cause. Upon receiving the message, UE triggers a primary authentication by sending an ngKSI with value "111" to the network (e.g., the AMF) to refresh the key.
[0059] FIG. 3 shows a flowchart for an example wireless communication method 300. The method 300 includes, at operation 310, receiving, by a wireless device from an application function, a message comprising an indication of an unsuccessful home network triggered primary authentication.
[0060] The method 300 includes, at operation 320, transmitting, to an access management function and based on the indication, a request for a primary authentication comprising a key set identifier associated with an access key for the access management function, and a value of the key set identifier being equal to a predetermined value.
[0061] FIG. 4 shows a flowchart for an example wireless communication method 400. The method 400 includes, at operation 410, transmitting, by an application function to a wireless device, a message comprising an indication of an unsuccessful home network triggered primary authentication. In this method, the wireless device is configured to transmit, to an access management function and based on the indication, a request for a primary authentication that comprises a key set identifier associated with an access key for the access management function, and a value of the key set identifier is equal to a predetermined value.
[0062] The described features can be implemented to further provide one or more of the following technical solutions:
[0063] 1. A wireless communication method, comprising: receiving, by a wireless device from an application function, a message comprising an indication of an unsuccessful home network triggered primary authentication; and transmitting, to an access management function and based on the indication, a request for a primary authentication, wherein the request comprises a key set identifier associated with an access key for the access management function, and wherein a value of the key set identifier is equal to a predetermined value.
[0064] 2. A wireless communication method, comprising: transmitting, by an application function to a wireless device, a message comprising an indication of an unsuccessful home network triggered primary authentication, wherein the wireless device is configured to transmit, to an access management function and based on the indication, a request for a primary authentication, wherein the request comprises a key set identifier associated with an access key for the access management function, and wherein a value of the key set identifier is equal to a predetermined value.
[0065] 3. The method of solution 1 or 2, wherein the access management function is an Access and Mobility Management Function (AMF) , wherein the access key is a key (KAMF) for the AMF, wherein the application function is an Application Function, the key set identifier is a Next Generation Key Set Identifier (ngKSI) , and the predetermined value is 111.
[0066] 4. The method of any of solutions 1 to 3, wherein the unsuccessful home network triggered primary authentication is due to a local policy of a data management function or the primary authentication triggering but failing to complete.
[0067] 5. The method of solution 4, wherein the data management function is a Unified Data Management (UDM) function.
[0068] 6. The method of any of solutions 1 to 3, wherein the wireless device is configured to perform a successful primary authentication, and wherein the access management function is configured, upon reception of the key set identifier and the value of the key set identifier being equal to the predetermined value, to initiate a (re) authentication procedure based on the successful primary authentication.
[0069] 7. The method of solution 6, wherein the wireless device is further configured, subsequent to a completion of the (re) authentication procedure, to generate a new value for an application key associated with the application function.
[0070] 8. The method of any of solutions 1 to 3, wherein the message further comprises a failure cause, and wherein the failure cause includes an expiration of an application key associated with the application function or a failure indication of a home network triggered primary authentication procedure.
[0071] 9. The method of solution 7 or 8, wherein the application key is an AKMA (Authentication and Key Management for Applications) Application Key (KAF) .
[0072] 10. An apparatus for wireless communication comprising a processor, configured to implement a method recited in one or more of solutions 1 to 9.
[0073] 11. A non-transitory computer readable program storage medium having code stored thereon, the code, when executed by a processor, causing the processor to implement a method recited in one or more of solutions 1 to 9.
[0074] FIG. 5 shows an exemplary block diagram of a hardware platform 500 that may be a part of a network device (e.g., base station) or a communication device (e.g., a user equipment (UE) ) . The hardware platform 500 includes at least one processor 510 and a memory 505 having instructions stored thereupon. The instructions upon execution by the processor 510 configure the hardware platform 500 to perform the operations described in FIGS. 3 and 4 and in the various embodiments described in this patent document. The transmitter 515 transmits or sends information or data to another device. For example, a network device transmitter can send a message to a user equipment. The receiver 520 receives information or data transmitted or sent by another device. For example, a user equipment can receive a message from a network device.
[0075] The implementations as discussed above will apply to a wireless communication. FIG. 6 shows an example of a wireless communication system (e.g., a 5G or NR cellular network) that includes a core network 650, a base station 620, and one or more user equipment (UE) 611, 612 and 613. In some embodiments, the core network 650 comprises various network components that include, but are not limited to, an Access and Mobility Management Function (AMF) 652, a Unified Data Management (UDM) function 654, a Session Management Function (SMF) 656, and a User Plane Function (UPF) 658. In some embodiments, the core network 650 comprises additional network functions not shown in FIG. 6, e.g., Application Function (AF) , Authentication Server Function (AUSF) , Authentication and Key Management Applications (AKMA) Anchor Function (AAnF) , and the like. In some embodiments, the base station (BS) 620 maintains a bidirectional communication link 635 with the core network (CN) 650. In an example, the BS 620 and CN 650 may be connected using an optical fiber network. In some embodiments, the UEs access the BS (e.g., the network) using a communication link to the network (sometimes called uplink direction, as depicted by dashed arrows 631, 632, 633) , which then enables subsequent communication (e.g., shown in the direction from the network to the UEs, sometimes called downlink direction, shown by arrows 641, 642, 643) from the BS to the UEs. In some embodiments, the BS send information to the UEs (sometimes called downlink direction, as depicted by arrows 641, 642, 643) , which then enables subsequent communication (e.g., shown in the direction from the UEs to the BS, sometimes called uplink direction, shown by dashed arrows 631, 632, 633) from the UEs to the BS. The UE may be, for example, a smartphone, a tablet, a mobile computer, a machine to machine (M2M) device, an Internet of Things (IoT) device, and so on.
[0076] Some of the embodiments described herein are described in the general context of methods or processes, which may be implemented in one embodiment by a computer program product, embodied in a computer-readable medium, including computer-executable instructions, such as program code, executed by computers in networked environments. A computer-readable medium may include removable and non-removable storage devices including, but not limited to, Read Only Memory (ROM) , Random Access Memory (RAM) , compact discs (CDs) , digital versatile discs (DVD) , etc. Therefore, the computer-readable media can include a non-transitory storage media. Generally, program modules may include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. Computer-or processor-executable instructions, associated data structures, and program modules represent examples of program code for executing steps of the methods disclosed herein. The particular sequence of such executable instructions or associated data structures represents examples of corresponding acts for implementing the functions described in such steps or processes.
[0077] Some of the disclosed embodiments can be implemented as devices or modules using hardware circuits, software, or combinations thereof. For example, a hardware circuit implementation can include discrete analog and / or digital components that are, for example, integrated as part of a printed circuit board. Alternatively, or additionally, the disclosed components or modules can be implemented as an Application Specific Integrated Circuit (ASIC) and / or as a Field Programmable Gate Array (FPGA) device. Some implementations may additionally or alternatively include a digital signal processor (DSP) that is a specialized microprocessor with an architecture optimized for the operational needs of digital signal processing associated with the disclosed functionalities of this application. Similarly, the various components or sub-components within each module may be implemented in software, hardware or firmware. The connectivity between the modules and / or components within the modules may be provided using any one of the connectivity methods and media that is known in the art, including, but not limited to, communications over the Internet, wired, or wireless networks using the appropriate protocols.
[0078] While this document contains many specifics, these should not be construed as limitations on the scope of an invention that is claimed or of what may be claimed, but rather as descriptions of features specific to particular embodiments. Certain features that are described in this document in the context of separate embodiments can also be implemented in combination in a single embodiment. Conversely, various features that are described in the context of a single embodiment can also be implemented in multiple embodiments separately or in any suitable sub-combination. Moreover, although features may be described above as acting in certain combinations and even initially claimed as such, one or more features from a claimed combination can in some cases be excised from the combination, and the claimed combination may be directed to a sub-combination or a variation of a sub-combination. Similarly, while operations are depicted in the drawings in a particular order, this should not be understood as requiring that such operations be performed in the particular order shown or in sequential order, or that all illustrated operations be performed, to achieve desirable results.
[0079] Only a few implementations and examples are described, and other implementations, enhancements and variations can be made based on what is described and illustrated in this disclosure.
Claims
1.A wireless communication method, comprising:receiving, by a wireless device from an application function, a message comprising an indication of an unsuccessful home network triggered primary authentication; andtransmitting, to an access management function and based on the indication, a request for a primary authentication, wherein the request comprises a key set identifier associated with an access key for the access management function, and wherein a value of the key set identifier is equal to a predetermined value.2.A wireless communication method, comprising:transmitting, by an application function to a wireless device, a message comprising an indication of an unsuccessful home network triggered primary authentication,wherein the wireless device is configured to transmit, to an access management function and based on the indication, a request for a primary authentication, wherein the request comprises a key set identifier associated with an access key for the access management function, and wherein a value of the key set identifier is equal to a predetermined value.3.The method of claim 1 or 2, wherein the access management function is an Access and Mobility Management Function (AMF) , wherein the access key is a key (KAMF) for the AMF, wherein the application function is an Application Function, the key set identifier is a Next Generation Key Set Identifier (ngKSI) , and the predetermined value is 111.4.The method of any of claims 1 to 3, wherein the unsuccessful home network triggered primary authentication is due to a local policy of a data management function or the primary authentication triggering but failing to complete.5.The method of claim 4, wherein the data management function is a Unified Data Management (UDM) function.6.The method of any of claims 1 to 3, wherein the wireless device is configured to perform a successful primary authentication, and wherein the access management function is configured, upon reception of the key set identifier and the value of the key set identifier being equal to the predetermined value, to initiate a (re) authentication procedure based on the successful primary authentication.7.The method of claim 6, wherein the wireless device is further configured, subsequent to a completion of the (re) authentication procedure, to generate a new value for an application key associated with the application function.8.The method of any of claims 1 to 3, wherein the message further comprises a failure cause, and wherein the failure cause includes an expiration of an application key associated with the application function or a failure indication of a home network triggered primary authentication procedure.9.The method of claim 7 or 8, wherein the application key is an AKMA (Authentication and Key Management for Applications) Application Key (KAF) .10.An apparatus for wireless communication comprising a processor, configured to implement a method recited in one or more of claims 1 to 9.11.A non-transitory computer readable program storage medium having code stored thereon, the code, when executed by a processor, causing the processor to implement a method recited in one or more of claims 1 to 9.