| CPC H04W 12/041 (2021.01) [H04L 63/062 (2013.01); H04W 12/0433 (2021.01); H04W 36/0038 (2013.01); H04W 36/14 (2013.01); H04W 36/385 (2013.01); H04W 48/20 (2013.01); H04W 60/02 (2013.01); H04L 2463/061 (2013.01)] | 20 Claims |
|
1. A method for transferring a security context during a handover of a user equipment, the method implemented by one or more core network nodes in a core network of a wireless communication network, wherein the one or more core network nodes provide a source Access and Mobility Management Function (AMF) the method comprising:
receiving, from a source base station in an access network of the wireless communication network, a first handover message indicating that a handover of the user equipment is needed;
deriving a new non-access stratum (NAS) key responsive to deciding that an operator specific security policy is met, wherein the NAS key is used to derive NAS ciphering and integrity protection keys for protection of NAS signaling between the UE and AMF;
sending, responsive to the first handover message, the new NAS key to a target AMF in the core network of the wireless communication network; and
sending, in a second handover message, a key derivation parameter and a key change indication to the user equipment, the key change indication comprising a key change indicator flag set to a value indicating a change of a NAS key.
|