SYSTEM AND METHOD FOR SECURE PROVISIONING OF OUT-OF-NETWORK USER EQUIPMENT

摘要

The disclosure relates to technology for provisioning out-of-network user equipment with a network relay in a communications network. The network relay device receives an authentication key request message from user equipment including a user equipment identity and an authentication server identity, and communicates the authentication key request message to an authentication server having the authentication server identity. The network relay device communicates a relay authentication key response received from the authentication server to the user equipment such that a secure communication is established between the user equipment and the network. A relay authentication key is generated during establishment of the secure communication between the user equipment and authentication server, and a session with the user equipment is authenticated using a session key generated by the user equipment based on the relay authentication key. The user equipment is the authenticated with the network relay device and provisioned.

主权项

1. A method for provisioning out-of-network user equipment, comprising:
receiving, via a network relay device, an authentication key request message from a user equipment including a user equipment identity and an authentication server identity, and communicating the authentication key request message to an authentication server having the authentication server identity; communicating, via the network relay device, a relay authentication key response received from the authentication server to the user equipment such that a secure communication is established between the user equipment and the network; receiving, via the network relay device, a relay authentication key generated during establishment of the secure communication between the user equipment and the authentication server; and authenticating, via the network relay device, a session with the user equipment using a session key generated by the user equipment based on the relay authentication key and provisioning the user equipment based on the authenticated session.