Methods, apparatuses, and computer program products for providing fresh security context during intersystem mobility

摘要

A method, apparatus and computer program product are provided to provide fresh security context during intersystem mobility. A method is provided which includes receiving an indication of handover of a remote device from a source system to a target system. The target system may implement a communications standard different from that of the source system. The method also includes determining a current sequence number value of a security context maintained in the source system. The method additionally includes deriving a fresh mapped security context for the target system based at least in part upon the determined sequence number value. The method further includes providing the derived fresh mapped security context to the target system.

主权项

1. A non-transitory computer-readable storage medium with instructions that, when executed by at least one processor, provides operations comprising:
receiving, at a network element, an indication of a handover of a remote device from a source system to a target system, wherein the target system implements a communications standard different from the source system; determining, at the network element, a sequence value of a security context maintained in the source system; deriving, at the network element, another security context for the target system based at least in part on the determined sequence value; and providing, by the network element, the other security context to the target system, wherein the source system implements an evolved universal terrestrial radio access network communications standard, wherein the determining comprises determining a non-access stratum downlink count, and wherein the deriving comprises calculating a cipher key and an integrity key based at least in part upon the determined non-access stratum downlink count.