| CPC H04L 9/0844 (2013.01) [H04L 63/0884 (2013.01); H04L 63/0892 (2013.01); H04L 63/16 (2013.01); H04W 12/041 (2021.01); H04W 12/0431 (2021.01); H04W 12/062 (2021.01); H04W 12/068 (2021.01); H04W 76/11 (2018.02); H04W 76/25 (2018.02); H04W 80/10 (2013.01); H04W 88/023 (2013.01); H04L 63/061 (2013.01); H04L 63/08 (2013.01); H04L 2463/082 (2013.01)] | 20 Claims |
|
1. A method, implemented by a network node of a wireless communication network, the method comprising:
operating a Session Management Function (SMF) in a control plane of a core network of the wireless communication network in support of wireless communication;
authenticating a User Equipment (UE) with an Extensible Authentication Protocol (EAP) server in a secondary authentication process that uses the SMF as an EAP authenticator, the EAP server being comprised in an external network outside of the core network and the UE being separately authenticated with a further network node in the control plane of the core network via a primary authentication process, wherein authenticating the UE in the secondary authentication process comprises exchanging EAP messages between the SMF and the UE and between the SMF and the EAP server;
authorizing, by the SMF, a data session between the UE and the external network through a user plane of the core network based on the UE having successfully authenticated via both the primary authentication process and the secondary authentication process.
|