	US 11,659,382 B2
	Security solution for switching on and off security for up data between UE and RAN in 5G
Vesa Torvinen, Sauvo (FI); Noamen Ben Henda, Stockholm (SE); and Monica Wifvesson, Lund (SE)
Assigned to TELEFONAKTIEBOLAGET LM ERICSSON (PUBL), Stockholm (SE)
Appl. No. 16/494,660
Filed by Telefonaktiebolaget LM Ericsson (publ), Stockholm (SE)
PCT Filed Mar. 16, 2018, PCT No. PCT/EP2018/056751 § 371(c)(1), (2) Date Sep. 16, 2019, PCT Pub. No. WO2018/167307, PCT Pub. Date Sep. 20, 2018.
Claims priority of provisional application 62/472,722, filed on Mar. 17, 2017.
Prior Publication US 2020/0100101 A1, Mar. 26, 2020
Int. Cl. H04W 40/36 (2009.01); H04W 36/02 (2009.01); H04W 12/00 (2021.01); H04L 9/40 (2022.01); H04W 12/033 (2021.01); H04W 12/106 (2021.01)

CPC H04W 12/009 (2019.01) [H04L 63/205 (2013.01); H04W 12/033 (2021.01); H04W 12/106 (2021.01)]

18 Claims

1. A method comprising:

a user equipment (UE) transmitting, via a radio access network (RAN) node, a Protocol Data Unit (PDU) Session Establishment Request message toward a Session Management Function (SMF); and

after transmitting the PDU Session Establishment Request message, the UE receiving from the RAN node a Radio Resource Control (RRC) Connection Reconfiguration message comprising: i) a PDU session identifier (ID), ii) a PDU Session Establishment Accept message generated by the SMF, and iii) a user plane (UP) security policy for the PDU Session identified by the PDU session ID, wherein:

the UP security policy for the PDU session indicates:

i) whether UP confidentiality protection shall be activated or not for all data radio bearers (DRBs) belonging to the PDU session; and/or

ii) whether UP integrity protection shall be activated or not for all data radio bearers (DRBs) belonging to the PDU session.