| CPC H04L 9/3271 (2013.01) [H04L 9/0869 (2013.01); H04L 9/3213 (2013.01); H04L 9/3242 (2013.01); H04W 12/037 (2021.01)] | 20 Claims |
|
1. A device, comprising:
user equipment configured to communicate with a home network through which a subscriber has a subscription for cellular service, the user equipment comprising:
a subscriber identity module provisioned with a home network public key for the home network;
at least one processor; and
at least one memory storing instructions that, when executed by the at least one processor, cause the user equipment at least to:
when no security context exists between the user equipment and the home network, initiate a user equipment challenge procedure to the home network before engaging in a primary authentication procedure by:
generating a user equipment challenge by encrypting a random nonce with the home network public key; and
transmitting an initial non-access stratum message containing the user equipment challenge toward the home network;
receive a second message containing a challenge response from the home network to the user equipment challenge;
process the challenge response to determine whether the home network decrypted the random nonce in response to the user equipment challenge;
verify an identity of the home network when the home network decrypted the random nonce in response to the user equipment challenge; and
engage in the primary authentication procedure according to 3rd generation partnership project specifications when the identity of the home network is verified.
|