Follow our Telegram channel to get notified instantly whenever new books are published.
5G Networks N Cybersecurity – Anand R Prasad

3. The SMF triggers EAP authentication to obtain authorization from an external DN-AAA server. 4. The SMF requests the EAP identity from the UE, and the UE responds with EAP identity (note: the EAP identity may also be sent in step 1 to avoid interactions in this step). 5. The SMF forwards the EAP response/identity message to the DN- AAA server via the UPF. 6. The DN-AAA server and the UE exchange EAP messages, as required by the EAP method.
7. Once the authentication is successfully completed, the DN -AAA server sends an EAP success message to the SMF via the UPF. 8. The SMF completes the EAP authentication procedure and saves the authentication results of the specific UE and the DN. 9. If the EAP authentication procedure is successful, PDU session establishment proceeds further. The DN-AAA server or the SMF may initiate the re-authentication with the UE.
If the re-authentication is initiated by the DN-AAA server, the UE is addressed by the generic public subscription identifier (GPSI), which is notified to the DN-AAA server at step 3. 2.3.3 Comparison of primary and secondary authentication The purposes and characteristics of the primary and secondary authentication can be summarized as follows: 1. Primary authentication provides the access control to the operator network, while secondary authentication enables the UE to access the user plane data towards the DN. 2. Primary authentication is a mandatory procedure when the UE connects to the operator network.
On the other hand, secondary authentication is optional to use depending on the agreement between operators and the external service provider. 3. Primary authentication uses 3GPP credentials while secondary uses external credentials provided by third-party application service providers. 2.4 Slice Authentication 2.4.1 Purpose of slice authentication 3GPP defines a network slice as a logical network resource that provides specific network capabilities and characteristics. The slice authentication, as specified in TS 33.501 clause 6.2 [3], enables the third-party application service provider hosted with an AAA server to authenticate the end-user to access its slice.
A third-party application service provider offers a communication service to endusers using the service built with a network slice over the operator network, e.g. a taxi company using a network slice optimized to dispatch and manage their vehicles by tracing vehicle location and providing an uncongested route for the vehicle. Slice authentication enables customized authentication of UEs for slice selection and access to it. In addition to primary authentication, slice authentication is executed at the time of the registration when access control to network slices requires slice specific additional authorization and authentication.
Distributed exclusively by Routledge 605 Third Avenue, New York, NY 10017, USA 4 Park Square, Milton Park, Abingdon, Oxon OX14 4RN 5G Networks & Cybersecurity / Anand R. Prasad. ©2026 River Publishers. All rights reserved. No part of this publication may be reproduced, stored in a retrieval systems, or transmitted in any form or by any means, mechanical, photocopying, recording or otherwise, without prior written permission of the publishers.
Routledge is an imprint of the Taylor & Francis Group, an informa business ISBN 978-87-438-1088-9 (paperback) ISBN 978-87-438-1091-9 (online) ISBN 978-8-743-81090-2 (ebook master) ISBN 978-87-438-1093-3 (ePub) DOI: 10.1201/9788743810902 While every effort is made to provide dependable information, the publisher, authors, and editors cannot be held responsible for any errors or omissions. 1kitap1.com/en 5G Networks & Cybersecurity Editor Anand R.
Prasad Deloitte Tohmatsu Cyber (DTCY), Japan 1kitap1.com/en Contents Preface Aims and Objectives List of Authors List of Notations and Abbreviations About the Editors 1. 5G Introduction Anand R. Prasad and Sivabalan Arumugam 1.1 Factors Leading to 5G 1.2 5G System Architecture 1.2.1 Ng Ran 1.2.2 5G core–service based architecture 1.3 Security Features 1.4 5G Security Requirements 1.4.1 Core security requirements 1.4.2 Service-based architecture (SBA) 1.4.3 Visualized deployment 1.4.4 Supply chain security 1.4.5 Fraud management 1.4.6 Nesas 1.5 5G Security Implications 1.5.1 People 1.5.2 Processes 1.5.3 Technology Bibliography 2.
5G Authentication Mechanisms Takahito Yoshizawa, Sheeba Backia, Mary Baskaran, and Xiaoting Huang 2.1 Introduction 2.1.1 Overview of authentication and security of the 5G system 2.2 Primary Authentication 2.2.1 Purpose of primary authentication 2.2.2 Primary authentication procedure 2.3 Secondary Authentication 2.3.1 Principle of secondary authentication 2.3.2 Secondary authentication procedure 2.3.3 Comparison of primary and secondary authentication 2.4 Slice Authentication 2.4.1 Purpose of slice authentication 2.4.2 Slice authentication procedure 2.5 Akma 2.5.1 Purpose of AKMA 2.5.2 AKMA procedure 2.6 Home-network-triggered Authentication 2.7 Support of Non-3GPP Access 2.7.1 Introduction 2.7.2 Untrusted non-3GPP access 2.7.3 Trusted non-3GPP access 2.7.4 Non-NAS-capable device over WLAN access 2.8 Wireless and Wireline Access 2.8.1 Residential GW (5G-RG, FN-RG) 2.8.2 No-5G credential device (AUN3) 2.9 Non-public Network (NPN) Authentication 2.9.1 Public network integrated NPN (PNI-NPN) 2.9.2 Standalone NPN (SNPN) 2.9.3 Non-seamless WLAN offload (NSWO) 2.10 UAV USS Authentication and Authorization (UUAA) 2.11 Summary and Conclusion 2.11.1 Outlook Acknowledgements References 3.
Nuances of 5G Security: Why not all 5G Deployments are Created Equal Hans C.
This is a short excerpt from the opening of “” by Unknown, quoted for review and introduction purposes. All rights belong to the copyright holders.
Book Information
- Unique ID: 0327a96903eecc0e
- File Extension: .pdf
- File Size: 9,662,563 bytes (9.215 MB)
- Title: –
- Author: Unknown
- ISBN: 9788743810889, 9788743810919, 9788743810902, 9788743810933
- Pages: 114
- Language: English (en)
Reading & Word Statistics
- Estimated Reading Time: 101.11 minutes
- Total Words: 20,222
- Total Characters: 130,514
- Average Words per Page: 177.39
- Average Characters per Page: 1144.86
Most Frequent Words
authentication (336), network (333), security (223), gpp (151), access (139), message (108), key (91), procedure (90), primary (87), between (86), home (81), amf (81), non (69), mobile (66), nas (65), based (60), eap (60), system (58), operator (57), architecture (56), also (56), sends (56), wlan (54), ausf (54), serving (52), figure (49), request (47), used (46), slice (44), service (42), trusted (41), server (41), function (41), messages (41), device (40), data (40), registration (40), uuaa (39), supi (39), g-rg (38), akma (37), user (37), udm (37), use (37), new (36), controls (36), identity (36), support (35), services (35), eap-aka (34), subscription (34), plane (34), uav (33), session (32), using (32), successful (32), aun (31), control (31), operators (31), nswo (30), identifier (30), section (30), via (30), keys (30), case (30), networks (29), uss (29), response (29), management (28), specific (28), secondary (27), interface (27), protection (27), one (27), connection (27), devices (26), application (26), aaa (26), smf (26), suci (26), method (25), kausf (25), core (24), authorization (24), communication (24), protocol (24), npn (23), roaming (23), required (23), information (22), fn-rg (22), optional (22), provides (22), external (22), uas (22), w-agf (22), uses (22), subscriber (22), systems (21), features (20).
