LTE NAS: Security Mode Reject

Ø     The UE shall first perform the integrity check of the SECURITY MODE COMMAND message and also check that the received ‘replayed UE security capabilities’ and the received nonceUE have not been altered as compared to what the UE provided in the initial L3 message
Ø       If the SECURITY MODE COMMAND cannot be accepted by the UE, then it shall send a SECURITY MODE REJECT message
Ø      The IE EMM Cause in the SECURITY MODE REJECT message typically indicates either cause #23 (UE security capabilities mismatch) or #24 (security mode rejected, unspecified)
Ø      After MME receives SECURITY MODE REJECT message, both the UE and the MME shall apply the EPS security context in use before the initiation of this security mode control procedure, if any, to protect the SECURITY MODE REJECT message and any other subsequent messages according to the rules in 3GPP TS 24.301 subclauses 4.4.4 and 4.4.5 
Reference: 3GPP TS 24.301
Example: SECURITY MODE REJECT


3 comments:

  1. Hi,
    Thank you so much for your work, very useful.
    A bout this topic I have a question, what can be the cause related with the #24 error?
    in this procedure is involved the HSS?

    ReplyDelete
  2. THanks, for this
    but can you tell if ue is replying Security Mode Reject
    with cause #24, what may be reasion ?

    ReplyDelete
  3. Probably the same reason as for Cause #23. I guess, development has not implemented EMM case values carefully enough.

    ReplyDelete