Content for  TS 31.102  Word version:  17.1.0

5.2  USIM security related procedures  Word‑p. 238

5.2.1  Authentication algorithms computation

The ME selects a USIM application and uses the AUTHENTICATE command (see 7.1.1). The response is sent to the ME (in case of the T=0 protocol when requested by a subsequent GET RESPONSE command).

After a successful AUTHENTICATE command, the ME shall perform cipher and integrity key update procedure.

5.2.2  IMSI request

Requirement:

Service No. 130 is "not available".

Request:

The ME performs the reading procedure with EF IMSI.

5.2.3  Access control information request

The ME performs the reading procedure with EF ACC.

5.2.4  Higher Priority PLMN search period request

The ME performs the reading procedure with EF HPPLMN.

5.2.5  Location information

Request:

The ME performs the reading procedure with EF LOCI.

Update:

The ME performs the updating procedure with EF LOCI.

In the case when updating EF LOCI with data containing the TMSI value and the card reports the error '6581' (Memory Problem), the ME shall terminate 2G or 3G operation.

5.2.6  Cipher and Integrity key

Request:

The ME performs the reading procedure with EF Keys.

Update:

The ME performs the updating procedure with EF Keys.

5.2.7  Forbidden PLMN

Request:

The ME performs the reading procedure with EF FPLMN.

Update:

The ME performs the updating procedure with EF FPLMN.

5.2.8  Void

5.2.9  User Identity Request  Word‑p. 239

The ME selects a USIM and performs:

• If Service No. 130 is "not available", the reading procedure with EF IMSI.
• If Service No. 130 is "available", the reading procedure with EFNSI.

5.2.10  GSM Cipher key

Requirement:

Service No. 27 "available".

Request:

The ME performs the reading procedure with EF Kc.

Update:

The ME performs the updating procedure with EF Kc.

5.2.11  GPRS Cipher key

Requirement:

Service No. 27 "available".

Request:

The ME performs the reading procedure with EF KcGPRS.

Update:

The ME performs the updating procedure with EF KcGPRS.

5.2.12  Initialisation value for Hyperframe number

Request:

The ME performs the reading procedure with EF START-HFN.

Update:

The ME performs the updating procedure with EF START-HFN.

5.2.13  Maximum value of START

Request:

The ME performs the reading procedure with EF THRESHOLD.

5.2.14  HPLMN selector with Access Technology request

Request:

The ME performs the reading procedure with EF HPLMNwAcT.

5.2.15  Packet Switched Location information

Request:

The ME performs the reading procedure with EF PSLOCI.

Update:

The ME performs the updating procedure with EF PSLOCI.

5.2.16  Cipher and Integrity key for Packet Switched domain

Request:

The ME performs the reading procedure with EF KeysPS.

Update:

The ME performs the updating procedure with EF KeysPS.

5.2.17  LSA information

Requirement:

Service No. 23 "available".

Request:

The ME performs the reading procedure with EF SAI, EF SLL and its associated LSA Descriptor files.

Update:

The ME performs the updating procedure with EF SLL.

5.2.18  Voice Group Call Services  Word‑p. 240

Requirement:

Service No. 57 "available".

Voice Group Call Service

Request:

The ME performs the reading procedure with EF VGCS.

Voice Group Call Service Status

Request:

The ME performs the reading procedure with EF VGCSS.

Update:

The ME performs the updating procedure with EF VGCSS.

5.2.19  Voice Broadcast Services

Requirement:

Service No. 58 "available".

Voice Broadcast Service

Request:

The ME performs the reading procedure with EF VBS.

Voice Broadcast Service Status

Request:

The ME performs the reading procedure with EF VBSS.

Update:

The ME performs the updating procedure with EF VBSS.

5.2.20  Generic Bootstrapping architecture (Bootstrap) |R6|

The ME uses the AUTHENTICATE command in GBA security context (Bootstrapping Mode) (see 7.1.1). The response is sent to the ME.

After a successful GBA_U Procedure, the ME shall update the B-TID field and the Key Life Time field in EF GBABP

5.2.21  Generic Bootstrapping architecture (NAF Derivation) |R6|

The ME shall first read EF GBABP. The ME then uses the AUTHENTICATE command in GBA security context (NAF Derviation Mode) (see 7.1.1). The response is sent to the ME.

5.2.22  MSK MIKEY Message Reception |R6|

The ME performs the reading of EF MUK and retrieves the Time Stamp Counter Value associated with the involved MUK. Then it proceeds with Timestamp Payload checking as described in TS 33.246.

5.2.23  MTK MIKEY Message Reception |R6|

The ME performs the reading of EF MSK and retrieves the Time Stamp Counter Value associated with the involved MSK. Then it proceeds with Timestamp Payload checking as described in TS 33.246.

5.2.24  Void

5.2.25  EHPLMN request |R7|

Requirement:

Service No. 71 "available".

Request:

The ME performs the reading procedure with EF EHPLMN.

5.2.26  Last RPLMN Selection Indication request |R7|  Word‑p. 241

Requirement:

Service No. 74 "available".

Request:

The ME performs the reading procedure with EF LRPLMNSI.

5.2.27  EPS Location Information |R17|

Requirement:

Service No. 85 "available".

Request:

The ME performs the reading procedure with EFEPSLOCI.

Update:

The ME performs the updating procedure with EFEPSLOCI.

5.2.28  EPS NAS Security Context |R17|

Requirement:

Service No. 85 "available".

Request:

The ME performs the reading procedure with EFEPSNSC.

Update:

The ME performs the updating procedure with EFEPSNSC.

In order to prevent UICC memory wear out due to excessive writing, the update of EPS NAS security context shall be according to the rules and procedures specified in TS 33.401.

5.2.29  Non Access Stratum Configuration |R10|

Requirement:

Service No. 96 "available".

Request:

The ME performs the reading procedure with EF NASCONFIG.

For each NAS configuration parameter, a parameter provided in EF NASCONFIG shall take precedence over the corresponding parameter stored in the ME's non-volatile memory.

5.2.30  PWS Configuration |R11|

Requirement:

Service No. 97 "available".

Request:

The ME performs the reading procedure with EF PWS.

5.2.31  5GS Location Information |R17|

Requirement:

Service No. 122 "available".

Request:

The ME performs the reading procedure with EF 5GS3GPPLOCI or with EF 5GSN3GPPLOCI.

Update:

The ME performs the updating procedure with EF 5GS3GPPLOCI or with EF 5GSN3GPPLOCI.

5.2.32  5GS NAS Security Context |R17|

Requirement:

Service No. 122 "available".

Request:

The ME performs the reading procedure with EF 5GS3GPPNSC and EF 5GSN3GPPNSC.

Update:

The ME performs the updating procedure with EF 5GS3GPPNSC and EF 5GSN3GPPNSC.

In order to prevent UICC memory wear out due to excessive writing, the update of 5GS NAS security context shall be according to the rules and procedures specified in TS 33.501.

5.2.33  NSI request |R15|  Word‑p. 242

Requirement:

Service No. 130 is "available".

Request:

The ME performs the reading procedure with EF SUPI_NAI.

The ME shall ignore the content of this EF if the EF contains an IMSI, a Global Line Identifier or a Global Cable Identifier.

5.2.34  URSP request |R16|

Requirement:

Service No. 132 is "available".

Request:

The ME performs the reading procedure with EF URSP.

5.2.35  Trusted non-3GPP Serving network name list request |R16|

Requirement:

Service No. 135 is "available".

Request:

The ME performs the reading procedure with EF TN3GPPSNN.