EPS/LTE User-Network Security Procedures Training

Who Should Attend
The course is intended for developers of EPS/LTE security functions and anyone who needs system-wide technical knowledge on EPS/LTE security procedures related to user – network security.

Course Content

  1. Introduction - EPS/LTE network structure, identity numbers, EPS mobility management procedures, EPS session management procedures.
  2. User identity confidentiality - GUTI reallocation procedure, distribution of IMSI and authentication data between MMEs and SGSNs, identification by a permanent identity, user device confidentiality.
  3. Entity authentication - Authentication and Key Agreement, generation of authentication vectors in HE/AuC, user authentication function in the USIM, sequence numbers of authentication vectors and re-synchronisation procedure, reporting authentication failures.
  4. Ciphering & integrity protection - user and signalling data confidentiality, signalling data integrity, AS security context establishment, NAS security context establishment, EPS key hierarchy, E-UTRAN key setting during AKA, EPS key identification, key handling in handover, intra-eNB handover, X2-handover, S1-handover.
  5. Key-change-on-the-fly - key refresh and re-keying.
  6. Periodic local authentication.
  7. E-UTRAN – UTRAN interworking (idle mode mobility, handover).
  8. E-UTRAN – GERAN interworking (idle mode mobility, handover).
  9. SVCC.

Course Objectives
This training concentrates on the EPS/LTE user-network security procedures, EPS security key sets generation, key handling and security interworking between EPS, UMTS, GSM/GPRS and IMS.
The course does not cover cryptological analysis of the EPS security algorithms, fraud detection methods, possible attack scenarios nor security of the EPS internal network interfaces.

Pre-requisites
The participants should have attended the EPS/LTE Technology course or should have the general technical knowledge concerning any public digital mobile telecommunication system e.g. GSM/GPRS, UMTS, EPS, D-AMPS, cdmaOne, cdma2000, WiMax.

Training Structure
1-day training.

Methodology
Instructor led training.