Notation | Description |
---|---|
MT | The mobile terminal |
SrcAuth | Is the access router in the source peripheral network |
DesAuth | Is the access router in the destination peripheral network |
AuthID | The authenticator unique ID has the format AuthID@domainname |
SrcDA3C | The DA3C server in the source domain |
DesDA3C | The DA3C server in the destination domain |
CA3C | Core-endpoint entity, which has QoS and security related responsibilities |
Srcse1(SrcDA3C) | Pre-shared secret key between the CA3C and the SrcDA3C |
Desse1(DesDA3C) | Pre-shared secret key between the CA3C and the DesDA3C |
Srcse2(SrcAuth) | Pre-shared secret key between the SrcDA3C and the authenticator (SrcAuth) |
Desse2(DesAuth) | Pre-shared secret key between the DesDA3C and the authenticator (DesAuth) |
uk(MT) | Unique secret key shared between the CA3C and the MT |
DSMS | Domain specific- master key DSMS= F1 (uk(MT), seq1, auth-domain name) |
SrcAK, DesAK | The authentication key in the source and destination domains |
SrcSK, DesSK | The secret key in the source and destination networks, respectively. These are used to encrypt the connections between the MT and the authenticators |
F1, F2, F3 | Irreversible key derivation functions |
InitAuth flag | A flag set only in the initial authentication. In case of handover, this flag will not be set |
HoAckm | Joining/handover acknowledgement message used by the DA3C server to inform the CA3C in the CEP about a successful authentication |
seq1, seq2 | Sequence numbers |
{m} K | Encrypting the message (m) using the key (K) |