E.3 GBA authentication context statement schema

29.1093GPPGeneric Authentication Architecture (GAA)Release 17Stage 3TSZh and Zn Interfaces based on the Diameter protocol

Tools: ARFCN - Frequency Conversion for 5G NR/LTE/UMTS/GSM

This section lists the complete GBA Authentication Context XML schema. It is based on Liberty Authentication Context XML Schema to which the addition is the additional description of how GBA procedures have been conducted, i.e., GBAMechanism element.

<?xml version="1.0" encoding="UTF-8"?>

<xs:schema targetNamespace="urn:3gpp:gba:ac:2006-10"

xmlns:xs="http://www.w3.org/2001/XMLSchema"

xmlns:ac="urn:liberty:ac:2004-12"

xmlns="urn:3gpp:gba:ac:2006-10">

<!– imports Liberty Authentication Context definitions –>

<xs: import namespace="urn:liberty:ac:2004-12"

schemaLocation="liberty-authentication-context-v2.0.xsd"/>

<xs:annotation>

<xs:documentation>

This authentication context has been defined for the

3GPP and 3GPP2 Generic Bootstrapping Architecture. It

defines new GBAMechanismType and its values, but reuses

the Liberty authentication context schema for other

values. The GBA authentication context is based on the

MobileOneFactor* and MobileTwoFactor* authentication

contexts with the exception that only shared secret

based authentication methods (i.e., symmetric) are used,

and private key (i.e., asymmetric) methods are not

used when authenticating the UE due to the nature of GBA.

</xs:documentation>

</xs:annotation>

<!– new type definitions for different GBA procedures –>

<xs:element name="LegacyGBA">

<xs:annotation>

<xs:documentation>

Legacy GBA where existing old authentication

frameworks are used for bootstrapping such

2G GBA in 3GPP, and CDMA 1x and CDMA 1xEvDo

in 3GPP2.

</xs:documentation>

</xs:annotation>

</xs:element>

<xs:element name="GBAMobileMobile">

<xs:annotation>

<xs:documentation>

GBA using AKA as specified in 3GPP and 3GPP2.

The shared secret is derived in the mobile and

used in the mobile.

</xs:documentation>

</xs:annotation>

</xs:element>

<xs:element name="GBAUICCMobile">

<xs:annotation>

<xs:documentation>

GBA_U using AKA as specified in 3GPP and 3GPP2.

The shared secret is derived in the UICC and used

in the mobile.

</xs:documentation>

</xs:annotation>

</xs:element>

<xs:element name="GBAUICCUICC">

<xs:annotation>

<xs:documentation>

GBA_U using AKA as specified in 3GPP and 3GPP2.

The shared secret is derived in the UICC and used

in the UICC.

</xs:documentation>

</xs:annotation>

</xs:element>

<xs:element name="GBAMechanism" type="GBAMechanismType">

<xs:annotation>

<xs:documentation>

GBA mechanism used in the bootstrapping procedure.

</xs:documentation>

</xs:annotation>

</xs:element>

<xs:complexType name="GBAMechanismType">

<xs:choice>

<xs:element ref="LegacyGBA"/>

<xs:element ref="GBAMobileMobile"/>

<xs:element ref="GBAUICCMobile"/>

<xs:element ref="GBAUICCUICC"/>

</xs:choice>

</xs:complexType>

</xs:schema>