8.1 Mapping of Parameters for the Authentication Info Retrieval Procedure

29.3053GPPInterWorking Function (IWF) between MAP based and Diameter based interfacesRelease 17TS

Tools: ARFCN - Frequency Conversion for 5G NR/LTE/UMTS/GSM

8.1.1 AIR mapping to SendAuthenticationInfoArg (v3)

When the IWF needs to construct a MAP-SendAuthenticationInfo message as a result of receiving an AIR command (see sections 7.1.1 step 2, and 7.1.2 step 2), the IWF shall open a MAP dialogue in application context version 3 and populate sub-parameters of SendAuthenticationInfoArg as described below:

imsi in SendAuthenticationInfoArg shall be populated with the value of the User-Name AVP received within AIR.

If AIR contains a Requested-EUTRAN-Authentication-Info AVP but does not contain a Requested-UTRAN-GERAN-Authentication-Info AVP:

numberOfRequestedVectors in SendAuthenticationInfoArg shall be populated with the value of the Number-Of-Requested-Vectors AVP received within the Requested-EUTRAN-Authentication-Info AVP received within AIR.

If AIR contains a Requested-UTRAN-GERAN-Authentication-Info AVP but does not contain a Requested-EUTRAN-Authentication-Info AVP:

numberOfRequestedVectors in SendAuthenticationInfoArg shall be populated with the value of the Number-Of-Requested-Vectors AVP received within the Requested-UTRAN-GERAN-Authentication-Info AVP received within AIR.

If AIR contains a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP, and the Immediate-Response-Preferred AVP is present within the Requested-EUTRAN-Authentication-Info AVP:

If AIR contains a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP, and the Immediate-Response-Preferred AVP is not present within the Requested-EUTRAN-Authentication-Info AVP:

segmentationProhibited shall be absent in SentAuthenticationInfoArg.

If AIR contains a Requested-EUTRAN-Authentication-Info AVP but does not contain a Requested-UTRAN-GERAN-Authentication-Info AVP:

immediateResponsePreferred in SendAuthenticationInfoArg shall be present if and only if the Immediate-Response-Preferred AVP is present within the Requested-EUTRAN-Authentication-Info AVP within AIR.

If AIR contains a Requested-UTRAN-GERAN-Authentication-Info AVP but does not contain a Requested-EUTRAN-Authentication-Info AVP:

immediateResponsePreferred in SendAuthenticationInfoArg shall be present if and only if the Immediate-Response-Preferred AVP is present within the Requested-UTRAN-GERAN-Authentication-Info AVP within AIR.

If AIR contains a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP:

re-synchronisationInfo in SendAuthenticationInfoArg shall be present if and only if a Re-synchronization-Info AVP is present wihin the Requested-EUTRAN-Authentication-Info AVP or within the Requested-UTRAN-GERAN-Authentication-Info AVP within AIR.

extensionContainer in SendAuthenticationInfoArg shall be absent.

requestingNodeType in SendAuthenticationInfoArg shall be present and shall be populated with the value
"mme" if a Requested-EUTRAN-Authentication-Info AVP and no Requested-UTRAN-GERAN-Authentication-Info AVP was present within AIR;
"sgsn" if a Requested-UTRAN-GERAN-Authenticatio-Info AVP and no Requested EUTRAN-Authentication-Info AVP was present within AIR;
. "mme-sgsn" if both a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP were present within AIR .

requestingPLMN-Id in SendAuthenticationInfoArg shall be present and shall be populated with the value received within the Visited-PLMN-ID AVP within AIR.

numberOfRequestedAdditional-Vectors in SendAuthenticationInfoArg shall be present if and only if both a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP are present within AIR. If present, the parameter shall be populated with the value received in the Number-Of-Requested-Vectors AVP within the Requested-EUTRAN-Authentication-Info (if the Immediate-Response-Preferred AVP is absent within Requested-EUTRAN-Authentication-Info AVP within AIR) or with the value received in the Number-Of-Requested-Vectors AVP within the Requested-UTRAN-GERAN-Authentication-Info AVP (otherwise).

additionalVectorsAreForEPS shall be present in SendAuthenticationInfoArg if and only if a Requested-EUTRAN-Authentication-Info AVP and a Requested-UTRAN-GERAN-Authentication-Info AVP are present within AIR and the Immediate-Response-Preferred AVP is absent in the Requested-EUTRAN-Authentication-Info AVP.

8.1.2 AIR mapping to SendAuthenticationInfoArg (v2)

When the IWF needs to construct a MAP-SendAuthenticationInfo message in MAP AC version 2 as a result of MAP version negotiation (see sections 7.1.1 step 3), the IWF shall open a MAP dialogue in application context version 2 and populate sub-parameters of SendAuthenticationInfoArg as described below:

imsi in SendAuthenticationInfoArg shall be populated with the value of the User-Name AVP received within AIR.

8.1.3 AIR mapping to SendParametersArg (v1)

When the IWF needs to construct a MAP-SendParameters message in MAP AC version 1 as a result of MAP version negotiation (see section 7.1.1 step 3), the IWF shall open a MAP dialogue in application context version 1 and populate sub-parameters of SendParametersArg as described below:

subscriberId in SendParametersArg shall take the imsi alternative; imsi shall be populated with the value of the User-Name AVP received within AIR.

requestedParameterList in SendParametersArg shall contain one RequestParameter which contains the value of "requestAuthenticationSet".

8.1.4 SendAuthenticationInfoRes / Error (v3) mapping to AIA

When the IWF needs to construct an AIA command as a result of receiving a SendAuthenticationInfo Ack/Error message in MAP version 3 (see sections 7.1.1 step 5, and 7.1.2 step 7), the IWF shall populate AVPs of AIA as described below:

Result-Code / Experimental-Result AVP shall be set to:

– DIAMETER_SUCCESS if a SendAuthenticationInfoRes parameter was received in a TCAP ResultLast component;

– DIAMETER_ERROR_USER_UNKNOWN if an error of unknownSubscriber without a diagnostic parameter or with a diagnostic parameter of imsiUnknown was received;

– DIAMETER_ERROR_UNKNOWN_SUBSCRIPTION if an error unknownSubscriber with a diagnostic parameter of gprs-eps-SubscriptionUnknown was received;

– an appropriate DIAMETER base protocol result code otherwise.

Auth-Session-State AVP shall be set to the value NO_STATE_MAINTAINED (1).

Supported-Features AVP shall be absent.

Authentication-Info AVP shall be present if authenticationSetList or eps-AuthenticationSetList is present in the received SendAuthenticationInfoRes. If present, the AVP shall contain EPS-Vector AVPs and/or either UTRAN-Vector AVPs or GERAN-Vector AVPs as mapped from received EPC-AVs and/or either AuthenticationQuintuplets or AuthenticationTriplets respectively.

8.1.5 SendAuthenticationInfoRes / Error (v2) mapping to AIA

When the IWF needs to construct an AIA command as a result of receiving a SendAuthenticationInfo Ack/Error message in MAP version 2 (see sections 7.1.1 step 5), the IWF shall populate AVPs of AIA as described below:

Result-Code / Experimental-Result AVP shall be set to:

– DIAMETER_SUCCESS if aSendAuthenticationInfoRes parameter was received in a TCAP ResultLast component;

– DIAMETER_ERROR_USER_UNKNOWN if an error of unknownSubscriber without a diagnostic parameter or with a diagnostic parameter of imsiUnknown was received;

– DIAMETER_ERROR_UNKNOWN_SUBSCRIPTION if an error unknownSubscriber with a diagnostic parameter of gprsSubscriptionUnknown was received;

– an appropriate DIAMETER base protocol result code otherwise.

Auth-Session-State AVP shall be set to the value NO_STATE_MAINTAINED (1).

Supported-Features AVP shall be absent.

Authentication-Info AVP shall be present if authenticationSetList is present in the received SendAuthenticationInfoRes. If present, the AVP shall contain GERAN-Vector AVPs as mapped from received AuthenticationTriplets.

8.1.6 SendParameterList / Error (v1) mapping to AIA

When the IWF needs to construct an AIA command as a result of receiving a SendParameters Ack/Error message in MAP version 1 (see sections 7.1.1 step 5), the IWF shall populate AVPs of AIA as described below:

Result-Code / Experimental-Result AVP shall be set to:

DIAMETER_SUCCESS if a SentParameterList parameter was received in a TCAP ResultLast component;

DIAMETER_ERROR_USER_UNKNOWN if an error of unknownSubscriber was received;

an appropriate DIAMETER base protocol result code otherwise.

Auth-Session-State AVP shall be set to the value NO_STATE_MAINTAINED (1).

Supported-Features AVP shall be absent.

Authentication-Info AVP shall be present if sentParameterList is present in the received TCAP ResultLast component. If present, the AVP shall contain GERAN-Vector AVPs as mapped from received AuthenticationTriplets.

8.1.7 SendAuthenticationInfoArg (v3) mapping to AIR

When the IWF needs to construct an AIR command as a result of receiving a SendAuthenticationInfo message in MAP version 3 (see sections 7.1.2 step 3), the IWF shall populate AVPs of AIR as described below:

Auth-Session-State AVP shall be set to the value NO_STATE_MAINTAINED (1).

User-Name AVP shall be populated with the value received within the imsi parameter of SendAuthenticationInfoArg.

Supported-Features AVP shall be absent.

Requested-EUTRAN-Authentication-Info AVP shall be present if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme" or "mme-sgsn".

Number-Of-Requested-Vectors AVP within Requested-EUTRAN-Authentication-Info AVP (if present) shall be populated with

a) the value received within the numberOfRequestedVectors parameter of SendAuthenticationInfoArg if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme";

b) the value received within the numberOfRequestedVectors parameter of SendAuthenticationInfoArg if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme-sgsn" and the additionalVectorsAreForEPS parameter is absent from SendAuthenticationInfoArg;

c) the value received within the numberOfRequestedAdditional-Vectors parameter of SendAuthenticationInfoArg if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme-sgsn" and the additionalVectorsAreForEPS parameter is present within SendAuthenticationInfoArg.

Immediate-Response-Preferred AVP within Requested-EUTRAN-Authentication-Info AVP (if present) shall be present if:

a) requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme" and immediateResponsePreferred parameter is present in SendAuthenticationInfoArg, or

b) requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme-sgsn" and additionalVectorsAreForEPS parameter is absent from SendAuthenticationInfoArg and immediateResponsePreferred is present within SendAuthenticationInfoArg.

Re-synchronization-Info AVP within Requested-EUTRAN-Authentication-Info AVP (if present) shall be populated with the value received in the re-synchronizationInfo parameter within SendAuthenticationInfoArg.

Requested-UTRAN-GERAN-Authentication-Info AVP shall be present if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "sgsn" or "mme-sgsn".

Number-Of-Requested-Vectors AVP within Requested-UTRAN-GERAN-Authentication-Info AVP (if present) shall be populated with:

a) the value received within the numberOfRequestedVectors parameter of SendAuthenticationInfoArg if requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "sgsn";

Immediate-Response-Preferred AVP within Requested-UTRAN-GERAN-Authentication-Info AVP (if present) shall be present if

a) requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "sgsn" and immediateResponsePreferred parameter is present in SendAuthenticationInfoArg, or

b) requestingNodeType parameter within SendAuthenticationInfoArg takes the value of "mme-sgsn" and additionalVectorsAreForEPS parameter is present from SendAuthenticationInfoArg and immediateResponsePreferred is present within SendAuthenticationInfoArg.

Visited-PLMN-Id AVP shall be populated with the value of the requestingPLMN-Id parameter received within SendAuthenticationInfoArg.

RequestingNodeType AVP shall be populated with the value of the requestingNodeType parameter received within SendAuthenticationInfoArg.

8.1.8 AIA mapping to SendAuthenticationInfoRes/Error (v3)

When the IWF needs to construct a MAP SendAuthenticationInfo Ack message (v3) as a result of receiving an AIA command (see sections 7.1.2 steps 5 and 6), the IWF shall construct partial result messages (if segmentation is required) and a final result message or an error message (if the Result-Code AVP within AIA takes a value different from "success"). Sub-parameters of SendAuthenticationInfoRes shall be populated as described below:

authenticationSetList within SendAuthenticationInfoRes shall be present if UTRAN-Vector AVP or GERAN-Vector AVP is present in Authentication-Info AVP within AIA. If so the parameter shall be populated with the value received within the UTRAN-Vector AVP or GERAN-Vector AVP (whichever is present).

eps-AuthenticationSetList within SendAuthenticationInfoRes shall be present if EPS-Vector AVP is present in Authentication-Info AVP within AIA. If so the parameter shall be populated with the values received within the EPS-Vector AVP.

An error of unknownSubscriber with unknownSubscriberParam containing a unknownSubscriberDiagnostic of "imsiUnknown" shall be sent if the received AIA command contains an Experimental-Result AVP with a value of "User Unknown".

An error of unknownSubscriber with unknownSubscriberParam containing a unknownSubscriberDiagnostic of "gprs-epsSubscriptionUnknown" shall be sent if the received AIA command contains an Experimental-Result AVP with a value of "Unknown EPS Subscription".

Other values within the Result-Code / Experimental-Result AVP shall be mapped onto an appropriate MAP error.