Abstract
AKMA (Authentication and Key Management for Applications) is an authentication mechanism introduced in Third Generation Partnership Project (3GPP) Technical Specification (TS) 33.535, Release 16 (and further enhanced in later releases) that can be used to leverage an operator authentication infrastructure to secure communications between a user equipment (UE) and an Application Function (AF). Proposed herein are techniques to facilitate UE authentication for multi-tenant cloud environments. Broadly, techniques proposed herein provide for using a tenant identifier (ID) associated with the eSIM (electronic or embedded Subscriber Identity Module) of a UE in order to determine/obtain the correct policy that corresponds to a given enterprise identified by the tenant ID. The policy can be used to select appropriate keying material to derive AKMA keys and select an appropriate AF of a multi-tenanted cloud provider that is partnering with a 5G provider to facilitate connection to cloud services of the provider.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Recommended Citation
Mohan R, Ram and I V, Rajesh, "SELECTION OF 5G AKMA AUTHENTICATION POLICY AND APPLICATION FUNCTION BASED ON A TENANT IDENTIFIER OBTAINED FROM A USER EQUIPMENT ESIM", Technical Disclosure Commons, (July 04, 2024)
https://www.tdcommons.org/dpubs_series/7161