The flow description is the same as in annex XXX of this specification.

The UE sends a Location Update Request message to the MSC-Server in the VPLMN and includes its IMSI and the LAI. In case of a combined attach, or CSFB etc., then the Location Update Request may be sent from the MME or the SGSN of the VPLMN.

The MSC detects based on the IMSI that the UE does not belong to the own network and is an inbound roamer. If the request is coming from the MME/SGSN, then the CS authentication may be skipped. The MSC contacts the ICS IWF, acting as a HLR of the HPLMN, indicating that CS authentication is required with a Authentication Parameter Request.

The ICS IWF retrieves the CS authentication data from the HSS.

The ICS IWF (acting as HLR to the MSC-Server) provides the Authentication Info parameters to the MSC-Server. The MSC-Server stores the parameters and triggers the CS authentication procedure.

The MSC-Server sends a Authentication Request with the RAND value to the UE.

The UE computes the SRES and provides it back to the MSC-Server in the Authentication Response.

The MSC-Server sends an Update Location Request with the IMSI and MSRN to the ICS-IWF, acting as the HLR of the HPLMN.

The ICS IWF retrieves the subscription profile and service settings from the HSS and maps them into a CS profile with CS settings.

The ICS IWF replies with the Insert Subscriber Data message according to normal VLR-HLR procedures.

The MSC Server starts ciphering according to normal procedures.

The MSC-Server provides a Location Update Accept message to the UE (or MME,SGSN if originated request comes from here) according to the normal procedures.

The MSC-Server exchanges the Subscriber Data Insert Acknowledgement and Location Update Acknowledgement according to normal VLR-HLR procedures.