Content for TS 24.501 Word version: 19.0.0
1…
3…
4…
4.4…
4.4.3…
4.5…
4.5.3…
4.6…
4.7…
4.9…
4.15…
5…
5.2…
5.3…
5.3.2…
5.3.7…
5.3.19…
5.4…
5.4.1.3…
5.4.2…
5.4.4…
5.4.5…
5.4.6…
5.5…
5.5.1.2.4
5.5.1.2.5…
5.5.1.3…
5.5.1.3.4
5.5.1.3.5…
5.5.2…
5.6…
5.6.2…
6…
6.1.4…
6.2…
6.3…
6.3.2…
6.3.3…
6.4…
6.4.1.4…
6.4.2…
6.5…
7…
8…
8.2.9…
8.3…
9…
9.11.2…
9.11.2.10…
9.11.3…
9.11.3.4…
9.11.3.8…
9.11.3.14…
9.11.3.18C…
9.11.3.29…
9.11.3.33…
9.11.3.39…
9.11.3.45…
9.11.3.50…
9.11.3.53A…
9.11.3.68…
9.11.3.75…
9.11.4…
9.11.4.10…
9.11.4.13…
9.11.4.16…
9.11.4.30…
9.12
10…
A…
B…
C…
D…
D.6…
D.6.3…
D.6.8
D.7…
8.2.9 Registration reject
8.2.10 UL NAS transport
8.2.11 DL NAS transport
8.2.12 De-registration request (UE originating de-registration)
8.2.13 De-registration accept (UE originating de-registration)
8.2.14 De-registration request (UE terminated de-registration)
8.2.15 De-registration accept (UE terminated de-registration)
8.2.16 Service request
8.2.17 Service accept
8.2.18 Service reject
8.2.19 Configuration update command
8.2.20 Configuration update complete
8.2.21 Identity request
8.2.22 Identity response
8.2.23 Notification
8.2.24 Notification response
8.2.25 Security mode command
8.2.26 Security mode complete
8.2.27 Security mode reject
8.2.28 Security protected 5GS NAS message
8.2.29 5GMM status
8.2.30 Control Plane Service request
8.2.31 Network slice-specific authentication command
8.2.32 Network slice-specific authentication complete
8.2.33 Network slice-specific authentication result
8.2.34 Relay key request
8.2.35 Relay key accept
8.2.36 Relay key reject
8.2.37 Relay authentication request
8.2.38 Relay authentication response
...
...
8.2.9 Registration reject p. 783
8.2.9.1 Message definition p. 783
The REGISTRATION REJECT message is sent by the AMF to the UE. See Table 8.2.9.1.1.
Message type:
REGISTRATION REJECT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Registration reject message identity | Message type
9.7 | M | V | 1 | |
| 5GMM cause | 5GMM cause
9.11.3.2 | M | V | 1 | |
| 5F | T3346 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 16 | T3502 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
| 69 | Rejected NSSAI | Rejected NSSAI
9.11.3.46 | O | TLV | 4-42 |
| 75 | CAG information list | CAG information list
9.11.3.18A | O | TLV-E | 3-n |
| 68 | Extended rejected NSSAI | Extended rejected NSSAI
9.11.3.75 | O | TLV | 5-90 |
| 2C | Disaster return wait range | Registration wait range
9.11.3.84 | O | TLV | 4 |
| 71 | Extended CAG information list | Extended CAG information list
9.11.3.86 | O | TLV-E | 3-n |
| 3A | Lower bound timer value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 1D | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 1E | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 3E | N3IWF identifier | N3IWF identifier
9.11.3.93 | O | TLV | 7-n |
| 4D | TNAN information | TNAN information
9.11.3.94 | O | TLV | 3-n |
| 62 | Extended 5GMM cause | Extended 5GMM cause
9.11.3.109 | O | TLV | 3 |
8.2.9.2 T3346 value p. 784
The AMF may include this IE when the general NAS level mobility management congestion control is active
8.2.9.3 T3502 value p. 784
This IE may be included to indicate a value for timer T3502 during the initial registration.
8.2.9.4 EAP message p. 784
EAP message IE is included if the REGISTRATION REJECT message is used to convey EAP-failure message.
8.2.9.5 Rejected NSSAI |R16| p. 785
The network may include this IE to inform the UE of one or more S-NSSAIs that were included in the requested NSSAI in the REGISTRATION REQUEST message but were rejected by the network.
8.2.9.6 CAG information list |R16| p. 785
This IE may be included to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.9.7 Extended rejected NSSAI |R17| p. 785
If the UE supports Extended rejected NSSAI, the network may include this IE to inform the UE of one or more S-NSSAIs that were included in the requested NSSAI in the REGISTRATION REQUEST message but were rejected by the network.
8.2.9.8 Disaster return wait range |R17| p. 785
This IE may be included to assign a new disaster return wait range to the UE.
8.2.9.9 Extended CAG information list |R17| p. 785
If the UE supports Extended CAG information list, the network may include this IE to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.9.10 Lower bound timer value |R17| p. 785
The AMF may include this IE when the 5GMM cause is set to #78 "PLMN not allowed to operate at the present UE location", to provide a minimum time value for an entry added to the list of "PLMNs not allowed to operate at the present UE location".
8.2.9.11 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" |R17| p. 785
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for roaming". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.9.12 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" |R17| p. 785
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for regional provision of service". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.9.13 N3IWF identifier |R18| p. 785
The network may include this IE if the UE supports slice-based N3IWF selection over non-3GPP access network.
8.2.9.14 TNAN information |R18| p. 785
The network may include this IE if the UE supports slice-based TNGF selection over trusted non-3GPP access network.
8.2.9.15 Extended 5GMM cause |R18| p. 785
This IE may be included by the network to indicate additional information associated with the 5GMM cause value #15 "no suitable cells in tracking area".
8.2.10 UL NAS transport p. 786
8.2.10.1 Message definition p. 786
The UL NAS TRANSPORT message transports message payload and associated information to the AMF. See Table 8.2.10.1.1.
Message type:
UL NAS TRANSPORT
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| UL NAS TRANSPORT message identity | Message type
9.7 | M | V | 1 | |
| Payload container type | Payload container type
9.11.3.40 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Payload container | Payload container
9.11.3.39 | M | LV-E | 3-65537 | |
| 12 | PDU session ID | PDU session identity 2
9.11.3.41 | C | TV | 2 |
| 59 | Old PDU session ID | PDU session identity 2
9.11.3.41 | O | TV | 2 |
| 8- | Request type | Request type
9.11.3.47 | O | TV | 1 |
| 22 | S-NSSAI | S-NSSAI
9.11.2.8 | O | TLV | 3-10 |
| 25 | DNN | DNN
9.11.2.1B | O | TLV | 3-102 |
| 24 | Additional information | Additional information
9.11.2.1 | O | TLV | 3-n |
| A- | MA PDU session information | MA PDU session information
9.11.3.31A | O | TV | 1 |
| F- | Release assistance indication | Release assistance indication
9.11.3.46A | O | TV | 1 |
| 4E | Non-3GPP access path switching indication | Non-3GPP access path switching indication
9.11.3.99 | O | TLV | 3 |
| 5A | Alternative S-NSSAI | S-NSSAI
9.11.2.8 | O | TLV | 3-10 |
| 9- | Payload container information | Payload container information
9.11.3.106 | O | TV | 1 |
8.2.10.2 PDU session ID p. 786
The UE shall include this IE when the Payload container type IE is set to "N1 SM information" or "CIoT user data".
8.2.10.3 Old PDU session ID p. 787
The UE shall include this IE if the UL NAS TRANSPORT message transports a PDU SESSION ESTABLISHMENT REQUEST message upon receiving the PDU SESSION MODIFICATION COMMAND message with the 5GSM cause IE set to #39 "reactivation requested" and the Payload container type IE is set to "N1 SM information".
8.2.10.4 Request type p. 787
The UE shall include this IE when the PDU session ID IE is included and the Payload container IE contains the PDU SESSION ESTABLISHMENT REQUEST message or the PDU SESSION MODIFICATION REQUEST which is not initiated to indicate a change of 3GPP PS data off UE status associated to a PDU session.
8.2.10.5 S-NSSAI p. 787
The UE may include this IE when the Request type IE is set to "initial request", "existing PDU session" or "MA PDU request", the Payload container type IE is set to "N1 SM information" and the UE is not registered for onboarding services in SNPN.
8.2.10.6 DNN p. 787
The UE may include this IE when the Request type IE is set to "initial request", "existing PDU session" or "MA PDU request", the Payload container type IE is set to "N1 SM information" and the UE is not registered for onboarding services in SNPN.
8.2.10.7 Additional information p. 787
This IE is included when the Payload container type IE is set to "LTE Positioning Protocol (LPP) message container", "UPP-CMI container", "SLPP message container", or "Location services (LCS) message container".
8.2.10.8 MA PDU session information |R16| p. 787
The UE may include this IE if the Request type IE is included and is not set to "initial emergency request" or "existing emergency PDU session" in the UL NAS TRANSPORT message.
8.2.10.9 Release assistance indication |R16| p. 787
The UE may include this IE to inform the network whether:
- no further uplink and no further downlink data transmission is expected; or
- only a single downlink data transmission (e.g. acknowledgement or response to uplink data) and no further uplink data transmission subsequent to the uplink data transmission is expected.
8.2.10.10 Non-3GPP access path switching indication |R18| p. 787
The UE may include this IE when the Payload container type IE is set to "N1 SM information" to indicate whether the UE supports the non-3GPP access path switching for the PDU session.
8.2.10.11 Alternative S-NSSAI |R18| p. 787
The UE shall include this IE if the UE can provide alternative S-NSSAI associated with the S-NSSAI to be replaced to the network.
8.2.10.12 Payload container information |R18| p. 787
The UE may include this IE when the Payload container type IE is set to "Location services (LCS) message container".
8.2.11 DL NAS transport p. 788
8.2.11.1 Message definition p. 788
The DL NAS TRANSPORT message transports message payload and associated information to the UE. See Table 8.2.11.1.1.
Message type:
DL NAS TRANSPORT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| DL NAS TRANSPORT message identity | Message type
9.7 | M | V | 1 | |
| Payload container type | Payload container type
9.11.3.40 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Payload container | Payload container
9.11.3.39 | M | LV-E | 3-65537 | |
| 12 | PDU session ID | PDU session identity 2
9.11.3.41 | C | TV | 2 |
| 24 | Additional information | Additional information
9.11.2.1 | O | TLV | 3-n |
| 58 | 5GMM cause | 5GMM cause
9.11.3.2 | O | TV | 2 |
| 37 | Back-off timer value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 3A | Lower bound timer value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
8.2.11.2 PDU session ID p. 788
The AMF shall include this IE when the Payload container type IE is set to "N1 SM information" or "CIoT user data container".
8.2.11.3 Additional information p. 788
This IE is included when the Payload container type IE is set to "LTE Positioning Protocol (LPP) message container", "UPP-CMI container", "SLPP message container", or "Location services (LCS) message container".
8.2.11.4 5GMM cause p. 788
The AMF shall include this IE when the Payload container IE contains an uplink payload which was not forwarded and the Payload container type IE is not set to "Multiple payloads".
8.2.11.5 Back-off timer value p. 788
The AMF may include this IE to indicate the back-off timer value when the Payload container IE is included and the Payload container type IE is not set to "Multiple payloads".
8.2.11.6 Lower bound timer value |R17| p. 789
The AMF may include this IE when the 5GMM cause is set to #78 "PLMN not allowed to operate at the present UE location", to provide a minimum time value for an entry added to the list of "PLMNs not allowed to operate at the present UE location".
8.2.12 De-registration request (UE originating de-registration) p. 789
8.2.12.1 Message definition p. 789
The DEREGISTRATION REQUEST message is sent by the UE to the AMF. See Table 8.2.12.1.1.
Message type:
DEREGISTRATION REQUEST
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| De-registration request message identity | Message type
9.7 | M | V | 1 | |
| De-registration type | De-registration type
9.11.3.20 | M | V | 1/2 | |
| ngKSI | NAS key set identifier
9.11.3.32 | M | V | 1/2 | |
| 5GS mobile identity | 5GS mobile identity
9.11.3.4 | M | LV-E | 6-n | |
| 3C | Unavailability information | Unavailability information
9.11.2.20 | O | TLV | 3-9 |
| 71 | NAS message container | NAS message container
9.11.3.33 | O | TLV-E | 4-n |
8.2.12.2 Unavailability information |R18| p. 789
The UE may include this IE when an event is triggered in the UE that would make the UE unavailable for a certain period and the use of unavailability period is not due to NR satellite access discontinuous coverage.
8.2.12.3 NAS message container |R18| p. 789
This IE shall be included if the UE is sending a DEREGISTRATION REQUEST message as an initial NAS message and the UE needs to send non-cleartext IEs.
8.2.13 De-registration accept (UE originating de-registration) p. 789
8.2.13.1 Message definition p. 789
The DEREGISTRATION ACCEPT message is sent by the AMF to the UE. See Table 8.2.13.1.1.
Message type:
DEREGISTRATION ACCEPT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| De-registration accept message identity | Message type
9.7 | M | V | 1 |
8.2.14 De-registration request (UE terminated de-registration) p. 790
8.2.14.1 Message definition p. 790
The DEREGISTRATION REQUEST message is sent by the AMF to the UE. See Table 8.2.14.1.1.
Message type:
DEREGISTRATION REQUEST
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| De-registration request message identity | Message type
9.7 | M | V | 1 | |
| De-registration type | De-registration type
9.11.3.20 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| 58 | 5GMM cause | 5GMM cause
9.11.3.2 | O | TV | 2 |
| 5F | T3346 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 6D | Rejected NSSAI | Rejected NSSAI
9.11.3.46 | O | TLV | 4-42 |
| 75 | CAG information list | CAG information list
9.11.3.18A | O | TLV-E | 3-n |
| 68 | Extended rejected NSSAI | Extended rejected NSSAI
9.11.3.75 | O | TLV | 5-90 |
| 2C | Disaster return wait range | Registration wait range
9.11.3.84 | O | TLV | 4 |
| 71 | Extended CAG information list | Extended CAG information list
9.11.3.86 | O | TLV-E | 3-n |
| 3A | Lower bound timer value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 1D | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 1E | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
8.2.14.2 5GMM cause p. 791
This information element is included if a 5GMM cause is provided.
8.2.14.3 T3346 value p. 791
The AMF may include this IE when the general NAS level mobility management congestion control is active.
8.2.14.4 Rejected NSSAI |R16| p. 791
The AMF may include this IE to inform the UE of one or more S-NSSAIs that were rejected by the network.
8.2.14.5 CAG information list |R16| p. 791
This IE may be included to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.14.6 Extended rejected NSSAI |R17| p. 792
If the UE supports Extended rejected NSSAI, the AMF may include this IE to inform the UE of one or more S-NSSAIs that were rejected by the network.
8.2.14.7 Disaster return wait range |R17| p. 792
This IE may be included to assign a new disaster return wait range to the UE.
8.2.14.7A Extended CAG information list |R17| p. 792
If the UE supports Extended CAG information list, the network may include this IE to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.14.8 Lower bound timer value |R17| p. 792
The AMF may include this IE when the 5GMM cause is set to #78 "PLMN not allowed to operate at the present UE location", to provide a minimum time value for an entry added to the list of "PLMNs not allowed to operate at the present UE location".
8.2.14.9 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" |R17| p. 792
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for roaming". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.14.10 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" |R17| p. 792
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for regional provision of service". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.15 De-registration accept (UE terminated de-registration) p. 792
8.2.15.1 Message definition p. 792
The DEREGISTRATION ACCEPT message is sent by the UE to the AMF. See Table 8.2.15.1.1.
Message type:
DEREGISTRATION ACCEPT
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| De-registration accept message identity | Message type
9.7 | M | V | 1 |
8.2.16 Service request p. 793
8.2.16.1 Message definition p. 793
The SERVICE REQUEST message is sent by the UE to the AMF in order to request the establishment of an N1 NAS signalling connection, to request the establishment of user-plane resources for PDU sessions which are established without user-plane resources, or both. See Table 8.2.16.1.1.
Message type:
SERVICE REQUEST
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Service request message identity | Message type
9.7 | M | V | 1 | |
| ngKSI | NAS key set identifier
9.11.3.32 | M | V | 1/2 | |
| Service type | Service type
9.11.3.50 | M | V | 1/2 | |
| 5G-S-TMSI | 5GS mobile identity
9.11.3.4 | M | LV-E | 9 | |
| 40 | Uplink data status | Uplink data status
9.11.3.57 | O | TLV | 4-34 |
| 50 | PDU session status | PDU session status
9.11.3.44 | O | TLV | 4-34 |
| 25 | Allowed PDU session status | Allowed PDU session status
9.11.3.13 | O | TLV | 4-34 |
| 71 | NAS message container | NAS message container
9.11.3.33 | O | TLV-E | 4-n |
| 29 | UE request type | UE request type
9.11.3.76 | O | TLV | 3 |
| 28 | Paging restriction | Paging restriction
9.11.3.77 | O | TLV | 3-35 |
8.2.16.2 Uplink data status p. 793
This IE shall be included if the UE has uplink user data pending to be sent.
8.2.16.3 PDU session status p. 793
This IE shall be included when the UE needs to indicate the PDU sessions that are associated with the access type that the message is sent over, that are active within the UE.
8.2.16.4 Allowed PDU session status p. 793
This IE shall be included if the SERVICE REQUEST message is sent as a response to paging with the access type indicating non-3GPP access or notification via 3GPP access for PDU session(s) associated with non-3GPP access.
8.2.16.5 NAS message container p. 794
This IE shall be included if the UE is sending a SERVICE REQUEST message as an initial NAS message and the UE needs to send non-cleartext IEs.
8.2.16.6 UE request type |R17| p. 794
The UE shall include this IE if the MUSIM UE requests the release of the NAS signalling connection or rejects the paging request from the network.
8.2.16.7 Paging restriction |R17| p. 794
The UE shall include this IE if the Request type is set to "NAS signalling connection release" or to "Rejection of paging" in the UE request type IE and the UE requests the network to restrict paging.
8.2.17 Service accept p. 794
8.2.17.1 Message definition p. 794
The SERVICE ACCEPT message is sent by the AMF to the UE in order to accept the service request procedure. See Table 8.2.17.1.1.
Message type:
SERVICE ACCEPT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Service accept message identity | Message type
9.7 | M | V | 1 | |
| 50 | PDU session status | PDU session status
9.11.3.44 | O | TLV | 4-34 |
| 26 | PDU session reactivation result | PDU session reactivation result
9.11.3.42 | O | TLV | 4-34 |
| 72 | PDU session reactivation result error cause | PDU session reactivation result error cause
9.11.3.43 | O | TLV-E | 5-515 |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
| 6B | T3448 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 34 | 5GS additional request result | 5GS additional request result
9.11.3.81 | O | TLV | 3 |
| 1D | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 1E | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
8.2.17.2 PDU session status p. 795
This IE shall be included when the network needs to indicate the PDU sessions that are associated with the access type that the message is sent over that are active within the network.
8.2.17.3 PDU session reactivation result p. 795
This IE shall be included:
- if the Uplink data status IE is included in the SERVICE REQUEST message; or
- if the Allowed PDU session status IE is included in the SERVICE REQUEST message and there is at least one PDU session indicated in the Allowed PDU session status IE for which user-plane resources can be re-established over 3GPP access.
8.2.17.4 PDU session reactivation result error cause p. 795
This IE may be included if the PDU session reactivation result IE is included and there exist one or more PDU sessions for which the user-plane resources cannot be re-established, to indicate the cause of failure to re-establish the user-plane resources.
8.2.17.5 EAP message p. 795
EAP message IE is included if the SERVICE ACCEPT message is sent to a UE registered for emergency services and is used to convey EAP-failure message.
8.2.17.6 T3448 value |R16| p. 795
The network may include this IE if the congestion control for transport of user data via the control plane is active and the UE supports the control plane CIoT 5GS optimizations.
8.2.17.7 5GS additional request result |R17| p. 795
The network may include this IE to inform the UE about the result of additional request.
8.2.17.8 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" |R17| p. 795
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for roaming". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.17.9 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" |R17| p. 795
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for regional provision of service". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.18 Service reject p. 795
8.2.18.1 Message definition p. 795
The SERVICE REJECT message is sent by the AMF to the UE in order to reject the service request procedure. See Table 8.2.18.1.1.
Message type:
SERVICE REJECT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Service reject message identity | Message type
9.7 | M | V | 1 | |
| 5GMM cause | 5GMM cause
9.11.3.2 | M | V | 1 | |
| 50 | PDU session status | PDU session status
9.11.3.44 | O | TLV | 4-34 |
| 5F | T3346 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
| 6B | T3448 value | GPRS timer 2
9.11.2.4 | O | TLV | 3 |
| 75 | CAG information list | CAG information list
9.11.3.18A | O | TLV-E | 3-n |
| 2C | Disaster return wait range | Registration wait range
9.11.3.84 | O | TLV | 4 |
| 71 | Extended CAG information list | Extended CAG information list
9.11.3.86 | O | TLV-E | 3-n |
| 3A | Lower bound timer value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 1D | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 1E | Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
8.2.18.2 PDU session status p. 796
This IE shall be included when the network needs to indicate the PDU sessions that are associated with the access type that the message is sent over, that are active within the network.
8.2.18.3 T3346 value p. 796
The AMF may include this IE when the general NAS level mobility management congestion control is active.
8.2.18.4 EAP message p. 796
EAP message IE is included if the SERVICE REJECT message is used to convey EAP-failure message.
8.2.18.5 T3448 value |R16| p. 796
The network may include this IE if the congestion control for transport of user data via the control plane is active and the UE supports the control plane CIoT 5GS optimizations.
8.2.18.6 CAG information list |R16| p. 797
This IE may be included to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.18.7 Disaster return wait range |R17| p. 797
This IE may be included to assign a new disaster return wait range to the UE.
8.2.18.8 Extended CAG information list |R17| p. 797
If the UE supports Extended CAG information list, the network may include this IE to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.18.9 Lower bound timer value |R17| p. 797
The AMF may include this IE when the 5GMM cause is set to #78 "PLMN not allowed to operate at the present UE location", to provide a minimum time value for an entry added to the list of "PLMNs not allowed to operate at the present UE location".
8.2.18.10 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for roaming" |R17| p. 797
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for roaming". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.18.11 Forbidden TAI(s) for the list of "5GS forbidden tracking areas for regional provision of service" |R17| p. 797
This IE is included to indicate the forbidden TAI(s) to be stored in the list of "5GS forbidden tracking areas for regional provision of service". This IE is included only if the message is sent via satellite NG-RAN access.
8.2.19 Configuration update command p. 797
8.2.19.1 Message definition p. 797
The CONFIGURATION UPDATE COMMAND message is sent by the AMF to the UE. See Table 8.2.19.1.1.
Message type:
CONFIGURATION UPDATE COMMAND
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Configuration update command message identity | Message type
9.7 | M | V | 1 | |
| D- | Configuration update indication | Configuration update indication
9.11.3.18 | O | TV | 1 |
| 77 | 5G-GUTI | 5GS mobile identity
9.11.3.4 | O | TLV-E | 14 |
| 54 | TAI list | 5GS tracking area identity list
9.11.3.9 | O | TLV | 9-114 |
| 15 | Allowed NSSAI | NSSAI
9.11.3.37 | O | TLV | 4-74 |
| 27 | Service area list | Service area list
9.11.3.49 | O | TLV | 6-114 |
| 43 | Full name for network | Network name
9.11.3.35 | O | TLV | 3-n |
| 45 | Short name for network | Network name
9.11.3.35 | O | TLV | 3-n |
| 46 | Local time zone | Time zone
9.11.3.52 | O | TV | 2 |
| 47 | Universal time and local time zone | Time zone and time
9.11.3.53 | O | TV | 8 |
| 49 | Network daylight saving time | Daylight saving time
9.11.3.19 | O | TLV | 3 |
| 79 | LADN information | LADN information
9.11.3.30 | O | TLV-E | 3-1715 |
| B- | MICO indication | MICO indication
9.11.3.31 | O | TV | 1 |
| 9- | Network slicing indication | Network slicing indication
9.11.3.36 | O | TV | 1 |
| 31 | Configured NSSAI | NSSAI
9.11.3.37 | O | TLV | 4-146 |
| 11 | Rejected NSSAI | Rejected NSSAI
9.11.3.46 | O | TLV | 4-42 |
| 76 | Operator-defined access category definitions | Operator-defined access category definitions
9.11.3.38 | O | TLV-E | 3-8323 |
| F- | SMS indication | SMS indication
9.11.3.50A | O | TV | 1 |
| 6C | T3447 value | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 75 | CAG information list | CAG information list
9.11.3.18A | O | TLV-E | 3-n |
| 67 | UE radio capability ID | UE radio capability ID
9.11.3.68 | O | TLV | 3-n |
| A- | UE radio capability ID deletion indication | UE radio capability ID deletion indication
9.11.3.69 | O | TV | 1 |
| 44 | 5GS registration result | 5GS registration result
9.11.3.6 | O | TLV | 3 |
| 1B | Truncated 5G-S-TMSI configuration | Truncated 5G-S-TMSI configuration
9.11.3.70 | O | TLV | 3 |
| C- | Additional configuration indication | Additional configuration indication
9.11.3.74 | O | TV | 1 |
| 68 | Extended rejected NSSAI | Extended rejected NSSAI
9.11.3.75 | O | TLV | 5-90 |
| 72 | Service-level-AA container | Service-level-AA container
9.11.2.10 | O | TLV-E | 4-65538 |
| 70 | NSSRG information | NSSRG information
9.11.3.82 | O | TLV-E | 7-4099 |
| 14 | Disaster roaming wait range | Registration wait range
9.11.3.84 | O | TLV | 4 |
| 2C | Disaster return wait range | Registration wait range
9.11.3.84 | O | TLV | 4 |
| 13 | List of PLMNs to be used in disaster condition | List of PLMNs to be used in disaster condition
9.11.3.83 | O | TLV | 2-n |
| 71 | Extended CAG information list | Extended CAG information list
9.11.3.86 | O | TLV-E | 3-n |
| 1F | Updated PEIPS assistance information | PEIPS assistance information
9.11.3.80 | O | TLV | 3-n |
| 73 | NSAG information | NSAG information
9.11.3.87 | O | TLV-E | 9-3143 |
| E- | Priority indicator | Priority indicator
9.11.3.91 | O | TV | 1 |
| 4B | RAN timing synchronization | RAN timing synchronization
9.11.3.95 | O | TLV | 3 |
| 78 | Extended LADN information | Extended LADN information
9.11.3.96 | O | TLV-E | 3-1787 |
| 4C | Alternative NSSAI | Alternative NSSAI
9.11.3.97 | O | TLV | 2-146 |
| 7B | S-NSSAI location validity information | S-NSSAI location validity information
9.11.3.100 | O | TLV-E | 17-38611 |
| 5B | S-NSSAI time validity information | S-NSSAI time validity information
9.11.3.101 | O | TLV-E | 23-257 |
| 4F | Maximum time offset | GPRS timer 3
9.11.2.5 | O | TLV | 3 |
| 74 | Partially allowed NSSAI | Partial NSSAI
9.11.3.103 | O | TLV-E | 3-808 |
| 7A | Partially rejected NSSAI | Partial NSSAI
9.11.3.103 | O | TLV-E | 3-808 |
| 61 | On-demand NSSAI | On-demand NSSAI
9.11.3.108 | O | TLV | 5-210 |
| 63 | RAT utilization control | RAT utilization control
9.11.3.110 | O | TLV | 4-n |
8.2.19.2 Configuration update indication p. 800
The AMF shall include this IE if the AMF needs to request an acknowledgement or a registration procedure from the UE.
8.2.19.3 5G-GUTI p. 800
This IE may be included to assign a new 5G-GUTI to the UE.
8.2.19.4 TAI list p. 800
This IE may be included to assign a new TAI list to the UE.
8.2.19.5 Allowed NSSAI p. 800
This IE may be included to assign a new allowed NSSAI to the UE not registered for onboarding services in SNPN.
8.2.19.6 Service area list p. 800
This IE may be included to assign a new service area list to the UE.
8.2.19.7 Full name for network p. 801
This IE may be included to assign a new full name for network to the UE.
8.2.19.8 Short name for network p. 801
This IE may be included to assign a new short name for network to the UE.
8.2.19.9 Local time zone p. 801
This IE may be included to assign a new local time zone to the UE.
8.2.19.10 Universal time and local time zone p. 801
This IE may be included to assign new universal time and local time zone to the UE.
8.2.19.11 Network daylight saving time p. 801
This IE may be included to assign new network daylight saving time to the UE.
8.2.19.12 LADN information p. 801
This IE may be included to assign new LADN information to the UE or delete the LADN information at the UE side.
8.2.19.13 MICO indication p. 801
This IE may be included to request the UE to re-negotiate MICO mode.
8.2.19.14 Network slicing indication p. 801
This IE shall be included if the user's network slicing subscription has changed in the UDM of a PLMN or an SNPN.
8.2.19.15 Configured NSSAI p. 801
The AMF shall include this IE when the AMF needs to provide the UE with a new configured NSSAI for the current PLMN or SNPN and the UE is neither registering nor registered for onboarding services in SNPN.
8.2.19.16 Rejected NSSAI p. 801
The network may include this IE to inform the UE of one or more S-NSSAIs that were previously sent to the UE in the allowed NSSAI or the pending NSSAI, but are now considered rejected by the network.
8.2.19.17 Operator-defined access category definitions p. 801
This IE may be included to assign new operator-defined access category definitions to the UE or delete the operator-defined access category definitions at the UE side.
8.2.19.18 SMS indication p. 801
This IE may be included to indicate that the ability for the UE to use SMS over NAS has changed.
8.2.19.19 T3447 value |R16| p. 801
This IE may be included to assign a new T3447 value to the UE.
8.2.19.20 CAG information list |R16| p. 802
This IE may be included to assign new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.19.21 UE radio capability ID |R16| p. 802
This IE may be included if the UE is not in NB-N1 mode, both the UE and the network support RACS and the network needs to assign a network-assigned UE radio capability ID to the UE.
8.2.19.22 UE radio capability ID deletion indication |R16| p. 802
This IE may be included if the UE is not in NB-N1 mode, both the UE and the network support RACS and the network needs to trigger the UE to delete all network-assigned UE radio capability IDs stored at the UE for the serving PLMN or serving SNPN.
8.2.19.23 5GS registration result |R16| p. 802
This IE shall be included if the network wants to indicate to the UE that the UE is registered for emergency services.
8.2.19.24 Truncated 5G-S-TMSI configuration |R16| p. 802
This IE may be included to provide a new truncated 5G-S-TMSI configuration to the UE in NB-N1 mode if the network is configured to provide the truncated 5G-S-TMSI configuration for control plane CIoT 5GS optimizations.
8.2.19.25 Additional configuration indication |R16| p. 802
The network may include this IE when requesting the UE to register without the release of the N1 NAS signalling connection.
8.2.19.26 Extended rejected NSSAI |R17| p. 802
If the UE supports Extended rejected NSSAI, the network may include this IE to inform the UE of one or more S-NSSAIs that were previously sent to the UE in the allowed NSSAI or the pending NSSAI, but are now considered rejected by the network.
8.2.19.27 Service-level-AA container |R17| p. 802
The network shall include this IE when the AMF receives the Service-level-AA payload or the UUAA-MM result from the UAS-NF during the UUAA-MM procedure or the UUAA revocation procedure. The network shall also include this IE if the AMF receives from the UAS-NF, the CAA-Level UAV ID as part of the UUAA-MM procedure.
8.2.19.28 NSSRG information |R17| p. 802
This IE may be included to provide NSSRG information associated with the configured NSSAI.
8.2.19.29 Disaster roaming wait range |R17| p. 802
This IE may be included to assign a new disaster roaming wait range to the UE.
8.2.19.30 Disaster return wait range |R17| p. 802
This IE may be included to assign a new disaster return wait range to the UE.
8.2.19.31 List of PLMNs to be used in disaster condition |R17| p. 803
This IE may be included by an allowed PLMN to assign a new "list of PLMN(s) to be used in disaster condition" associated with the serving PLMN to the UE.
8.2.19.32 Extended CAG information list |R17| p. 803
If the UE supports Extended CAG information list, the network may include this IE to assign a new "CAG information list" to the UE or delete the "CAG information list" at the UE side.
8.2.19.33 Updated PEIPS assistance information |R17| p. 803
The AMF may include this IE if the UE supports NR paging subgrouping, the AMF supports and accepts the use of PEIPIS assistance information for the UE, the UE is not registered for emergency services, the UE does not have an active emergency PDU session, and the network needs to update PEIPS assistance information for the UE.
8.2.19.34 NSAG information |R17| p. 803
If the UE has set the NSAG bit to "NSAG supported" in the 5GMM capability IE of the REGISTRATION REQUEST message and the CONFIGURATION UPDATE COMMAND message is sent over 3GPP access, the network may include this IE to provide NSAG information to the UE.
8.2.19.35 Priority indicator |R17| p. 803
The network shall include this IE when it needs to inform the UE that the use of access identity 1 is valid or is no longer valid.
8.2.19.36 RAN timing synchronization |R18| p. 803
This IE may be included to provide information related to the RAN timing synchronization to a UE which has set the Reconnection to the network due to RAN timing synchronization status change (RANtiming) bit to "Reconnection to the network due to RAN timing synchronization status change supported" in the 5GMM capability IE of the REGISTRATION REQUEST message.
8.2.19.37 Extended LADN information |R18| p. 803
This IE may be included to assign new extended LADN information to the UE or delete the extended LADN information at the UE side.
8.2.19.38 Alternative NSSAI |R18| p. 803
The network may include this IE to provide the mapping information between the S-NSSAI to be replaced and the alternative S-NSSAI to the UE.
8.2.19.39 S-NSSAI location validity information |R18| p. 803
The network may include this IE to update the S-NSSAI location validity information.
8.2.19.40 S-NSSAI time validity information |R18| p. 803
The network may include this IE to update the S-NSSAI time validity information.
8.2.19.41 Maximum time offset |R18| p. 803
This IE may be included to provide the UE with a maximum time offset.
8.2.19.42 Partially allowed NSSAI |R18| p. 804
The network may include this IE to assign a partially allowed NSSAI to the UE.
8.2.19.43 Partially rejected NSSAI |R18| p. 804
The network may include this IE to assign a partially rejected NSSAI to the UE.
8.2.19.44 Feature authorization indication |R18| p. 804
The network may include this IE to inform to the UE about the authorization status of the UE whether to operate as an MBSR or to operate not as an MBSR but to operate as a UE.
8.2.19.45 On-demand NSSAI |R18| p. 804
The network may include this IE to provide the on-demand NSSAI to the UE.
8.2.19.46 RAT utilization control |R19| p. 804
This IE is included to indicate the restricted RAT(s).
8.2.20 Configuration update complete p. 804
8.2.20.1 Message definition p. 804
The CONFIGURATION UPDATE COMPLETE message is sent by the UE to the AMF. See Table 8.2.20.1.1.
Message type:
CONFIGURATION UPDATE COMPLETE
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Configuration update complete message identity | Message type
9.7 | M | V | 1 |
8.2.20.2 Void
8.2.21 Identity request p. 804
8.2.21.1 Message definition p. 804
The IDENTITY REQUEST message is sent by the AMF to the UE to request the UE to provide specified identity. See Table 8.2.21.1.1
Message type:
IDENTITY REQUEST
Significance:
dual
Direction:
AMF to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Identity request message identity | Message type
9.7 | M | V | 1 | |
| Identity type | 5GS identity type
9.11.3.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 |
8.2.22 Identity response p. 805
8.2.22.1 Message definition p. 805
The IDENTITY RESPONSE message is sent by the UE to the AMF to provide the requested identity. See Table 8.2.22.1.1.
Message type:
IDENTITY RESPONSE
Significance:
dual
Direction:
UE to AMF
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Identity response message identity | Message type
9.7 | M | V | 1 | |
| Mobile identity | 5GS mobile identity
9.11.3.4 | M | LV-E | 3-n |
8.2.23 Notification p. 805
8.2.23.1 Message definition p. 805
The NOTIFICATION message is sent by the AMF to the UE to notify the UE to initiate a service request procedure. See Table 8.2.23.1.1.
Message type:
NOTIFICATION
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Notification message identity | Message type
9.7 | M | V | 1 | |
| Access type | Access type
9.11.2.1A | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 |
8.2.24 Notification response p. 806
8.2.24.1 Message definition p. 806
The NOTIFICATION RESPONSE message is sent by the UE to the AMF to notify the failure to initiate the service request procedure as a response of notification. See Table 8.2.24.1.1.
Message type:
NOTIFICATION RESPONSE
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Notification response message identity | Message type
9.7 | M | V | 1 | |
| 50 | PDU session status | PDU session status
9.11.3.44 | O | TLV | 4-34 |
8.2.24.2 PDU session status p. 806
This information element shall be included when the UE needs to indicate over non-3GPP access the PDU sessions that are associated with the 3GPP access type that are active within the UE.
8.2.25 Security mode command p. 806
8.2.25.1 Message definition p. 806
The SECURITY MODE COMMAND message is sent by the AMF to the UE to establish NAS signalling security. See Table 8.2.25.1.1.
Message type:
SECURITY MODE COMMAND
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Security mode command message identity | Message type
9.7 | M | V | 1 | |
| Selected NAS security algorithms | NAS security algorithms
9.11.3.34 | M | V | 1 | |
| ngKSI | NAS key set identifier
9.11.3.32 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Replayed UE security capabilities | UE security capability
9.11.3.54 | M | LV | 3-9 | |
| E- | IMEISV request | IMEISV request
9.11.3.28 | O | TV | 1 |
| 57 | Selected EPS NAS security algorithms | EPS NAS security algorithms
9.11.3.25 | O | TV | 2 |
| 36 | Additional 5G security information | Additional 5G security information
9.11.3.12 | O | TLV | 3 |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
| 38 | ABBA | ABBA
9.11.3.10 | O | TLV | 4-n |
| 19 | Replayed S1 UE security capabilities | S1 UE security capability
9.11.3.48A | O | TLV | 4-7 |
| 55 | AUN3 device security key | AUN3 device security key
9.11.3.107 | O | TLV | 36-257 |
8.2.25.2 IMEISV request p. 807
The AMF may include this information element to request the UE to send its IMEISV with the corresponding SECURITY MODE COMPLETE message.
8.2.25.3 Void
8.2.25.4 Selected EPS NAS security algorithms p. 807
This IE shall be included if the AMF supports N26 interface, the UE set the S1 mode bit to "S1 mode supported" in the 5GMM capability IE of the REGISTRATION REQUEST message, and the AMF needs to provide the selected EPS NAS security algorithms to the UE.
8.2.25.5 Additional 5G security information p. 807
The network shall include this IE if:
- the network needs to provide the UE with horizontal derivation parameter; or
- the applicable initial NAS message (i.e. REGISTRATION REQUEST, CONTROL PLANE SERVICE REQUEST or SERVICE REQUEST) does not successfully pass the integrity check at the AMF (see subclause 5.4.2.2).
8.2.25.6 EAP message p. 808
This IE is included when the EAP Success message is sent as part of the EAP based primary authentication and key agreement procedure, as specified in subclause 5.4.1.2.
8.2.25.7 ABBA p. 808
This IE shall be included if the message contains an EAP message IE with an EAP-success message.
8.2.25.8 Replayed S1 UE security capabilities p. 808
This IE shall be included if the Selected EPS NAS security algorithms information element is included.
8.2.25.9 AUN3 device security key |R18| p. 808
This IE shall be included when the SECURITY MODE COMMAND message is provided to a 5G-RG that is acting on behalf of an AUN3 device if the EAP message IE is set to an EAP-success message.
8.2.26 Security mode complete p. 808
8.2.26.1 Message definition p. 808
The SECURITY MODE COMPLETE message is sent by the UE to the AMF in response to a SECURITY MODE COMMAND message. See Table 8.2.26.1.1.
Message type:
SECURITY MODE COMPLETE
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Security mode complete message identity | Message type
9.6 | M | V | 1 | |
| 77 | IMEISV | 5GS mobile identity
9.11.3.4 | O | TLV-E | 12 |
| 71 | NAS message container | NAS message container
9.11.3.33 | O | TLV-E | 4-n |
| 78 | non-IMEISV PEI | 5GS mobile identity
9.11.3.4 | O | TLV-E | 7-n |
8.2.26.2 IMEISV p. 808
The UE shall include this information element, if the IMEISV was requested within the corresponding SECURITY MODE COMMAND message.
8.2.26.3 NAS message container p. 808
The UE shall include this information element:
- if during an ongoing registration procedure or service request procedure, the AMF included the Additional 5G security information with the RINMR bit set to "Retransmission of the initial NAS message requested" in the SECURITY MODE COMMAND message as described in TS 33.501; or
- if during an ongoing registration procedure, the UE does not have a valid 5G NAS security context.
8.2.26.4 non-IMEISV PEI |R16| p. 809
The 5G-RG or the W-AGF acting on behalf of the FN-RG (or on behalf of the N5GC device) shall include this information element, if the IMEISV was requested within the corresponding SECURITY MODE COMMAND message, the IMEISV is not available but MAC address is available.
The UE shall include this information element, if the IMEISV was requested within the corresponding SECURITY MODE COMMAND message, the IMEISV is not available but EUI-64 is available.
8.2.27 Security mode reject p. 809
8.2.27.1 Message definition |R17| p. 809
The SECURITY MODE REJECT message is sent by the UE to the AMF to indicate that the corresponding security mode command has been rejected. See Table 8.2.27.1.1.
Message type:
SECURITY MODE REJECT
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Security mode reject message identity | Message type
9.6 | M | V | 1 | |
| 5GMM cause | 5GMM cause
9.11.3.2 | M | V | 1 |
8.2.28 Security protected 5GS NAS message p. 809
8.2.28.1 Message definition p. 809
This message is sent by the UE or the network to transfer a plain 5GS NAS message as specified in subclause 8.2 together with the sequence number and the message authentication code protecting the message. See Table 8.2.28.1.1.
Message type:
SECURITY PROTECTED 5GS NAS MESSAGE
Significance:
dual
Direction:
both
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Message authentication code | Message authentication code
9.8 | M | V | 4 | |
| Sequence number | Sequence number
9.10 | M | V | 1 | |
| Plain 5GS NAS message | Plain 5GS NAS message
9.9 | M | V | 3-n |
8.2.29 5GMM status p. 810
8.2.29.1 Message definition p. 810
The 5GMM STATUS message is sent by the UE or by the AMF at any time to report certain error conditions. See Table 8.2.29.1.1.
Message type:
5GMM STATUS
Significance:
local
Direction:
both
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| 5GMM STATUS message identity | Message type
9.7 | M | V | 1 | |
| 5GMM cause | 5GMM cause
9.11.3.2 | M | V | 1 |
8.2.30 Control Plane Service request |R16| p. 810
8.2.30.1 Message definition p. 810
The CONTROL PLANE SERVICE REQUEST message is sent by the UE to the AMF when the UE is using 5GS services with control plane CIoT 5GS optimization. See Table 8.2.30.1.1.
Message type:
CONTROL PLANE SERVICE REQUEST
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Control plane service request message identity | Message type
9.7 | M | V | 1 | |
| Control plane service type | Control plane service type
9.11.3.18D | M | V | 1/2 | |
| ngKSI | NAS key set identifier
9.11.3.32 | M | V | 1/2 | |
| 6F | CIoT small data container | CIoT small data container
9.11.3.18B | O | TLV | 4-257 |
| 8- | Payload container type | Payload container type
9.11.3.40 | O | TV | 1 |
| 7B | Payload container | Payload container
9.11.3.39 | O | TLV-E | 4-65538 |
| 12 | PDU session ID | PDU session identity 2
9.11.3.41 | C | TV | 2 |
| 50 | PDU session status | PDU session status
9.11.3.44 | O | TLV | 4-34 |
| F- | Release assistance indication | Release assistance indication
9.11.3.46A | O | TV | 1 |
| 40 | Uplink data status | Uplink data status
9.11.3.57 | O | TLV | 4-34 |
| 71 | NAS message container | NAS message container
9.11.3.33 | O | TLV-E | 4-n |
| 24 | Additional information | Additional information
9.11.2.1 | O | TLV | 3-n |
| 25 | Allowed PDU session status | Allowed PDU session status
9.11.3.13 | O | TLV | 4-34 |
| 29 | UE request type | UE request type
9.11.3.76 | O | TLV | 3 |
| 28 | Paging restriction | Paging restriction
9.11.3.77 | O | TLV | 3-35 |
8.2.30.2 CIoT small data container p. 811
This IE shall be included if the UE needs to send uplink small user data, SMS or location services message that is not more than 254 bytes, and there is no other optional IE to be sent.
8.2.30.3 Payload container type p. 811
This IE shall be included if the UE includes the Payload container IE.
8.2.30.4 Payload container p. 811
This IE shall be included if the UE needs to send uplink CIoT user data, SMS or location services message.
8.2.30.5 PDU session ID p. 811
The UE shall include this IE when the Payload container type IE is set to "CIoT user data container".
8.2.30.6 PDU session status p. 812
This IE shall be included when the UE needs to indicate the PDU sessions that are associated with the access type that the message is sent over, that are active within the UE.
8.2.30.7 Release assistance indication p. 812
The UE may include this IE to inform the network whether:
- no further uplink and no further downlink data transmission is expected; or
- only a single downlink data transmission (e.g. acknowledgement or response to uplink data) and no further uplink data transmission subsequent to the uplink data transmission is expected.
8.2.30.8 Uplink data status p. 812
This IE shall be included if the UE has uplink user data pending to be sent over the user plane.
8.2.30.9 NAS message container p. 812
This IE shall be included if the UE is sending a CONTROL PLANE SERVICE REQUEST message as an initial NAS message and the UE needs to send non-cleartext IEs.
8.2.30.10 Additional information p. 812
The UE may include this IE when the Payload container type IE is set to "Location services message container".
8.2.30.11 Allowed PDU session status |R17| p. 812
This IE shall be included if the CONTROL PLANE SERVICE REQUEST message is sent as a response to paging with the access type indicating non-3GPP access or notification via 3GPP access for PDU session(s) associated with non-3GPP access.
8.2.30.12 UE request type |R17| p. 812
The UE shall include this IE if the MUSIM UE requests the release of the NAS signalling connection or rejects the paging request from the network.
8.2.30.13 Paging restriction |R17| p. 812
The UE shall include this IE if the Request type is set to "NAS signalling connection release" or to "Rejection of paging" in the UE request type IE and the UE requests the network to restrict paging.
8.2.31 Network slice-specific authentication command |R16| p. 812
8.2.31.1 Message definition p. 812
The NETWORK SLICE-SPECIFIC AUTHENTICATION COMMAND message is sent by the AMF to the UE for authentication of the upper layers of the UE. See Table 8.2.31.1.1.
Message type:
NETWORK SLICE-SPECIFIC AUTHENTICATION COMMAND
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| NETWORK SLICE-SPECIFIC AUTHENTICATION COMMAND message identity | Message type
9.7 | M | V | 1 | |
| S-NSSAI | S-NSSAI
9.11.2.8 | M | LV | 2-5 | |
| EAP message | EAP message
9.11.2.2 | M | LV-E | 6-1502 |
8.2.32 Network slice-specific authentication complete |R16| p. 813
8.2.32.1 Message definition p. 813
The NETWORK SLICE-SPECIFIC AUTHENTICATION COMPLETE message is sent by the UE to the AMF in response to the NETWORK SLICE-SPECIFIC AUTHENTICATION COMMAND message and indicates acceptance of the NETWORK SLICE-SPECIFIC AUTHENTICATION COMMAND message. See Table 8.2.32.1.1.
Message type:
NETWORK SLICE-SPECIFIC AUTHENTICATION COMPLETE
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| NETWORK SLICE-SPECIFIC AUTHENTICATION COMPLETE message identity | Message type
9.7 | M | V | 1 | |
| S-NSSAI | S-NSSAI
9.11.2.8 | M | LV | 2-5 | |
| EAP message | EAP message
9.11.2.2 | M | LV-E | 6-1502 |
8.2.33 Network slice-specific authentication result |R16| p. 813
8.2.33.1 Message definition p. 813
The NETWORK SLICE-SPECIFIC AUTHENTICATION RESULT message is sent by the AMF to the UE for indicating the result of the network slice-specific authentication and authorization procedure. See Table 8.2.33.1.1.
Message type:
NETWORK SLICE-SPECIFIC AUTHENTICATION RESULT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| NETWORK SLICE-SPECIFIC AUTHENTICATION RESULT message identity | Message type
9.7 | M | V | 1 | |
| S-NSSAI | S-NSSAI
9.11.2.8 | M | LV | 2-5 | |
| EAP message | EAP message
9.11.2.2 | M | LV-E | 6-1502 |
8.2.34 Relay key request |R17| p. 814
8.2.34.1 Message definition p. 814
The RELAY KEY REQUEST message is sent by the UE to the AMF for initiation of PC5 keys establishment with the 5G ProSe remote UE or the 5G ProSe end UE as specified in TS 33.503. See Table 8.2.34.1.
Message type:
RELAY KEY REQUEST
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Relay key request message identity | Message type
9.7 | M | V | 1 | |
| PRTI | ProSe relay transaction identity
9.11.3.88 | M | V | 1 | |
| Relay key request parameters | Relay key request parameters
9.11.3.89 | M | LV | 22-65537 |
8.2.35 Relay key accept |R17| p. 814
8.2.35.1 Message definition p. 814
The RELAY KEY ACCEPT message is sent by the AMF to the UE as specified in TS 33.503. See Table 8.2.35.1.
Message type:
RELAY KEY ACCEPT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Relay key accept message identity | Message type
9.7 | M | V | 1 | |
| PRTI | ProSe relay transaction identity
9.11.3.88 | M | V | 1 | |
| Relay key response parameters | Relay key response parameters
9.11.3.90 | M | LV-E | 51-65537 | |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
8.2.35.2 EAP message p. 815
The AMF shall include the EAP message IE if the AMF has received an EAP-success message from the AUSF.
8.2.36 Relay key reject |R17| p. 815
8.2.36.1 Message definition p. 815
The RELAY KEY REJECT message is sent by the AMF to the UE to indicate the rejection of the relay key request. See Table 8.2.36.1.
Message type:
RELAY KEY REJECT
Significance:
dual
Direction:
network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Relay key reject message identity | Message type
9.7 | M | V | 1 | |
| PRTI | ProSe relay transaction identity
9.11.3.88 | M | V | 1 | |
| 78 | EAP message | EAP message
9.11.2.2 | O | TLV-E | 7-1503 |
8.2.36.2 EAP message p. 815
EAP message IE is included if the RELAY KEY REJECT message is used to convey EAP-failure message.
8.2.37 Relay authentication request |R17| p. 816
8.2.37.1 Message definition p. 816
The RELAY AUTHENTICATION REQUEST message is sent by the network to the UE to initiate authentication of the 5G ProSe remote UE or the 5G ProSe end UE as specified in TS 33.503. See Table 8.2.37.1.
Message type:
RELAY AUTHENTICATION REQUEST
Significance:
dual
Direction:
Network to UE
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Relay authentication request message identity | Message type
9.7 | M | V | 1 | |
| PRTI | roSe relay transaction identity
9.11.3.88 | >M | V | 1 | |
| EAP message | EAP message
9.11.2.2 | M | LV-E | 7-1503 |
8.2.38 Relay authentication response |R17| p. 816
8.2.38.1 Message definition p. 816
The RELAY AUTHENTICATION RESPONSE message is sent by the UE to the network to forward the authentication response from the 5G ProSe remote UE or the 5G ProSe end UE as specified in TS 33.503. See Table 8.2.38.1.
Message type:
RELAY AUTHENTICATION RESPONSE
Significance:
dual
Direction:
UE to network
| IEI | Information Element | Type/Reference | Presence | Format | Length |
|---|---|---|---|---|---|
| Extended protocol discriminator | Extended protocol discriminator
9.2 | M | V | 1 | |
| Security header type | Security header type
9.3 | M | V | 1/2 | |
| Spare half octet | Spare half octet
9.5 | M | V | 1/2 | |
| Relay authentication response message identity | Message type
9.7 | M | V | 1 | |
| PRTI | ProSe relay transaction identity
9.11.3.88 | M | V | 1 | |
| EAP message | EAP message
9.11.2.2 | M | LV-E | 6-1502 |
