What is Mutual Authentication?
GAA (Generic Authentication Architecture) is a universal architecture that provides a universal authentication mechanism that can use the mobile authentication infrastructure used when users access mobile networks to access new services Authorization control to avoid providing a unique authentication mechanism for each new service. Both the mobile terminal and the service provider can obtain the latest trusted information (that is, the identifier and the shared key) with each other through the GAA, so that they can authenticate each other.
- Chinese name
- Unified authentication architecture
- Foreign name
- GAA
- GAA (Generic Authentication Architecture) is a universal architecture that provides a universal authentication mechanism that can use the mobile authentication infrastructure used when users access mobile networks to access new services Authorization control to avoid providing a unique authentication mechanism for each new service. Both the mobile terminal and the service provider can obtain the latest trusted information (that is, the identifier and the shared key) with each other through the GAA, so that they can authenticate each other.
Implementation steps of unified authentication architecture
- The implementation of GAA generally involves two steps.
- The first step is to derive GAA's trusted information through authentication and key management during the GAA self-startup phase;
- The second step is to use GAA's trusted information for authentication between the user and the network application server, as well as to protect the confidentiality and integrity of the communication.
- In the first step, the GAA self-starting process can be initiated by the network application server or by the self-starting client in the user device. They are all based on the authentication between the self-starting server and the user device.
Application scenarios of unified authentication architecture
- GAA uses include:
- First, the authentication certificate request provides a user certificate to the wireless identification module.
- Second, in the roaming scenario, the network application server may not be in the operator's own network.
- Third, it can be used in the case where the user equipment functions are separated.
Features and advantages of unified certification architecture
- For different objects, the advantages of GAA are:
- For users, GAA brings advantages in use, it is easier to register new services, no user name and password need to be set, and it is easy to replace user equipment.
- For service providers, there is no need to provide users with trusted information.
- For mobile operators, a new business model is provided to use existing assets (ie registered user information and roaming agreements).
- GAA has been used in the third generation (3G) standard for mobile communications. By deploying GAA, mobile operators can provide users with better services.