Description
The Bootstrapping Transaction Identifier (B-TID) is a fundamental component of the Generic Bootstrapping Architecture (GAA) specified in 3GPP standards. It is generated by the Bootstrapping Server Function (BSF) during the initial authentication and key agreement procedure between a User Equipment (UE) and the network. The B-TID is constructed using a specific format: it begins with a fixed prefix (typically the realm of the BSF), followed by a base64-encoded representation of the RAND value (a random challenge used in authentication) and the BSF server's name. This structured format ensures global uniqueness and allows any network entity to identify the specific bootstrapping transaction.
During the GBA procedure, after successful mutual authentication between the UE and the BSF using the Authentication and Key Agreement (AKA) protocol, the BSF generates the B-TID and associates it with the established session keys (specifically, the Bootstrapping Key Agreement (Ks) and derived keys). The BSF then returns the B-TID to the UE along with the key lifetime information. The UE stores this B-TID locally along with the corresponding keys. Subsequently, when the UE needs to access an application service (like a Multimedia Telephony Service or other Network Application Functions), it presents this B-TID to the service provider instead of re-authenticating from scratch.
The B-TID serves as a secure reference pointer that enables the Network Application Function (NAF) to retrieve the appropriate authentication context from the BSF. When a NAF receives a service request containing a B-TID from a UE, it contacts the BSF (using the Zn interface) and provides the B-TID. The BSF validates the B-TID, confirms the session is still active within its lifetime, and then provides the NAF with the relevant keying material (specifically, the Ks_NAF derived key) needed to establish a secure channel with the UE. This mechanism separates the heavy authentication process from application access, improving efficiency.
From an architectural perspective, the B-TID operates within the three-tier GBA model: UE, BSF, and NAF. Its primary role is to maintain the linkage between these entities without exposing sensitive key material over the air or to application servers. The B-TID itself is not secret but must be transmitted securely to prevent hijacking attacks. In network deployments, B-TIDs are managed by the BSF with proper lifetime controls and revocation mechanisms to maintain security. The identifier's design allows for scalability across multiple BSFs and supports both GBA and GBA-U (GBA with Ubiquity) variants.
Purpose & Motivation
The B-TID was created to address the fundamental problem of repeated authentication in mobile networks where users access multiple services from different providers. Before GBA and the B-TID mechanism, each application service might require its own authentication procedure, leading to redundant signaling, increased latency, and poor user experience. The traditional approach also meant that users had to manage multiple credentials for different services, creating security vulnerabilities and usability challenges.
The introduction of B-TID in Release 6 as part of GAA provided a standardized way to leverage the strong authentication already performed by the mobile network (via USIM cards and AKA protocol) for application-layer security. By creating a transaction identifier that references the established security context, the system enables single sign-on capabilities across diverse services. This solves the problem of authentication silos while maintaining the security level of the underlying mobile network authentication.
Historically, the development of B-TID was motivated by the growing need for secure mobile services beyond basic voice and SMS. As operators introduced services like Multimedia Messaging, Push-to-Talk, and later IMS-based applications, they needed a way to extend cellular authentication to these value-added services efficiently. The B-TID mechanism allowed service providers to outsource authentication to the mobile network operator while maintaining control over their application security. This created new business models and enabled secure third-party services without requiring users to create separate accounts.
Detected Changes Across Releases
from 3GPP Change RequestsSpecific changes extracted from the „Change history“ tables of 3GPP specifications (6 CRs across 4 releases). Complements the general historical overview above with the evidence-based evolution of this function.
Studied in Rel-6, normative work from Rel-15.
In Release 15, the B-TID function was extended to support the new GBA-Push procedure over the Upa interface, enabling a Network Application Function (NAF) to bootstrap security with a UE without the UE initiating contact with the Bootstrapping Server Function (BSF). This release also introduced subscription identifier privacy support, enhancing user privacy within the generic bootstrapping architecture framework.
- Subscription identifier privacy suppport TS 31.102CR0778
In Release 16, the B-TID function was extended to support a new **GBA-Push** mechanism over the **Upa interface** between a NAF and a UE, allowing bootstrapping to be initiated by the network without forcing the UE to contact the BSF. This mechanism establishes a **NAF SA (NAF Security Association)** identified by unique identifiers like RAND@'naf' and uses a disposable Ks model with GBA-Push-Info (GPI). Additionally, a new **DF_SAIP** was defined and an identifier was reserved for **SUCI Calculation in eUICCs**, enhancing subscriber privacy capabilities.
- Define a new DF_SAIP and reserve an identifier for SUCI Calculation in eUICCs TS 31.102CR0855
In Release 17, there were no substantive changes to the core B-TID function or its role in identifying the bootstrapping security association between the UE and BSF. The release included administrative corrections, such as fixing a file identifier for EF5G_PROSE_UIR, and introduced support for a new Ua security protocol identifier for TLS 1.3, which is the interface used to supply the B-TID to a Network Application Function.
In Release 18, the specific change concerning the B-TID function was a correction to the DF Identifier for the 5MBSUECONFIG data file. This correction ensures proper alignment within the Generic Bootstrapping Architecture (GBA) framework, where the B-TID identifies the security association established between the UE and the Bootstrapping Server Function (BSF). No new B-TID procedures or interfaces were introduced in this release.
- Correction of DF Identifier for 5MBSUECONFIG TS 31.102CR0984
Explore further
Broader topics and technologies where B-TID plays a role.
Defining Specifications
3GPP specifications that define or reference B-TID, with the latest known release. Sourced from the 3GPP document catalog — see methodology.
| Specification | Title | Release |
|---|---|---|
| TS 24.109 vj00 | HTTP Digest AKA & GAA Stage 3 | Rel-19 |
| TS 29.109 vj00 | GAA Bootstrapping Interfaces (Zh, Dz, Zn, Zpn) | Rel-19 |
| TS 31.102 vj40 | USIM Application Specification | Rel-19 |
| TS 31.103 vj00 | ISIM Application Specification | Rel-19 |
| TS 31.213 vi30 | Test specification for (U)SIM | Rel-18 |
| TS 33.107 vj00 | Lawful Interception Architecture & Functions | Rel-19 |
| TS 33.110 vj00 | UICC-Terminal Key Establishment | Rel-19 |
| TS 33.220 vj00 | Generic Authentication Architecture (GAA); Generic Bootstrapping Architecture (GBA) | Rel-19 |
| TS 33.221 vj00 | Subscriber Certificate Distribution via GBA | Rel-19 |
| TS 33.222 vj00 | Secure HTTP Access in GAA | Rel-19 |
| TS 33.223 vj00 | GBA Push Function Specification | Rel-19 |
| TS 33.246 vj00 | MBMS Security Specification | Rel-19 |
| TS 33.259 vj00 | Key Establishment between UICC Hosting & Remote Device | Rel-19 |
| TS 33.823 vc20 | GBA Web Browser Integration Study | Rel-12 |
| TS 33.843 vf10 | Security Study for ProSe UE-to-Network Relay | Rel-15 |
| TR 33.980 vj00 | GAA & Liberty Alliance Interworking Guidelines | Rel-19 |