ERP

EAP Re-authentication Protocol

Security →
Introduced in Rel-5 Also in: Radio Access Network, Core Network, User Equipment

ERP is a protocol that enables fast re-authentication without a full EAP exchange, reducing signaling overhead and latency for seamless mobility during handovers in 3GPP and non-3GPP networks.

Category
Security
Introduced
Rel-5
Where
Services › Codecs
Also touches
3 segments
Specifications
25 specs
ERP Description Purpose Related Classification Detected Changes Specifications

Description

The EAP Re-authentication Protocol (ERP) is a security protocol defined within the Extensible Authentication Protocol (EAP) framework, standardized by the IETF and adopted by 3GPP. Its primary function is to perform a lightweight re-authentication of an already authenticated peer (e.g., a UE) when it moves between access points or needs to refresh its security context, without executing the computationally intensive and time-consuming full EAP method again. ERP achieves this by leveraging cryptographic material derived from the initial, full EAP authentication, specifically the Master Session Key (MSK) and Extended Master Session Key (EMSK). From these keys, a Re-authentication Root Key (rRK) and subsequently a Re-authentication Integrity Key (rIK) and Re-authentication Encryption Key (rEK) are derived, forming a secure basis for the abbreviated exchange.

Architecturally, ERP involves three entities: the peer (UE), the authenticator (e.g., an access point or eNodeB/gNodeB), and the backend authentication server (e.g., an AAA server). The protocol operates by the peer initiating a re-authentication request using a dedicated EAP method, EAP-Initiate/Re-auth. This request is processed locally by the authenticator if it holds the necessary rIK, or is forwarded to the backend server. The exchange involves a minimal number of messages, typically just a request and a response, which include cryptographically protected sequence numbers and identifiers to prevent replay attacks. Successful completion results in the derivation of fresh keying material (a new MSK) for the new session, ensuring forward secrecy.

ERP's role in the 3GPP ecosystem is integral to enabling secure and fast handovers, particularly in scenarios involving non-3GPP access (like Wi-Fi) interworking with the 3GPP core, as defined in Access Network Discovery and Selection Function (ANDSF) and Non-3GPP InterWorking Function (N3IWF) architectures. It is a key component for optimizing the performance of authentication, authorization, and accounting (AAA) procedures during mobility events. By drastically reducing the authentication latency from potentially hundreds of milliseconds to tens of milliseconds, ERP directly contributes to improved user experience for latency-sensitive applications and supports the seamless mobility requirements of 5G and beyond systems.

Purpose & Motivation

ERP was created to address the significant performance bottleneck posed by full EAP authentication during frequent mobility events. In mobile networks, especially with the proliferation of heterogeneous access (e.g., switching between cellular and Wi-Fi), a device may need to re-authenticate often. A full EAP exchange involves multiple round-trips to a potentially distant AAA server, introducing substantial latency and signaling load on both the radio and core networks. This could severely degrade service continuity, causing perceptible interruptions in voice or video calls during handovers.

The motivation stemmed from the need for a standardized, cryptographically sound method to re-establish trust and session keys quickly. Prior to ERP, solutions were often vendor-specific or relied on stateful context transfer between network nodes, which had scalability and security limitations. ERP provides a stateless, protocol-based solution where the security of the re-authentication is rooted in the keys from the initial authentication. Its development was driven by requirements from 3GPP's work on System Architecture Evolution (SAE) and later 5G, which mandate efficient secure mobility across multiple access technologies.

By solving the re-authentication latency problem, ERP enables practical implementation of features like seamless offload to trusted and untrusted non-3GPP networks, fast reconnection after brief disconnections, and efficient support for massive numbers of IoT devices that may frequently sleep and wake. It is a foundational element for achieving the low-latency and high-reliability goals of modern cellular systems.

Classification

Part ofEAP
Related approachesAAAN3IWF

Detected Changes Across Releases

from 3GPP Change Requests

Specific changes extracted from the „Change history“ tables of 3GPP specifications (14 CRs across 4 releases). Complements the general historical overview above with the evidence-based evolution of this function.

Studied in Rel-5, normative work from Rel-15.

Rel-15 2 changes

In Release 15, the ERP function was not the primary focus of the specified changes. The modifications instead clarified authentication procedures for untrusted non-3GPP access, specifically detailing the condition when the ePDG sends its certificate to the UE. Additionally, the release introduced the N3IWF FQDN as a new technical element within the 5G system architecture.

  • Clarifying the condition when the ePDG sends its certificate to the UE during untrusted non 3gpp access authentication (8.2.2) TS 33.402CR0145
  • N3IWF FQDN TS 23.003CR0479
Rel-16 1 change

In Release 16, the update to the ERP function involved a correction to the IKEv2 protocol by updating its referenced RFC number. This change ensured the specification cited the correct foundational internet engineering document for the protocol used in authentication and security procedures. No new procedures, capabilities, or interfaces for ERP were introduced beyond this referential update.

  • Correction of IKEV2 protocol RFC number from old 7296 to new 7296 TS 24.302CR0720
Rel-17 3 changes

In Release 17, the ERP function was enhanced to support authentication for Connectivity for NSWO (Non-Seamless WLAN Offload). The updates also introduced the use of a Fully Qualified Domain Name (FQDN) for selecting the Non-3GPP InterWorking Function (N3IWF) specifically for emergency services. Additionally, support was added for using a Visited Country FQDN when selecting an N3IWF for a Standalone Non-Public Network (SNPN).

  • Connectivity for NSWO authentication TS 24.302CR0731
  • FQDN for N3IWF selection for emergency services TS 23.003CR0619
  • Visited Country FQDN for SNPN N3IWF TS 23.003CR0609
Rel-18 8 changes

In Release 18, the ERP function was enhanced with new support for slice-specific and SNPN (Standalone Non-Public Network) identifiers in the N3IWF FQDN (Fully Qualified Domain Name) configuration, including FQDNs with onboarding support. This builds upon the existing baseline capabilities for a UE to search for, synchronise with, and register (with authentication) to a network. The release also provided a clarification on authentication procedures and updated the note on UE-configured N3IWF FQDN.

  • Slice-specific N3IWF FQDNs TS 23.003CR0647
  • N3IWF FQDN with Onboarding support TS 23.003CR0652
  • FQDN for SNPN N3IWF supporting Onboarding TS 23.003CR0674
  • SNPN Identifier based N3IWF FQDN TS 23.003CR0687
  • Updating the NOTE on UE configured N3IWF FQDN TS 23.003CR0651
  • Clarification on authentication using ePDG certificate TS 24.302CR0777

+ 2 more changes

Explore further

Broader topics and technologies where ERP plays a role.

Topics
Authentication (5G-AKA, EAP)Encryption & IntegrityLawful InterceptIoT & MTCRadio Access NetworkCore Network
Technologies
5G

Defining Specifications

3GPP specifications that define or reference ERP, with the latest known release. Sourced from the 3GPP document catalog — see methodology.

SpecificationTitleRelease
TR 21.905 vj00 3GPP Technical Terms and Definitions Rel-19
TR 22.804 vg30 5G Automation in Vertical Domains Study Rel-16
TR 22.832 vh40 Study on cyber-physical control in vertical domains Rel-17
TS 23.003 vj50 Numbering, addressing and identification in 3GPP Rel-19
TS 24.302 vj00 Access to EPC via non-3GPP networks; Stage 3 Rel-19
TS 26.114 vj10 IMS Multimedia Telephony Media Handling Rel-19
TS 26.118 vj00 Virtual Reality Media Formats Rel-19
TS 26.131 vj00 Terminal Acoustic Performance Requirements Rel-19
TS 26.132 vj00 Terminal Acoustic Test Methods Rel-19
TR 26.918 vj00 Virtual Reality Relevance Study for 3GPP Rel-19
TR 26.926 vj00 Traffic Models & Quality Evaluation for Media/XR in 5G Rel-19
TR 26.928 vj00 Study on eXtended Reality (XR) in 5G Rel-19
TR 26.955 vj00 Video Codec Analysis for 5G Services Rel-19
TR 26.956 vj01 Beyond 2D Video Formats & Codecs Study Rel-19
TR 26.962 vj00 ITT4RT Operation and Usage Guidelines Rel-19
TR 26.998 vj00 5G AR/MR Glasses Integration Study Rel-19
TS 29.273 vj10 AAA Protocols for Non-3GPP Access in EPS & 5GS NSWO Rel-19
TS 33.402 vj00 Security for non-3GPP access to EPS Rel-19
TS 36.755 vf00 US 600 MHz LTE Band 71 Technical Report Rel-15
TS 36.761 vf00 Extended-Band 12 Study Report Rel-15
TR 36.779 vh00 Upper 700MHz A Block E-UTRA Band Rel-17
TS 36.790 vf00 LAA/eLAA for CBRS 3.5GHz Band in US Rel-15
TR 37.843 vf70 AAS BS Radiated RF Requirement Background Rel-15
TR 38.892 vi00 Technical Report Rel-18
TS 43.050 vj00 GSM Transmission Planning for Speech Services Rel-19