Key Distribution Messages Delete the key AVPs from AMA/HAR Abandon CMS and hop-by-hop security TLS session to directly transport keys One TLS session between AAAH and FA One TLS session between AAAH and HA New Diameter commands allocated Key Request: HA or FA requests key from AAAH Key Reply: AAAH provides keys See suggested flow in subsequent slide |