Overview The Generic Key Exchange Protocol belongs to the Security Layer of the cdma2000 High Rate Packet Data air interface defined in X[1]X. The Generic Key Exchange Protocol provides a method for generating and exchanging Session Key between the access terminal and the access network based on a Pairwise Master Key. The Pairwise Master Key is negotiated by higher layer protocols. The Generic Key Exchange Protocol performs the following functions: ? Proves that both access terminal and access network have the same Pairwise Master Key. ? Derives Session Key(s) from the Pairwise Master Key and nonces that are exchanged between the access network and access terminal. ?Protects against a man-in-the-middle attack where a rogue entity causes the access terminal and the access network to agree upon a weaker security protocol. The Generic Key Exchange Protocol can generate multiple Session Keys from the Pairwise Master Key and store the Session Keys as part of the session. This allows the access network and the access terminal to later switch to a new Session Key without having to execute the key exchange procedures again.