Step 1:	Upon obtaining the message $\left\{A_i, DI{D}_i, T_1, M_1, I{D}_{S{N}_j}, I{D}_{GW{N}_j}\right\}$ from $U_i$, the $BS$ checks if $T_2-T_1\le ∆T$ holds. If this does not true then session expires. Otherwise, $BS$ calculates $\left(I{D}_i \Vert R_U\right)=DI{D}_i\oplus h(h(A_i\Vert X) \Vert T_1)$ and computes $M_1^{*}=h\left(R_U \Vert I{D}_i \Vert T_1 \Vert h(A_i\Vert X\right))$, then verifies if $M_1^{*}$ equals $M_1$ or not. If this holds, $BS$ goes to next step. Otherwise, the session is rejected.
Step 2:	Now, $BS$ generates a random nonce $R_{BS}$ and computes a new $A_i^{new}$, where $A_i^{new}$=$h\left(R_U\Vert h\left(A_i\Vert X\right)\right).$ Then, $BS$ computes $M_2$=$h\left(A_i^{new}\Vert X\right)$⊕$h\left(h\left(A_i\Vert X\right)\Vert R_{BS}\right)$, $M_3=\left(R_U \Vert R_{BS} \Vert I{D}_i\right)\oplus h\left(X_{BS-GW{N}_j}\Vert T_3\right)$, $M_4=h\left(M_1\Vert M_2\Vert I{D}_i\Vert T_3\Vert R_{BS}\Vert R_U\right)$ and $M_5=R_{BS}$ ⊕ $h\left(h\left(I{D}_{S{N}_j}\Vert X\right) \Vert T_3\right)$ and sends $\left\{ M_1, M_2, M_3, M_4, M_5, T_3\right\}$ to $GW{N}_j$ via public channel.
Step 3:	After getting the request message from $BS$, the $GW{N}_j$ checks if $T_4-T_3\le ∆T$ holds. If this does not true then session expires. Otherwise, $GW{N}_j$ calculates $\left(R_U\Vert R_{BS}\Vert I{D}_i\right)=M_3\oplus h\left(X_{BS-GW{N}_j}\Vert T_3\right)$ and $M_4^{*}=h\left(M_1\Vert M_2\Vert I{D}_i\Vert T_3\Vert R_{BS}\Vert R_U\right)$, then checks if $M_4^{*}{ }_{=}^{?} M_4$ holds. If the condition is true then it proceeds further. Otherwise, the session is terminated.
Step 4:	Now, the $GW{N}_j$ generates a random nonce $R_{GW{N}_j}$, calculates $M_6$= $\left(R_U\Vert R_{GW{N}_j}\Vert I{D}_i\right)\oplus h\left(R_{BS}\Vert M_5\Vert T_5\right)$ and $M_7=h\left(M_1\Vert M_2\Vert R_{BS}\Vert R_{GW{N}_j}\Vert I{D}_i\Vert R_U\right)$, then sends $\left\{ M_1, M_2, M_5, M_6, M_7, T_3, T_5\right\}$ to $S{N}_j$.
Step 5:	Upon obtaining the message from $GW{N}_j$, the $S{N}_j$ checks if $T_6-T_5\le ∆T$ holds. If this does not true then session expires. Otherwise, $S{N}_j$ calculates $R_{BS}^{*}=M_5\oplus h\left(R{I}_j \Vert T_3\right)$, $\left(R_U \Vert R_{GW{N}_j}\Vert I{D}_i\right)=M_6\oplus h\left(R_{BS}^{*} \Vert M_5 \Vert T_5\right)$ and $M_7^{*}=h\left(M_1 \Vert M_2 \Vert R_{BS}^{*} \Vert R_{GW{N}_j}\Vert I{D}_i \Vert R_U\right)$. Then, $S{N}_j$ verifies if $M_7^{*}{ }_{=}^{?} M_7$ holds. If the condition is true then it proceeds further. Otherwise, the session is terminated.
Step 6:	Now, the $S{N}_j$ generates a random nonce $R_{S{N}_j}$, computes $M_8=R_{S{N}_j}\oplus h\left(R_{GW{N}_j}\Vert R_{BS}^{*} \Vert T_7\right)$, $SK=h\left(R_{GW{N}_j}\Vert R_U \Vert R_{S{N}_j}\Vert R_{BS}^{*} \Vert I{D}_i \Vert M_1\right)$ and $M_9=h\left(SK \Vert R_{BS}^{*} \Vert R_{U }\Vert M_2 \Vert T_7\right)$. Then, $S{N}_j$ sends $\left\{ M_1, M_2, M_8, M_9, T_7 \right\}$ to $GW{N}_j$.
Step 7:	Upon receiving the message from $S{N}_j$, $GW{N}_j$ firstly verifies if $T_8-T_7\le ∆T$ holds. If this is not true then the session expires. Otherwise, $GW{N}_j$ calculates $R_{S{N}_j}^{*}=M_8\oplus h\left(R_{GW{N}_j}\Vert R_{BS} \Vert T_7\right)$, $S{K}^{*}=h\left(R_{GW{N}_j} \Vert R_U \Vert R_{S{N}_j}^{*}\Vert R_{BS} \Vert I{D}_i \Vert M_1\right)$ and $M_9^{*}=h\left(S{K}^{*} \Vert R_{BS} \Vert R_U \Vert M_2 \Vert T_7\right)$, then checks if $M_9^{*}{ }_{=}^{?} M_9$ holds. If the condition is true then further is proceeded. Otherwise, the session is terminated.
Step 8:	The $GW{N}_j$ computes $M_{10}=h\left(R_U \Vert I{D}_i\right)\oplus \left(R_{GW{N}_j}\Vert R_{S{N}_j}^{*}\Vert R_{BS}\right)$ and $M_{11}= h\left(R_U \Vert R_{S{N}_j}^{*}\Vert M_2 \Vert SK \Vert T_9\right)$. Then, $GW{N}_j$ sends $\left\{ M_2, M_{10}, M_{11}, T_9 \right\}$ to $U_i$.
Step 9:	Upon receiving the message from $GW{N}_j$, $U_i$ firstly verifies if $T_8-T_7\le ∆T$ holds. If this does not true then session expires. Otherwise, $U_i$ computes $\left(R_{GW{N}_j}\Vert R_{S{N}_j}^{*}\Vert R_{BS}\right)$=$h\left(R_U\Vert I{D}_i\right)$⊕$M_{10}$, $S{K}^{*}$=$h\left(R_{GW{N}_j}\Vert R_U\Vert R_{S{N}_j}^{*}\Vert R_{BS}\Vert I{D}_i\Vert M_1\right)$, $h\left(A_i^{new} \Vert X\right)=M_2\oplus h\left(h\left(A_i\Vert X\right) \Vert R_{BS}\right)$, $M_{11}^{*}=h\left(R_U \Vert R_{S{N}_j}^{*}\Vert M_2 \Vert S{K}^{*}\Vert T_9\right)$ and verifies if $M_{11}^{*}{ }_{=}^{?} M_{11}$ holds. If the condition is true then mutual authentication and session key agreement holds. Otherwise, the session is terminated.
Step 10:	The $U_i$ computes $B_i^{new}=h\left(A_i^{new} \Vert X\right)\oplus h\left(I{D}_i\Vert RP{W}_i\right)$ and $D_i^{new}=h\left(A_i^{new} \Vert RP{W}_i \Vert I{D}_i\right)$. Then, $U_i$ replaces $A_i,B_i,D_i$ with $A_i^{new}$, $B_i^{new}$, $D_i^{new}$, respectively.