Search coming soon
โ† Telecom & Networking
2GGSM โ€” Deep Dive
View Details
1991GSMTDMABSS / NSSGPRSEDGEA3/A5/A8SS7

2G / GSM: The Digital Revolution in Mobile

From Analog to Digital: The Rise of 2G

1G introduced the world to cellular networks, dividing service areas into cells powered by low-power transmitters, enabling frequency reuse and greater capacity using analog FM technology. However, its limitations in call quality, security, and data capability drove the shift to 2G in the early 1990s, which brought digital communication, clearer calls, SMS, and improved spectral efficiency โ€” laying the foundation for the modern mobile era.

Why 2G Was a Paradigm Shift

First-generation (1G) networks were analog โ€” essentially FM radio with a phone attached. They offered poor voice quality, zero privacy, and no data capability. GSM changed everything:

  • Digital encoding โ€” voice is sampled, compressed, and transmitted as bits, dramatically improving quality and reducing interference over analog signals
  • Over-the-air encryption โ€” the A5 stream cipher protects every radio frame, making passive interception computationally infeasible
  • SMS โ€” a 160-character text channel embedded in the signaling layer became one of the most-used communication media in history
  • SIM cards โ€” subscriber identity is stored separately from the handset, enabling roaming, prepaid plans, and device independence for the first time

2G Architecture

GSM Architecture โ€” Three Subsystems

Mobile Station (MS)

The handset plus its SIM card. The SIM stores the subscriber's permanent identity (IMSI), secret key (Ki), and authentication algorithms. The handset (Mobile Equipment) is identified separately by its IMEI, checked against the EIR to block stolen devices.

Base Station Subsystem (BSS)

The radio access layer. The BTS (Base Transceiver Station) is the physical antenna โ€” it sends and receives radio signals to/from handsets over the Um interface. The BSC (Base Station Controller) manages multiple BTSs: it controls frequency hopping, handles intra-BSC handovers, and connects the radio layer to the core via the A interface. The PCU (Packet Control Unit) is co-located with the BSC and handles all packet data scheduling on the radio โ€” it splits the GSM voice path from the packet data path right at the BSS boundary.

Network Switching Subsystem (NSS) โ€” The Core

The intelligence of the network. Key nodes:

  • MSC โ€” routes voice calls, manages call state, and interfaces with the PSTN; the GMSC handles incoming calls from outside the network. Packet data never passes through the MSC.
  • HLR โ€” the master subscriber database stores your phone number (MSISDN), IMSI, active services, and which VLR you are currently registered with
  • VLR โ€” a local cache co-located with the MSC; stores data for all currently attached users so the MSC avoids querying the remote HLR on every call or message
  • AUC โ€” generates authentication triplets (RAND, SRES, Kc) used to authenticate subscribers and derive per-session encryption keys
  • SGSN โ€” Serving GPRS Support Node; handles mobility, session management, and tunnelling for packet data coming from the PCU
  • GGSN โ€” Gateway GPRS Support Node; the edge router that assigns IP addresses and connects the mobile network to the internet or external data networks

Different interfaces are used in the 2G architecture to enable communication between various network components, as shown in the figure. These include the Air Interface (Um), Abis Interface, A Interface, Gb, Gn, Gi, Gr, Gs, F, C, and D interfaces.

2G Architecture Diagram

Abbreviations

AbbreviationFull FormAbbreviationFull Form
MSMobile StationBSSBase Station Subsystem
BTSBase Transceiver StationNSSNetwork Switching Subsystem
BSCBase Station ControllerPSTNPublic Switched Telephone Network
PCUPacket Control UnitGPRSGeneral Packet Radio Service
MSCMobile Switching CenterUmAir Interface (MS โ†” BTS)
VLRVisitor Location RegisterAbisInterface (BTS โ†” BSC)
HLRHome Location RegisterAInterface (BSC โ†” MSC)
AUCAuthentication CenterGbInterface (BSC/PCU โ†” SGSN)
EIREquipment Identity RegisterGsInterface (SGSN โ†” MSC/VLR)
GMSCGateway Mobile Switching CenterGrInterface (SGSN โ†” HLR)
SGSNServing GPRS Support NodeGnInterface (SGSN โ†” GGSN)
GGSNGateway GPRS Support NodeGiInterface (GGSN โ†” Internet)
IMSIInternational Mobile Subscriber IdentityCInterface (GMSC โ†” HLR)
IMEIInternational Mobile Equipment IdentityDInterface (MSC/VLR โ†” HLR)
SIMSubscriber Identity ModuleFInterface (MSC โ†” EIR)
Two Separate Data Paths โ€” Voice vs. Packet

GSM carries voice and packet data on completely separate paths that diverge at the BSC/PCU:

Circuit-Switched (Voice / SMS)
MS โ†’ BTS โ†’ BSC โ†’ MSC โ†’ GMSC โ†’ PSTN

Voice is digitised, channel-coded, and sent as a dedicated circuit through the BSC and MSC to the PSTN. The MSC controls call state for the entire session.

Packet-Switched (GPRS / EDGE Data)
MS โ†’ BTS โ†’ BSC + PCU โ†’ SGSN โ†’ GGSN โ†’ Internet

Packet data is handed to the PCU at the BSC, which schedules GPRS radio blocks. The PCU tunnels IP packets to the SGSN over the Gb interface. The SGSN manages mobility and delivers them to the GGSN, which routes them to the internet. The MSC is not involved at any step.

GSM Specification โ€” Radio Access Technology

900 MHz Band

Bandwidth25 MHz
Uplink890 โ€“ 915 MHz
Downlink935 โ€“ 960 MHz
Duplex Spacing45 MHz
ARFCN Spacing200 kHz
ARFCN Range1 โ€“ 124 (125 ร— 200 kHz โ‰ˆ 25 MHz)
ARFCN 0935.0 MHz (DL) / 890.0 MHz (UL) โ€” Reserved
Wavelengthโ‰ˆ 0.33 m
Duplex ModeFDD

1800 MHz Band

Bandwidth74.6 MHz
Uplink1710.2 โ€“ 1784.8 MHz
Downlink1805.2 โ€“ 1879.8 MHz
Duplex Spacing95 MHz
ARFCN Spacingโ‰ˆ 200 kHz
ARFCN Range512 โ€“ 885 (373 ร— 200 kHz โ‰ˆ 74.6 MHz)
ARFCN 0โ€”
Wavelengthโ‰ˆ 0.166 m
Duplex ModeFDD

Note on ARFCN 0: In the original GSM spec (3GPP TS 45.005), ARFCN 0 is technically defined but is not used for traffic in standard GSM 900. It is associated with the E-GSM extension band, not the primary GSM 900 band.

Bandwidth is the range (or width) of frequencies available for transmitting data over a communication channel.

ARFCN (Absolute Radio Frequency Channel Number) โ€” instead of stating raw frequencies like 935.2 MHz, GSM uses ARFCN numbers. For example, ARFCN 1 corresponds to 935.2 MHz.

Data Speeds

TechnologySpeed
GSM CSD (Circuit Switched Data)โ‰ˆ 9.6 Kbps
GPRS (typical)40 โ€“ 60 Kbps
GPRS (theoretical peak)171.2 Kbps
EDGEUp to 384 Kbps

GSM Call Flow

1. Mobile Power-On (Initialization)

When a mobile is powered on, it scans the Broadcast Channel (BCCH) to determine the strongest signal and locks onto the appropriate channel (ARFCN).

2. Location Update

If the mobile is in a new Location Area (LA), it performs a Location Update. The VLR updates the subscriber's location in the HLR.

3. Mobile-Originated Call (MO)
  1. The user dials a number; the MS sends a burst over the Random Access Channel (RACH) using the locked ARFCN.
  2. The BS responds with an Access Grant, assigns a dedicated channel, and commands the MS to retune to a new ARFCN.
  3. The BTS/BSC forwards the request to the MSC.
  4. The MSC checks the subscriber profile in VLR/HLR and completes authentication.
  5. The MSC responds to BSC/BTS, and the MS initiates call setup.
4. MSC Processing

The MSC determines the route:

  • If the call is to the PSTN โ†’ route via GMSC
  • If the call is to another mobile โ†’ locate the destination MSC/VLR
5. Paging

MSC โ†’ BSC โ†’ BTS sends a Paging Request to all cells in the destination subscriber's location area.

6. Destination MS Response

The destination MS responds by identifying itself over the RACH. The BS relays the acknowledgement to the MSC.

An alert message is transmitted over the forward voice channel, instructing the originating mobile to ring. All these events occur within a second and are not noticeable to the user. Once the call is in progress, the MSC adjusts the transmitted power of the mobile and performs handover whenever necessary.

Handover

The transfer of an ongoing call to a new cell or channel when the serving cell's signal quality or strength degrades below a threshold and a neighbouring cell offers better quality. Handover ensures call continuity and always occurs in active mode โ€” while a session is in progress.

Cell Selection / Reselection

The process by which the mobile station autonomously selects the best available cell based on received signal strength and quality. Cell selection occurs at power-on or when leaving coverage; reselection occurs when a neighbouring cell consistently offers better radio conditions. Both processes always occur silently in idle mode, when no active session is in progress.