Methods are provided for a User Equipment, UE, in NR RRC to revert back to an old security context if an RRC Resume procedure from an inactive state fails. In this way, any subsequent Resume attempts by the UE will derive new security keys from the old keys, which means that the keys and security context will be the same for each attempt. In this way, the security context in the UE will remain synchronized with the network security context, regardless of how many attempts the UE has performed (assuming the network does not change the security context when the Resume procedure fails). Alternatively, the UE may store the new security context it derives during the first Resume attempt, and then ensure that it is reused at subsequent Resume attempts.