公开(公告)号：US11812265B1

公开(公告)日：2023-11-07

申请号：US17526789

申请日：2021-11-15

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Kaixiang Hu ,  Benjamin Wojtowicz ,  Upendra Bhalchandra Shevade ,  Shane Ashley Hall

IPC: H04W12/069 ,  H04W12/0471 ,  H04W12/041 ,  H04W12/082

CPC classification number: H04W12/069 ,  H04W12/041 ,  H04W12/0471 ,  H04W12/082

Abstract: Disclosed are various embodiments for certificate-based authentication in radio-based networks. In one embodiment, a request for service from a radio-based network is received from a client device. The request for service includes a secure certificate. The radio-based network includes a radio access network and an associated core network. The authenticity of the secure certificate is validated based at least in part on a certificate signature in the secure certificate signed by a certificate authority. It is determined that an entity identified in the secure certificate is permitted to access the radio-based network. Radio-based network access is provided to the client device in response to determining that the entity is permitted to access the radio-based network.

公开(公告)号：US20240406756A1

公开(公告)日：2024-12-05

申请号：US18326956

申请日：2023-05-31

Applicant: Amazon Technologies, Inc.

Inventor： Julius Mueller ,  Sigit Priyanggoro ,  Upendra Bhalchandra Shevade ,  Benjamin Wojtowicz ,  Umer Amin Chaudhary ,  Amir Muhammad Rao Sultan

IPC: H04W24/02

Abstract: Disclosed are various embodiments for integrating communication service provider (CSP)-operated radio-based networks with existing private networks. In one embodiment, one or more parameters for provisioning a private radio-based network for an organization are received via an interface. Network information regarding an existing network of the organization is received via the interface. A configuration for a network element in the existing network is generated in order to interconnect the private radio-based network with the existing network.

公开(公告)号：US12075254B1

公开(公告)日：2024-08-27

申请号：US17548282

申请日：2021-12-10

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Kaixiang Hu ,  Benjamin Wojtowicz ,  Upendra Bhalchandra Shevade ,  Shane Ashley Hall

IPC: H04W12/37 ,  H04L9/40

CPC classification number: H04W12/37 ,  H04L63/1416 ,  H04L63/20

Abstract: Disclosed are various embodiments for configurable security policies in radio-based networks. In one embodiment, a security event detection rule or a security event mitigation rule for a radio-based network is accessed. The radio-based network includes a radio access network and an associated core network. At least a portion of the radio-based network is operated by a cloud provider on behalf of an organization. A security event is detected based at least in part on the security event detection rule. At least one action is performed in response to the security event based at least in part on the security event mitigation rule.

公开(公告)号：US11937103B1

公开(公告)日：2024-03-19

申请号：US17820542

申请日：2022-08-17

Applicant: Amazon Technologies, Inc.

Inventor： Nikolay Krasilnikov ,  Theodore Joseph Maka'iwi DeRego ,  Yuan-An Liu ,  Benjamin Wojtowicz

IPC: H04W24/02 ,  G06F9/455 ,  H04L41/0895

CPC classification number: H04W24/02 ,  G06F9/45558 ,  H04L41/0895 ,  G06F2009/4557 ,  G06F2009/45595

Abstract: State information of a radio-based application, used to process messages of the application, is made accessible from a first compute instance and a second compute instance at a virtualization server. The first instance is assigned to process a first portion of a workload of the application, including a message which comprises a result of a network function executed at a network function accelerator of the server. In response to determining that a condition for migrating workload from the first compute instance has been met, an additional message of the first portion is directed to the second compute instance. The second compute instance processes the additional message using the state information.

公开(公告)号：US20230409363A1

公开(公告)日：2023-12-21

申请号：US17807343

申请日：2022-06-16

Applicant: Amazon Technologies, Inc.

Inventor： Upendra Bhalchandra Shevade ,  Ximeng Simon Yang ,  Benjamin Wojtowicz ,  Diwakar Gupta

IPC: G06F9/455 ,  G06F9/50 ,  G06F8/65

CPC classification number: G06F9/45558 ,  G06F9/5016 ,  G06F8/65 ,  G06F2009/45595

Abstract: Instructions stored at a memory of an offloading card of a server, when executed at a processor of the offloading card, perform virtualization management tasks pertaining to a compute instance launched at the server, including allocation of memory of the server to the compute instance. In response to a request from the compute instance, a network function of a radio-based application is executed at an accelerator incorporated within the offloading card.

公开(公告)号：US20230164113A1

公开(公告)日：2023-05-25

申请号：US17535564

申请日：2021-11-24

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Kaixiang Hu ,  Benjamin Wojtowicz ,  Upendra Bhalchandra Shevade ,  Shane Ashley Hall

IPC: H04L61/5007 ,  H04L101/695 ,  H04L12/46

CPC classification number: H04L61/2007 ,  H04L61/6095 ,  H04L12/4641 ,  H04L12/4633

Abstract: Disclosed are various embodiments for extending cloud-based virtual private networks to user equipment on radio-based networks. In one embodiment, a request is received from a client device for service from a radio-based network. The client device is provided with access to a virtual private cloud network through the radio-based network in response to receiving the request from the client device for service from the radio-based network. Encapsulated network traffic is forwarded from the client device to the virtual private cloud network via a network link between the radio-based network and a cloud provider network that hosts one or more resources on the virtual private cloud network.

公开(公告)号：US11356500B1

公开(公告)日：2022-06-07

申请号：US17364789

申请日：2021-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Benjamin Wojtowicz ,  Upendra Bhalchandra Shevade ,  Ximeng Simon Yang ,  Ishwardutt Parulkar

IPC: G06F15/16 ,  H04L67/10 ,  H04L67/60

Abstract: A determination is made, at a first server of an extension resource group of a provider network, that a network function of a radio-based application is to be executed. A request for the network function is transmitted from a first server to a second server of the extension resource group. The network function is executed at a network function accelerator card of the second server. A result of the execution is sent to a radio unit of the radio-based application from the second server.

公开(公告)号：US12284517B1

公开(公告)日：2025-04-22

申请号：US17526801

申请日：2021-11-15

Applicant: Amazon Technologies, Inc.

Inventor： Diwakar Gupta ,  Kaixiang Hu ,  Benjamin Wojtowicz ,  Upendra Bhalchandra Shevade ,  Shane Ashley Hall

IPC: H04M1/66 ,  H04W12/0433 ,  H04W12/069 ,  H04W12/40 ,  H04W12/69

Abstract: Disclosed are various embodiments for customer-managed authentication in radio-based networks. In one embodiment, a radio-based network is managed for an organization. The radio-based network includes a radio access network and an associated core network. A request is received from the organization to configure one or more parameters affecting primary keys in the associated core network. The primary keys correspond to pre-shared keys of client devices permitted to access the radio-based network. Storage of the primary keys is customized in the associated core network based at least in part on the one or more parameters in response to the request.

公开(公告)号：US20240406825A1

公开(公告)日：2024-12-05

申请号：US18326949

申请日：2023-05-31

Applicant: Amazon Technologies, Inc.

Inventor： Julius Mueller ,  Sigit Priyanggoro ,  Upendra Bhalchandra Shevade ,  Benjamin Wojtowicz ,  Umer Amin Chaudhary ,  Amir Muhammad Rao Sultan

IPC: H04W36/14

Abstract: Disclosed are various embodiments for intelligently selecting private radio-based networks or communication service provider (CSP)-operated radio-based networks. In one embodiment, it is determined that a particular application executed in a user equipment (UE) device requests to send data via a wireless network connection. It is determined to switch the wireless network connection in the UE device from a CSP-operated radio-based network to a private radio-based network based at least in part on the particular application or the data to be sent by the particular application. The wireless network connection is switched from the CSP-operated radio-based network to the private radio-based network. The data is sent via the wireless network connection using the private radio-based network.

公开(公告)号：US20240406813A1

公开(公告)日：2024-12-05

申请号：US18326933

申请日：2023-05-31

Applicant: Amazon Technologies, Inc.

Inventor： Julius Mueller ,  Sigit Priyanggoro ,  Upendra Bhalchandra Shevade ,  Benjamin Wojtowicz ,  Umer Amin Chaudhary ,  Amir Muhammad Rao Sultan

IPC: H04W36/00 ,  H04W8/20

Abstract: Disclosed are various embodiments for mobility between radio-based networks operated by communication service providers and private radio-based networks. In one embodiment, first data is sent or received via a private radio-based network using a wireless network connection in a user equipment (UE) device. It is determined to switch the wireless network connection in the UE device from the private radio-based network to a communication service provider (CSP)-operated radio-based network. The private radio-based network and the CSP-operated radio-based network utilize a cellular network standard. The wireless network connection switches from the private radio-based network to the CSP-operated radio-based network. Second data is sent or received via the CSP-operated radio-based network using the wireless network connection in the UE device.