Method for Protecting Terminal Parameter Update and Communication Apparatus

    公开(公告)号:US20230035970A1

    公开(公告)日:2023-02-02

    申请号:US17936634

    申请日:2022-09-29

    Inventor: Fei Li

    Abstract: A UDM sends a protection request message to a first AUSF; and the UDM receives a response message that is of the protection request message and that is sent by the first AUSF, and sends terminal parameters update information via an AMF corresponding to a first serving network, where the protection request message requests to protect the terminal parameters update information, and the protection request message carries the terminal parameters update information and information about the first serving network.

    COMMUNICATION METHOD, COMMUNICATION APPARATUS, AND COMMUNICATION SYSTEM

    公开(公告)号:US20250150827A1

    公开(公告)日:2025-05-08

    申请号:US19016501

    申请日:2025-01-10

    Abstract: This application provides a communication method, a communication apparatus, and a communication system. The method includes: obtaining a security policy corresponding to a quality of service flow identifier (QFI), where the security policy includes an integrity protection policy and/or a confidentiality protection policy; and performing, according to the security policy, security protection on a first data radio bearer (DRB) corresponding to the QFI. According to the technical solutions provided in this application, data security protection on a user plane at a QoS flow/DRB granularity can be implemented.

    COMMUNICATION METHOD AND APPARATUS
    15.
    发明公开

    公开(公告)号:US20240089728A1

    公开(公告)日:2024-03-14

    申请号:US18505391

    申请日:2023-11-09

    Inventor: Fei Li

    CPC classification number: H04W12/033 H04W12/041 H04W12/06 H04W12/10

    Abstract: A communication method and apparatus are provided. The method includes: A home network security endpoint receives a first request from user equipment, where the first request includes a first identifier of the user equipment. The home network security endpoint then send a second request to a first network function, where the second request includes a second identifier of the user equipment, and receive a first key from the first network function, where the first key is generated based on a cipher key, an integrity key, and a name of a serving network of the user equipment. The home network security endpoint may generate a second key based on the first key, where the second key includes an encryption protection key and/or an integrity protection key.

    SERVICE AUTHORIZATION METHOD, COMMUNICATION APPARATUS, AND SYSTEM

    公开(公告)号:US20230262459A1

    公开(公告)日:2023-08-17

    申请号:US18309530

    申请日:2023-04-28

    Inventor: Fei Li Bo Zhang

    CPC classification number: H04W12/069 H04W12/69

    Abstract: A service authorization method includes: A first network element sends a first token request to a network repository function network element. After receiving the first token request from the first network element, the network repository function network element may complete verification on validity of a network function service consumer entity by determining, through verification, whether first information of the network function service consumer entity that is carried in the first token request matches second information in a certificate in an assertion of the network function service consumer entity, and does not rely on a profile of the network function service consumer entity to verify the validity of the network function service consumer entity.

    Network Slice Authentication Method and Communications Apparatus

    公开(公告)号:US20210168139A1

    公开(公告)日:2021-06-03

    申请号:US17171675

    申请日:2021-02-09

    Inventor: Fei Li Bo Zhang

    Abstract: A service authorization method includes receiving, by a server from a client, a request requesting an access token, where the request includes slice information, performing, by the server, authentication on the client, adding, by the server, the slice information to the access token, and sending, by the server, a response message to the client when the client is authenticated, where the response message comprises the access token.

    Service instance mapping method, apparatus and system

    公开(公告)号:US10218624B2

    公开(公告)日:2019-02-26

    申请号:US15822714

    申请日:2017-11-27

    Inventor: Fei Li Yizhou Li

    Abstract: Embodiments provide a service instance mapping method, apparatus and system. The service instance mapping method includes: correlating a layer-2 service instance with a service access port of the service instance, and determining correspondence between the service access port and a service instance identifier. The method also includes mapping the service instance identifier to a service label of a packet.

    Service Instance Mapping Method, Apparatus and System
    19.
    发明申请
    Service Instance Mapping Method, Apparatus and System 有权
    服务实例映射方法,设备和系统

    公开(公告)号:US20140043972A1

    公开(公告)日:2014-02-13

    申请号:US14061535

    申请日:2013-10-23

    Inventor: Fei Li Yizhou Li

    CPC classification number: H04L47/17 H04L12/4662 H04L45/50

    Abstract: The present invention discloses a service instance mapping method, apparatus and system. The service instance mapping method includes: correlating a layer-2 service instance with a service access port of the service instance, and determining correspondence between the service access port and a service instance identifier; and mapping the service instance identifier to a service label of a packet. In embodiments of the present invention, because the service label is adopted to carry the service instance identifier, a higher service label supporting capability may be included, more service instances may be supported, and a multi-tenant requirement in a large-scale public cloud environment can be met; control protocol support is extended, and extension of a TRILL protocol can fulfill a higher service development capability.

    Abstract translation: 本发明公开了一种服务实例映射方法,装置和系统。 业务实例映射方法包括:将二层业务实例与业务实例的业务接入端相关联,确定业务接入端口与业务实例标识符的对应关系; 并将服务实例标识符映射到分组的服务标签。 在本发明的实施例中,由于采用业务标签来承载业务实例标识符,所以可以包含更高的业务标签支持能力,可以支持更多的业务实例,大规模公有云中的多租户需求 环境可以满足; 控制协议支持得到扩展,TRILL协议的扩展可以实现更高的业务开发能力。

    Identity verification method for network function service and related apparatus

    公开(公告)号:US12052233B2

    公开(公告)日:2024-07-30

    申请号:US17512627

    申请日:2021-10-27

    Inventor: Bo Zhang Fei Li

    CPC classification number: H04L63/0823 H04L63/102 H04L67/60

    Abstract: In an identity verification method for a network function service, a network element receives from a requesting network element a network function (NF) service request that includes a token, The token includes first certificate information. The network element verifies the first certificate information to determine whether an identity represented by the first certificate information is consistent with an identity of the requesting network element. When the network element determines that the identity represented by the first certificate information is inconsistent with the identity of the requesting network element, the network element rejects the NF service request.

Patent Agency Ranking