公开(公告)号：US12167241B2

公开(公告)日：2024-12-10

申请号：US17675436

申请日：2022-02-18

Applicant: Nokia Technologies Oy

Inventor： Chaitanya Aggarwal ,  Saurabh Khare ,  Anja Jerichow ,  Gerald Kunzmann ,  Yannick Lair

IPC: H04W12/069 ,  H04L9/40 ,  H04W12/08

Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising means for receiving from a requesting network function, by a network repository function, an access token request, wherein the access token request is related to a network function consumer requesting access to a service provided by a network function producer and comprises an identity of a vendor of the network function consumer requesting access to the service, means for verifying by the network repository function, based at least on the identity of the vendor of the network function consumer, that the network function consumer is allowed to access the service and means for transmitting to the requesting network function, by the network repository function, an access token upon successful verification, wherein the access token generated and signed by the network repository function comprises the identity of the vendor of the network function consumer and an identity of the vendor of the network function producer.

公开(公告)号：US12047780B2

公开(公告)日：2024-07-23

申请号：US17568144

申请日：2022-01-04

Applicant: Nokia Technologies Oy

Inventor： Saurabh Khare ,  Chaitanya Aggarwal ,  Anja Jerichow ,  Gerald Kunzmann

IPC: H04W12/084 ,  H04W8/18 ,  H04W12/02 ,  H04W12/082 ,  H04W12/60

CPC classification number: H04W12/084 ,  H04W8/18 ,  H04W12/02 ,  H04W12/082 ,  H04W12/60

Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising means for receiving, by a network function configured to provide centralized user consent authorization in a cellular communication system, a user consent authorization request from a logical network entity, wherein the user consent authorization request comprises an identity of at least one user equipment whose user consent is requested by the logical network entity, the logical network entity being a network function service consumer or an application function, means for retrieving user consent information concerning the at least one user equipment whose user consent is requested by the logical network entity, wherein said user consent information indicates individually whether the logical network entity is authorized to access data related to each of the at least one user equipment, means for determining, based on said user consent information, whether the logical network entity is authorized to access data related to each of the at least one user equipment and means for transmitting, based on said determination, a response signed by the network function to the logical network entity.

公开(公告)号：US11991660B2

公开(公告)日：2024-05-21

申请号：US17487482

申请日：2021-09-28

Applicant: Nokia Technologies Oy

Inventor： Thomas Belling ,  Bruno Landais ,  Saurabh Khare ,  Anja Jerichow

IPC: H04W12/08 ,  H04L9/40 ,  H04W8/00 ,  H04W60/04 ,  H04W84/04

CPC classification number: H04W60/04 ,  H04L63/20 ,  H04W8/005 ,  H04W12/08 ,  H04W84/042

Abstract: There is provided an apparatus configured to receive, from a first network entity associated with a first domain in a communication network, a request to communicate; determine a second network entity to which to send the request; determine that the second network entity is associated with a second domain in the communication network; and enforce at least one access policy for routing the request to the network entity, wherein the apparatus is a first service communication proxy trusted in both the first and second domains.

公开(公告)号：US11979783B2

公开(公告)日：2024-05-07

申请号：US17399399

申请日：2021-08-11

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Saurabh Khare ,  Yannick Lair ,  Shubhranshu Singh ,  Laurent Thiebaut ,  Cinzia Sartori ,  Anja Jerichow

IPC: H04W36/00

CPC classification number: H04W36/0083 ,  H04W36/0055

Abstract: If a first condition for a handover of an analytics calculation for a user equipment by an analytics function is met, the analytics function requests, of at least one other analytics function of the communication network, preparation of the handover of the analytics calculation. If a second condition for the handover of the analytics calculation is met, the analytics function confirms the handover to one of the at least one other analytics function, the analytics calculation for the user equipment at the analytics function being deemed complete.

公开(公告)号：US20240098080A1

公开(公告)日：2024-03-21

申请号：US18465628

申请日：2023-09-12

Applicant: Nokia Technologies Oy

Inventor： Topuri BRAHMAIAH ,  Sireesha Bommisetty ,  German Peinado Gomez ,  Mallikarjunudu Makham ,  Saurabh Khare

IPC: H04L9/40

CPC classification number: H04L63/0823

Abstract: Inter-alia, methods and apparatuses are disclosed for authorization of a network function consumer by a network function provider.

公开(公告)号：US11765618B2

公开(公告)日：2023-09-19

申请号：US17201932

申请日：2021-03-15

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Bruno Landais ,  Saurabh Khare

IPC: H04W28/02 ,  H04L69/22 ,  H04L67/56 ,  H04L69/24

CPC classification number: H04W28/0289 ,  H04L67/56 ,  H04L69/22 ,  H04L69/24

Abstract: There is provided an apparatus with means for issuing (S601) a request message to a first proxy function for forwarding to a network server. The means are further configured for receiving (S603) a response message from the first proxy function. The response message comprises information about a signalling capacity of the first proxy function.

公开(公告)号：US20230099468A1

公开(公告)日：2023-03-30

申请号：US17479867

申请日：2021-09-20

Applicant: Nokia Technologies Oy

Inventor： Saurabh Khare ,  Bruno Landais ,  Anja Jerichow ,  Laurent Thiebaut ,  Georgios Gkellas

IPC: H04W8/02 ,  H04W48/16 ,  H04W8/18

Abstract: There is provided an apparatus comprising at least one processor and at least one memory including a computer program code, the at least one memory and computer program code configured to, with the at least one processor, cause the apparatus at least to: receive, at a first network repository function in a first network from a security edge protection proxy in a second network, a request for discovering one or more roaming hubs and/or security edge protection proxies in the first network; and send, from the first network repository function to the security edge protection proxy in the second network, a response comprising information identifying the one or more roaming hubs and/or security edge protection proxies in the first network and information identifying one or more further networks which can be reached via a respective roaming hub and/or security edge protection proxy in the first network.

公开(公告)号：US11533358B1

公开(公告)日：2022-12-20

申请号：US17477735

申请日：2021-09-17

Applicant: Nokia Technologies Oy

Inventor： Saurabh Khare ,  Bruno Landais ,  Anja Jerichow ,  Laurent Thiebaut ,  Georgios Gkellas

IPC: H04L67/02 ,  H04L69/22 ,  H04L69/329

Abstract: Systems, methods, and software for inter-PLMN communications. In one embodiment, a roaming hub receives a message from a sending entity across an N32 interface, and determines whether the message includes an HTTP custom header that indicates a PLMN that is validated. When the message as received does not include the HTTP custom header, the roaming hub adds the HTTP custom header to the message that indicates the PLMN of the sending entity, integrity protects the HTTP custom header, and forwards the message toward a receiving entity.

公开(公告)号：US20250037022A1

公开(公告)日：2025-01-30

申请号：US18758848

申请日：2024-06-28

Applicant: Nokia Technologies Oy

Inventor： Chaitanya AGGARWAL ,  Saurabh Khare ,  Divya G Nair ,  Tejas Subramanya

IPC: G06N20/00

Abstract: There is provided an apparatus comprising means for: receiving a request from an analytics consumer for analytics information from a first machine learning model, obtaining the first machine learning model, obtaining a second machine learning model, the second machine learning model being trained prior to the first machine learning model, the first machine learning model and the second machine learning model having the same analytics identifier; obtaining a first inference output from the first machine learning model and a second inference output from the second machine learning model, determining, based on the first inference output and the second inference output that the first machine learning model has been attacked and providing an indication to a network entity that the first machine learning model has been attacked.

公开(公告)号：US12192359B2

公开(公告)日：2025-01-07

申请号：US17550549

申请日：2021-12-14

Applicant: Nokia Technologies Oy

Inventor： Chaitanya Aggarwal ,  Anja Jerichow ,  Saurabh Khare

IPC: H04L9/32

Abstract: According to an example aspect of the present invention, there is provided an apparatus configured at least to: receive, from a service communication proxy, a request for an access token which authorizes access to a service at a network function provider, transmit an authorization token to the service communication proxy, the authorization token being specific to the request, and provide the access token to the service communication proxy responsive to determining that a cryptographic signature of a network function consumer on a signed version of the authorization token, received in the apparatus from the service communication proxy, is correct. The apparatus may work in a network serving user equipments, for example.