公开(公告)号：US20230284028A1

公开(公告)日：2023-09-07

申请号：US18314219

申请日：2023-05-09

Applicant: Verizon Patent and Licensing Inc.

Inventor： Vinod Kumar Choyi ,  Kristen Sydney Young ,  Yousif Targali ,  Michael A. Gallagher

IPC: H04W12/12 ,  H04W12/60 ,  H04L9/40 ,  H04W28/08

CPC classification number: H04W12/12 ,  H04W12/66 ,  H04L63/20 ,  H04W28/0835 ,  H04W28/0831

Abstract: Systems and methods enable the provisioning of security as a service for network slices. A network device stores definitions of multiple security assurance levels for network slices based on security parameters of assets used in the network slices. The network device stores multiple network slice templates, wherein the multiple network slice templates have different security assurance levels, of the multiple security assurance levels, for a Network Service Descriptor (NSD). The network device receives a request for a network slice with a requested security assurance level, of the multiple security assurance levels, for the NSD, and deploys the network slice using one of the network slice templates that has a security assurance level that corresponds to the requested security assurance level. The network device monitors the security parameters of the assets of the network slice for changes to the security assurance level of the deployed network slice.

公开(公告)号：US11683691B2

公开(公告)日：2023-06-20

申请号：US17143589

申请日：2021-01-07

Applicant: Verizon Patent and Licensing Inc.

Inventor： Vinod Kumar Choyi ,  Kristen Sydney Young ,  Yousif Targali ,  Michael A. Gallagher

IPC: H04W12/12 ,  H04W12/60 ,  H04W28/08 ,  H04L9/40

CPC classification number: H04W12/12 ,  H04L63/20 ,  H04W12/66 ,  H04W28/0831 ,  H04W28/0835

Abstract: Systems and methods enable the provisioning of security as a service for network slices. A network device stores definitions of multiple security assurance levels for network slices based on security parameters of assets used in the network slices. The network device stores multiple network slice templates, wherein the multiple network slice templates have different security assurance levels, of the multiple security assurance levels, for a Network Service Descriptor (NSD). The network device receives a request for a network slice with a requested security assurance level, of the multiple security assurance levels, for the NSD, and deploys the network slice using one of the network slice templates that has a security assurance level that corresponds to the requested security assurance level. The network device monitors the security parameters of the assets of the network slice for changes to the security assurance level of the deployed network slice.

公开(公告)号：US20230128578A1

公开(公告)日：2023-04-27

申请号：US17511938

申请日：2021-10-27

Applicant: Verizon Patent and Licensing Inc.

Inventor： David Robert Lenrow ,  Kalyani Bogineni ,  Vinod Kumar Choyi ,  Jeffrey Melrose ,  Yousif Targali ,  Deepa Jagannatha

IPC: H04W12/088 ,  H04L12/801 ,  H04W12/06 ,  H04W12/37

Abstract: Systems and methods described herein enforce access controls for network slices via proxy in a secure enclave of a user equipment (UE) device. A UE device executes, in a rich execution environment (REE), a function or application designated for using one or more secure network slices of a telecommunications network. The UE device executes, in a trusted execution environment (TEE), a slice admission control proxy (SACP) to perform admission control for the one or more secure network slices, and forces network traffic for the function or application through the SACP.