公开(公告)号：US20240414536A1

公开(公告)日：2024-12-12

申请号：US18808879

申请日：2024-08-19

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Jean-Marc PADOVA ,  Li LI ,  Shu GUO

IPC: H04W12/069 ,  H04L9/32 ,  H04L9/40 ,  H04W8/20 ,  H04W12/041 ,  H04W12/0431

Abstract: This application sets forth techniques for authenticating a mobile device with a cellular wireless network without electronic Subscriber Identity Module (eSIM) credentials by using an Extensible Authentication Protocol Transport Layer Security (EAP-TLS) procedure. The mobile device authenticates with an Authentication Server Function (AUSF) of the cellular wireless network using an embedded Universal Integrated Circuit Card (eUICC) certificate. Processing circuitry of the mobile wireless device external to the eUICC implements the EAP-TLS procedure and authenticates validity of the AUSF. In some embodiments, the eUICC provides key generation and storage for a session key for communication between the mobile device and the cellular wireless network. In some embodiments, a third-party managed Unified Data Management (UDM) broker authenticates the mobile device based on knowledge of the eUICC certificate and provides a session key to the cellular wireless network for subsequent communication with the mobile device, upon successful authentication of the mobile device.

公开(公告)号：US20240251238A1

公开(公告)日：2024-07-25

申请号：US17759877

申请日：2021-08-06

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Haitong SUN ,  Huarui LIANG ,  Lanpeng CHEN ,  Mona AGNEL ,  Robert ZAUS ,  Wei ZENG ,  Weidong YANG ,  Xiaoyu QIAO

IPC: H04W12/06 ,  H04W60/00 ,  H04W84/18

CPC classification number: H04W12/06 ,  H04W60/00 ,  H04W84/18

Abstract: An edge enabler server of an edge data network is configured to receive a verification request comprising an edge enabler client identification (EEC ID), wherein the EEC ID uniquely identifies an edge enabler client (EEC), determine whether the EEC ID is an authorized BEC ID and provide a verification response based on whether the EEC ID is authorized.

公开(公告)号：US20240137764A1

公开(公告)日：2024-04-25

申请号：US18546809

申请日：2021-02-19

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Hao DUO ,  Huarui LIANG ,  Lanpeng CHEN ,  Mona AGNEL ,  Ralf ROSSBACH ,  Sudeep MANITHARA VAMANAN ,  Xiaoyu QIAO

IPC: H04W12/069 ,  H04L9/32 ,  H04W12/106 ,  H04W12/71 ,  H04W12/72

CPC classification number: H04W12/069 ,  H04L9/3242 ,  H04W12/106 ,  H04W12/71 ,  H04W12/72

Abstract: A user equipment (UE) may attempt to access an edge data network. The UE generates a first credential based on a second credential that was generated for a procedure between the UE and a network. The UE then generates an identifier corresponding to the first credential and generates a message authentication code based on the first credential and a count, wherein the count is associated with an identifier of an edge network client running on the UE. The UE then transmits an application registration request, message to a server associated with an edge data network, the application registration request message including the count, the message authentication code, the identifier corresponding to the first credential, and a public land mobile network identifier (PLMN ID) of the network. The UE then receives an authentication accept message or an authentication reject message from the server associated with the edge data network.

公开(公告)号：US20230345236A1

公开(公告)日：2023-10-26

申请号：US17995369

申请日：2020-04-08

Applicant: Apple Inc.

Inventor： Yuqin CHEN ,  Birgit BREINING ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Longda XING ,  Rama Diwakara Rao NOOLU ,  Sethuraman GURUMOORTHY ,  Shu GUO ,  Srirang A. LOVLEKAR ,  Zhibin WU

IPC: H04W12/037 ,  H04W76/14 ,  H04W76/30 ,  H04W12/106 ,  H04L9/08

CPC classification number: H04W12/037 ,  H04W76/14 ,  H04W76/30 ,  H04W12/106 ,  H04L9/0891

Abstract: The exemplary embodiments relate to a computer-readable storage medium, a device, an integrated circuit and a method that perform operations related to a first user equipment (UE) configured with a sidelink (SL) connection with a second UE. The operations include generating an SL counter check request including at least a first count for data transmissions from the first UE to the second UE as determined by the first UE. The operations further include transmitting the request to the second UE and receiving a counter check response to the request, the response comprising at least a second count for data transmissions from the first UE to the second UE as determined by the second UE. The operations further include determining a first difference between the first count and the second count and, when the first difference exceeds a threshold, releasing the SL connection with the second UE.

公开(公告)号：US20220312188A1

公开(公告)日：2022-09-29

申请号：US17593485

申请日：2020-09-16

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Huarui LIANG ,  Mona AGNEL ,  Ralf ROSSBACH ,  Sudeep Manithara VAMANAN ,  Yuqin CHEN

IPC: H04W8/22 ,  H04W60/00

Abstract: A network receives an indication of user consent from a user equipment (UE) to access UE information for the purposes of edge computing. The network receives an indication of user consent from a UE, the user consent corresponding to a network function acquiring UE information, receives the UE information and performs operations related to establishing a connection between the UE and an edge data network.

公开(公告)号：US20220303936A1

公开(公告)日：2022-09-22

申请号：US17593452

申请日：2020-10-29

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Huarui LIANG ,  Yuqin CHEN

IPC: H04W60/06 ,  H04W76/10

Abstract: A user equipment (UE) establishes a first type of connection to a first public land mobile network (PLMN), the first type of connection having a first non-access stratum (NAS) Count pair corresponding to a first NAS security context associated with the first PLMN, establishes a second type of connection to a second PLMN, wherein a previous second type of connection was established with the first PLMN, wherein the previous second type of connection has a second NAS Count pair corresponding to the first NAS security context, wherein the second type of connection has a third NAS Count pair corresponding to a second NAS security context associated with the second PLMN and deregisters the previous second type of connection with the first PLMN to reset the second NAS count pair at the first PLMN.

公开(公告)号：US20220303767A1

公开(公告)日：2022-09-22

申请号：US17593460

申请日：2020-08-06

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Huarui LIANG ,  Mona AGNEL ,  Ralf ROSSBACH ,  Sudeep Manithara VAMANAN ,  Xiangying YANG ,  Yuqin CHEN

IPC: H04W12/06 ,  H04W12/08

Abstract: A user equipment (UE) may attempt to access an edge data network. The UE generates a first credential based on a second credential, the second credential generated for a procedure between the UE and a cellular network, generating an identifier corresponding to the first credential, and generates a multi-access edge computing (MEC) authorization parameter. The UE then transmits an application registration request message to a server associated with an edge data network, the application registration request message including an indication of the first credential, the identifier corresponding to the first credential and the first authorization parameter. The UE then receives an authentication accept message or an authentication reject message from the server associated with the edge data network.

公开(公告)号：US20210021993A1

公开(公告)日：2021-01-21

申请号：US17042859

申请日：2018-03-27

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Lijia ZHANG ,  Dawei ZHANG ,  Huarui LIANG ,  Shu GUO ,  Rohan C. MALTHANKAR ,  Krisztian KISS

IPC: H04W12/02 ,  H04W12/00 ,  H04W12/04

Abstract: Techniques to protect subscriber identity in messages communicated between a user equipment (UE) and a cellular wireless network entity by using multiple ephemeral asymmetric keys are disclosed. The UE determines multiple ephemeral UE public and secret key pairs, while the cellular wireless network entity provides a network public key to the UE. The network public key may be updated over time. Multiple encryption keys based on the multiple ephemeral UE secret keys and the public network key are derived and used to encrypt a subscription permanent identifier (SUPI) to generate multiple subscription concealed identifiers (SUCIs). Each SUCI is used only once for messages communicated to a cellular wireless network and discarded after use. New SUCI are generated when the network public key is updated.