-
公开(公告)号:US20220360586A1
公开(公告)日:2022-11-10
申请号:US17736622
申请日:2022-05-04
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Suresh NAIR , Saurabh KHARE , Anja JERICHOW , Laurent THIEBAUT
Abstract: There is provided a method, apparatus and computer program product for causing a network repository function to perform: receiving, from a network function service consumer, an access request for an access authorization token, the request comprising a first identification of the network function service consumer and a first identification of at least one network slice on which access is requested; generating an access token in response to the request, the access token comprising at least one network slice identifier for the at least one network slice identified by the first identification; and providing the generated access token to the network function in response to the request for an access authorization token.
-
公开(公告)号:US20220217539A1
公开(公告)日:2022-07-07
申请号:US17568144
申请日:2022-01-04
Applicant: Nokia Technologies Oy
Inventor: Saurabh KHARE , Chaitanya AGGARWAL , Anja JERICHOW , Gerald KUNZMANN
IPC: H04W12/084 , H04W12/02 , H04W12/082 , H04W12/60 , H04W8/18
Abstract: According to an example aspect of the present invention, there is provided an apparatus comprising means for receiving, by a network function configured to provide centralized user consent authorization in a cellular communication system, a user consent authorization request from a logical network entity, wherein the user consent authorization request comprises an identity of at least one user equipment whose user consent is requested by the logical network entity, the logical network entity being a network function service consumer or an application function, means for retrieving user consent information concerning the at least one user equipment whose user consent is requested by the logical network entity, wherein said user consent information indicates individually whether the logical network entity is authorized to access data related to each of the at least one user equipment, means for determining, based on said user consent information, whether the logical network entity is authorized to access data related to each of the at least one user equipment and means for transmitting, based on said determination, a response signed by the network function to the logical network entity.
-
公开(公告)号:US20220191028A1
公开(公告)日:2022-06-16
申请号:US17550549
申请日:2021-12-14
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Anja JERICHOW , Saurabh KHARE
IPC: H04L9/32
Abstract: According to an example aspect of the present invention, there is provided an apparatus configured at least to: receive, from a service communication proxy, a request for an access token which authorizes access to a service at a network function provider, transmit an authorization token to the service communication proxy, the authorization token being specific to the request, and provide the access token to the service communication proxy responsive to determining that a cryptographic signature of a network function consumer on a signed version of the authorization token, received in the apparatus from the service communication proxy, is correct. The apparatus may work in a network serving user equipments, for example.
-
公开(公告)号:US20250126030A1
公开(公告)日:2025-04-17
申请号:US18292267
申请日:2021-10-07
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Saurabh KHARE , Gerald KUNZMANN , Muhammad Majid BUTT
IPC: H04L41/5051 , H04L9/08
Abstract: The disclosure relates to an apparatus comprising at least one processor and at least one memory including computer code for one or more programs, the at least one memory and the computer code configured, with the at least one processor, to cause the apparatus at least to: receive (500), from a model provider function, a user equipment identifier and a model identifier; generate (502) an access key to allow a user equipment identified by the user equipment identifier to access a model identified by the model identifier; store (504) the user equipment identifier and the model identifier along the access key to allow a user equipment identified by the user equipment identifier to access a model identified by the model identifier; and send (506), to the user equipment, the access key.
-
公开(公告)号:US20250031037A1
公开(公告)日:2025-01-23
申请号:US18779223
申请日:2024-07-22
Applicant: Nokia Technologies Oy
Inventor: Saurabh KHARE , Chaitanya AGGARWAL
IPC: H04W12/065 , H04W12/69
Abstract: There is provided an apparatus (200, 300) comprising: means for transmitting a registration message, to an access and mobility management function, indicating whether the apparatus supports user authentication information sharing; means for receiving a request, from the access and mobility management function, requesting the apparatus to authenticate a user of the apparatus; means for authenticating the user based on the request; means for generating user authentication data; and means for transmitting the user authentication data to the access and mobility management function.
-
Patent Agency Ranking
公开(公告)号:US20240046153A1
公开(公告)日:2024-02-08
申请号:US18364864
申请日:2023-08-03
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Saurabh KHARE , Tejas SUBRAMANYA
CPC classification number: G06N20/00 , H04L41/145 , H04L41/16
Abstract: Example embodiments of the present disclosure relate to abnormal model behavior detection. A first apparatus obtains a machine learning model and expected behavior information of the machine learning model. The first apparatus monitors behavior information of the machine learning model during execution of the machine learning model; and determines occurrence of an abnormal behavior of the machine learning model during the execution by comparing the monitored behavior information with the expected behavior information.
-
公开(公告)号:US20230413052A1
公开(公告)日:2023-12-21
申请号:US18337194
申请日:2023-06-19
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Saurabh KHARE , Gerald KUNZMANN , Iris ADAM
IPC: H04W12/082 , H04W12/084
CPC classification number: H04W12/082 , H04W12/084
Abstract: Example embodiments of the present disclosure relate to access token revocation in security management. In an example method, in response to providing, to a second device, an access token for the second device to access a NF service from a third device, a first device stores a mapping indicating an association among the access token, the second device and the third device. In response to determining that the second device is abnormal, the first device sends, to at least one target device based on the mapping, an indication of revoking the access token. In this way, at least one target device associated with revoked access token can be informed and potential damage caused by the abnormal NF can be eliminated.
-
公开(公告)号:US20230370525A1
公开(公告)日:2023-11-16
申请号:US18304543
申请日:2023-04-21
Applicant: Nokia Technologies Oy
Inventor: Saurabh KHARE , Chaitanya AGGARWAL
Abstract: Embodiments of the present disclosure relate to terminal device authorization for requesting analytics. A terminal device transmits a subscription for an analytics with an analytics identity to a Unified Data Management (UDM), receives a subscribed analytics identity from the UDM, according to the subscription for the analytics, transmits a request comprising the analytics identity to a Session Management Function (SMF) or an Application Function (AF), and receives analytics result data from the SMF or the AF, according to the the analytics identity after authorization of the request. The terminal device authorization for requesting analytics as provided in the present disclosure is more secure.
-
公开(公告)号:US20230361989A1
公开(公告)日:2023-11-09
申请号:US18312627
申请日:2023-05-05
Applicant: Nokia Technologies Oy
Inventor: Chaitanya AGGARWAL , Saurabh KHARE , German PEINADO GOMEZ
CPC classification number: H04L9/0822 , H04L9/3213 , G06F21/6209
Abstract: There is provided a method, computer program, and an apparatus for a network function service consumer, that causes the apparatus to perform: retrieving, from a first repository function, protected sensitive data; retrieving, from a second network function, at least one encrypted key; decrypting the retrieved at least one encrypted key using a private key associated with the network function service consumer to obtain a respective at least one key; and performing at least one of: decryption of the protected sensitive data using the at least one key to obtain sensitive data or integrity protected sensitive data; or verification of the integrity of the protected sensitive data using the at least one key.
-
公开(公告)号:US20230124206A1
公开(公告)日:2023-04-20
申请号:US18045910
申请日:2022-10-12
Applicant: Nokia Technologies Oy
Inventor: Saurabh KHARE , Chaitanya AGGARWAL , Georgios GKELLAS
IPC: H04L9/40
Abstract: There is provided an apparatus, method and computer program for a proxy function that causes the apparatus to: receive, from a network repository function, profile information relating to a network function service producer: determine from the profile information whether the network function service producer is able to use an access token for subscribing to a service that indicates a plurality of entities; select a mechanism for requesting an access token for subscribing to a service in dependence on the determination; and request, from the network repository function, a first access token for subscribing to a service on behalf of a first network function service consumer based on the selected mechanism.
-
-
-
-
-
-
-
-
-
Search Results
33
records
(took 0.034 seconds)
