公开(公告)号：US20190387264A1

公开(公告)日：2019-12-19

申请号：US16478343

申请日：2018-01-16

Applicant: ORANGE

Inventor： Emile Stephan ,  Frederic Fieau

IPC: H04N21/258 ,  H04N21/254 ,  H04N21/237 ,  H04N21/222 ,  H04L29/06

Abstract: Checking a certificate of delegation, from a first server to a second server, for delivery of content referenced on the first server, and addressed to a client terminal. The terminal: emits a first message requesting the content, addressed to the first server, via a first encrypted connection; receives a redirection message from the first server, including an identifier of a third-party server; obtains an address from the second server, based on the identifier received in the redirection message; emits a request to establish a second encrypted connection between the terminal and the second server, including an identifier of the first server; receiving a certificate of delegation signed by the first server from the second server, via the second encrypted connection; verifies the certificate by an encryption key of the first server; and if valid, emits a second message requesting content, addressed to the second server, via the second encrypted connection.

公开(公告)号：US20190081889A1

公开(公告)日：2019-03-14

申请号：US16084918

申请日：2017-03-13

Applicant: Orange

Inventor： Frederic Fieau ,  Gael Fromentoux ,  Arnaud Braud

IPC: H04L12/725 ,  H04L12/707 ,  H04L12/751 ,  H04L29/06

Abstract: The invention relates to a method for managing at least one communication pathway between a first router (30) and a second router (130), being characterised in that it comprises the following steps: establishing a session (40) between a terminal (10) connected to the first router (30) and a remote piece of equipment (70) connected to the second router (130); analysing at least one characteristic of the session (40) in order to determine whether said session (40) is collaborative and if this is the case: receiving at least one signalling message containing at least one piece of information relating to a characteristic of said session (40); determining parameters of the connection between said routers (30, 130) depending on the at least one obtained piece of information; modifying the at least one communication pathway (80) between said routers (30, 130), depending on the determined connection parameters; and transmitting the data of said session (40) over said modified communication pathway (80).

公开(公告)号：US20180183658A1

公开(公告)日：2018-06-28

申请号：US15739901

申请日：2016-06-20

Applicant: Orange

Inventor： Gael Fromentoux ,  Frederic Fieau ,  Nicolas Bihannic

IPC: H04L12/24

CPC classification number: H04L41/082 ,  H04L41/5025 ,  H04L41/5054

Abstract: Method for managing a network service that is in the process of being executed, the service consisting of a sequence of at least one virtual network function managed by an entity for managing virtual resources. The method includes the following steps implemented by an optimizing entity: receiving a stream signaling and/or characterizing a media from a virtual network function of the sequence, which function is called the “initial function”; determining, depending on the stream and a predefined management rule associated with the stream, whether or not the initial function has a sufficient capacity to stably execute the service; sending, to the entity for managing virtual resources, an update command comprising at least one action updating the sequence, the initial function being, after execution of the command, replaced or complemented in the sequence by at least one new virtual network function able to stably execute the network service.

公开(公告)号：US20230403330A1

公开(公告)日：2023-12-14

申请号：US18457669

申请日：2023-08-29

Applicant: ORANGE

Inventor： Gael Fromentoux ,  Frederic Fieau ,  Emile Stephan

IPC: H04L67/141 ,  H04L69/326 ,  H04W76/11 ,  H04W48/18 ,  H04W12/02

CPC classification number: H04L67/141 ,  H04L69/326 ,  H04W76/11 ,  H04W48/18 ,  H04W12/02

Abstract: A method for routing data of a session initialized between a terminal and a server, over a first network slice corresponding to a set of data-processing functions of a communication infrastructure, implemented by the terminal. This method includes receiving from the server at least one routing identifier determined as a function of at least one communication parameter of the session, configuring session information as a function of the at least one identifier received, and emitting to the server subsequent data routed over at least one second slice corresponding to the configured information.

公开(公告)号：US11349750B2

公开(公告)日：2022-05-31

申请号：US16084918

申请日：2017-03-13

Applicant: Orange

Inventor： Frederic Fieau ,  Gael Fromentoux ,  Arnaud Braud

IPC: H04L45/30 ,  H04L45/00 ,  H04L45/24 ,  H04L45/02 ,  H04L65/1069

Abstract: The invention relates to a method for managing at least one communication pathway between a first router (30) and a second router (130), being characterised in that it comprises the following steps: establishing a session (40) between a terminal (10) connected to the first router (30) and a remote piece of equipment (70) connected to the second router (130); analysing at least one characteristic of the session (40) in order to determine whether said session (40) is collaborative and if this is the case: receiving at least one signalling message containing at least one piece of information relating to a characteristic of said session (40); determining parameters of the connection between said routers (30, 130) depending on the at least one obtained piece of information; modifying the at least one communication pathway (80) between said routers (30, 130), depending on the determined connection parameters; and transmitting the data of said session (40) over said modified communication pathway (80).

公开(公告)号：US11272404B2

公开(公告)日：2022-03-08

申请号：US16628510

申请日：2018-06-22

Applicant: ORANGE

Inventor： Youssef Chadli ,  Adrien Marechal ,  Frederic Fieau ,  Taoufik En-Najjary

IPC: H04W28/26 ,  H04L12/14 ,  H04W72/04 ,  H04W72/08

Abstract: A method for reserving physical resource blocks of a mobile access network, implemented by a content server configured to send a data stream requested by a terminal connected to the mobile access network with a determined level of quality. The method includes: determining a value of a number of blocks to be reserved, as a function of parameters related to the data stream, and the determined level of quality; sending a first request for reserving resource blocks, including the determined value of the number of blocks to be reserved, to a control entity of the mobile access network; and receiving a response for allocating resource blocks originating from the control entity, including a value of a number of blocks allocated to the content server.

公开(公告)号：US20210273882A1

公开(公告)日：2021-09-02

申请号：US17254553

申请日：2019-06-07

Applicant: ORANGE

Inventor： Emile Stephan ,  Frederic Fieau ,  Gael Fromentoux

IPC: H04L12/725 ,  H04L12/751

Abstract: A method allowing execution of transmission functions hosted in intermediate pieces of equipment of a path established between two pieces of communication equipment. End-to-end encryption systems are designed to resist any surveillance or tampering attempt, as no third party can decrypt or modify the communicated data. There is a solution which, depending on the connection opening requests of the applications, allows to select and assemble the transport protocols necessary for the operation of the application. However, this method is local: this protocol stack is only assembled at the pieces of communication equipment constituting the ends of the connections. Consequently, the requests emitted by these applications are not transmitted to the intermediate pieces of equipment which host the desired functions. The method allowing execution of transmission functions allows to re-establish cooperation between pieces of communication equipment, constituting the ends of a connection, with intermediate nodes hosting transmission functions.

公开(公告)号：US20200187057A1

公开(公告)日：2020-06-11

申请号：US16628510

申请日：2018-06-22

Applicant: ORANGE

Inventor： Youssef Chadli ,  Adrien Marechal ,  Frederic Fieau ,  Taoufik En-Najjary

IPC: H04W28/26 ,  H04W72/08 ,  H04W72/04 ,  H04L12/14

Abstract: A method for reserving physical resource blocks of a mobile access network, implemented by a content server configured to send a data stream requested by a terminal connected to the mobile access network with a determined level of quality. The method includes: determining a value of a number of blocks to be reserved, as a function of parameters related to the data stream, and the determined level of quality; sending a first request for reserving resource blocks, including the determined value of the number of blocks to be reserved, to a control entity of the mobile access network; and receiving a response for allocating resource blocks originating from the control entity, including a value of a number of blocks allocated to the content server.

公开(公告)号：US10375145B2

公开(公告)日：2019-08-06

申请号：US14899402

申请日：2014-06-23

Applicant: ORANGE

Inventor： Frederic Fieau ,  Gael Fromentoux ,  Nicolas Bihannic

IPC: H04L29/02 ,  H04L29/08 ,  H04L12/751

Abstract: A method for transmitting information relating to a communication network, implemented by a first server of a communication network, the method comprising the following steps: storing a data table matching identifiers of subnetworks of the communication network associated with respective qualities of service, with at least one network address of a user terminal, the network address comprising an IP address of the user terminal; receiving a request from a second server of a service provider, the request requesting information linked to said communication network; transmitting at least a part of the data table to the second server, the part comprising the matches between each subnetwork identifier and the at least one network address of a user terminal.

公开(公告)号：US20190028502A1

公开(公告)日：2019-01-24

申请号：US16067496

申请日：2016-12-22

Applicant: ORANGE

Inventor： Nicolas Bihannic ,  Gael Fromentoux ,  Frederic Fieau

IPC: H04L29/06

CPC classification number: H04L63/1425 ,  H04L63/1416 ,  H04L63/1441 ,  H04L63/1491

Abstract: A method for processing a network service supported by a network infrastructure allowing virtualization of network functions. The network service is made up of a sequence, called an initial sequence, of at least one virtualized network function processing an incoming stream. The method includes: detecting an anomaly relating to the at least one virtualized network function; on the basis of the anomaly, detecting and identifying a network attack targeting the network service; identifying, in the initial sequence, at least one virtualized network function impacted by the attack; modifying the initial sequence so as to circumscribe the attack in such a way that the incoming stream is routed towards at least one virtualized network function, called the curative function, carrying out a processing of the incoming stream, called the malicious stream, as well as of functions implemented by the at least one virtualized network function impacted by the attack.