公开(公告)号：US20230179997A1

公开(公告)日：2023-06-08

申请号：US18164697

申请日：2023-02-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Ao LEI ,  He LI ,  Yizhuang WU ,  Rong WU

IPC: H04W12/033 ,  H04W12/037

CPC classification number: H04W12/033 ,  H04W12/037

Abstract: A method for determining a user plane security algorithm, a system, and an apparatus. The method may include: a second device selects a non-null user plane confidentiality protection algorithm based on a security capability of a first device and a security capability of the second device in a case in which user plane confidentiality protection between the second device and the first device is enabled and control plane confidentiality protection between the second device and the first device is not enabled. The second device sends a first message to the first device. The first message includes first algorithm indication information indicating the user plane confidentiality protection algorithm. Therefore, the first device can obtain the non-null user plane confidentiality protection algorithm. Embodiments can be adopted to determine an effective user plane confidentiality protection algorithm, for confidentiality protecting user plane data.

公开(公告)号：US20230087407A1

公开(公告)日：2023-03-23

申请号：US17990981

申请日：2022-11-21

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU

IPC: H04W12/065

Abstract: This disclosure provides a method including: A session management network element receives a session establishment request message from a terminal device, where the session establishment request message is used to request to establish a session with a data network. The session management network element determines whether an authentication result of authentication and/or authorization by the data network on the terminal device exists. When determining that the authentication result exists, the session management network element does not initiate a secondary authentication procedure for the session, in other words, skips the secondary authentication procedure. In this disclosure, the session management network element may determine, based on that the data network has authenticated the terminal device, to skip the secondary authentication procedure.

公开(公告)号：US20230013010A1

公开(公告)日：2023-01-19

申请号：US17955614

申请日：2022-09-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU ,  He LI ,  Li HU

IPC: H04W12/041 ,  H04W8/20 ,  H04W76/11

Abstract: A method for obtaining an identifier of a terminal device includes a key management network element receiving, from a first terminal device, a first key request including a first identifier, where the first identifier is an anonymous identifier or a temporary identifier of a second terminal device. The key management network element sends, to a unified data management network element, a first request including the first identifier. The unified data management network element determines a SUPI of the second terminal device based on the first identifier, and sends, to the key management network element, a first response including the SUPI. In response to an authorization check performed on the second terminal device based on the SUPI succeeds, the key management network element sends a first key response to the first terminal device, where the first key response includes a secure communication parameter.

公开(公告)号：US20220210687A1

公开(公告)日：2022-06-30

申请号：US17695556

申请日：2022-03-15

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yizhuang WU ,  Haiyang SUN ,  Fangyuan ZHU

IPC: H04W28/02

Abstract: Disclosed is an AMBR control method, device, and system, so that a quality of service (QoS) control mechanism can be used to control use of resources in a network slice by a terminal device. The method includes: a mobility management network element obtaining M pieces of single network slice selection assistance information (S-NSSAI) corresponding to a terminal device and a first slice-AMBR corresponding to each piece of S-NSSAI in the M pieces of S-NSSAI; and sending the M pieces of S-NSSAI and the first slice-AMBR corresponding to each piece of S-NSSAI to an access network device, where the first slice-AMBR corresponding to each piece of S-NSSAI is used to determine a second slice-AMBR corresponding to the S-NSSAI, and the second slice-AMBR corresponding to each piece of S-NSSAI is used to control an aggregate bit rate of non-guaranteed bit rate non-GBR QoS flows in a network slice indicated by the S-NSSAI.

公开(公告)号：US20210385744A1

公开(公告)日：2021-12-09

申请号：US17405208

申请日：2021-08-18

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU ,  Wanqiang ZHANG ,  Hui NI

IPC: H04W48/20 ,  H04W8/08 ,  H04W76/20 ,  H04M15/00

Abstract: This application provides a network node selection method and apparatus. An SMF network element obtains transmission capability information of an access network device, and selects, for a terminal device based on the transmission capability information of the access network device, a UPF network element that supports at least one transmission capability included in the transmission capability information. In this process, the SMF network element obtains a transmission capability of the access network device, and selects the UPF network element based on the transmission capability of the access network device. The selected UPF network element supports the transmission capability used by the access network device, so that data can be successfully transmitted between the access network device and the UPF network element. Therefore, a data transmission success rate is improved.

公开(公告)号：US20210344774A1

公开(公告)日：2021-11-04

申请号：US17374732

申请日：2021-07-13

Applicant: Huawei Technologies Co., Ltd.

Inventor： Cuili GE ,  Yanmei YANG ,  Yizhuang WU

IPC: H04L29/08

Abstract: This application provides a method and an apparatus for invoking an application programming interface API, to determine a target exposing function network element used to invoke an API. The method includes: A first network element obtains routing information of an API, where the routing information is used to indicate a route for invoking the API, and the API is provided by a first exposing function network element and a second exposing function network element; the first network element obtains invocation parameter information of the API, where the invocation parameter information is used to handle the API; and the first network element determines a target exposing function network element in the first exposing function network element and the second exposing function network element based on the routing information and the invocation parameter information.

公开(公告)号：US20210266797A1

公开(公告)日：2021-08-26

申请号：US17318814

申请日：2021-05-12

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yongcui LI ,  Fang YU ,  Yan LI ,  Hui NI ,  Yizhuang WU

IPC: H04W36/00 ,  H04W36/12

Abstract: This application provides a method for controlling disorder of downlink data and an apparatus thereof. The method includes: A control plane network element determines to switch from a first user plane device to a second user plane device, and sends indication information to the second user plane device. The second user plane device buffers, according to the received indication information, downlink data received from a session anchor, and sends the buffered downlink data after reception of an end marker from the first user plane device.

公开(公告)号：US20200178321A1

公开(公告)日：2020-06-04

申请号：US16787571

申请日：2020-02-11

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Ruizhi LIU ,  Chunshan XIONG ,  Yizhuang WU ,  Haiyang SUN

IPC: H04W76/10 ,  H04W8/08 ,  H04W8/18 ,  H04W8/04 ,  H04W28/02

Abstract: The present disclosure relates to session information management methods. One example method includes sending, by a session management function (SMF) network element, identification information of a terminal device, a data network name (DNN), and slice information to a data management network element to request first subscription data that is of the terminal device and that is associated with the DNN and the slice information, where the slice information is used to identify a network slice served by the SMF network element, and receiving, by the SMF network element, the first subscription data from the data management network element.

公开(公告)号：US20190239281A1

公开(公告)日：2019-08-01

申请号：US16380444

申请日：2019-04-10

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU ,  Chunshan XIONG

IPC: H04W80/10 ,  H04W76/25 ,  H04W8/08 ,  H04W64/00 ,  H04W76/27 ,  H04W28/02

CPC classification number: H04W80/10 ,  H04W8/08 ,  H04W8/20 ,  H04W28/0268 ,  H04W48/20 ,  H04W64/003 ,  H04W76/22 ,  H04W76/25 ,  H04W76/27

Abstract: Embodiments of the present application relate to the wireless communications field, and in particular, to a session management method and a session management network element. The session management method includes: receiving, by a first control plane network element, a user equipment UE context response message from a second control plane network element, where the UE context response message carries a first session message, and the first session message is a pending session message; and sending, by the first control plane network element, a second session message to user equipment according to the UE context response message. According to the session management method and the session management network element in the embodiments of the present application, a session can be managed in a scenario in which a control plane connection of user equipment changes.

公开(公告)号：US20170078288A1

公开(公告)日：2017-03-16

申请号：US15337830

申请日：2016-10-28

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yizhuang WU ,  Yixian XU ,  Huan LI ,  Youyang YU

IPC: H04L29/06

CPC classification number: H04L63/0876 ,  H04L63/061 ,  H04L63/0807 ,  H04L2463/081 ,  H04W12/08 ,  H04W84/12

Abstract: Embodiments of the present invention provide a method for accessing a communications network by a terminal, an apparatus, and a communications system, relate to the communications field, and can effectively reduce a resource waste on a network side that is caused when WLCP is triggered by a malicious application on a terminal. A first message sent by a second device is received, where the first message includes a second message and an authentication parameter, the authentication parameter is a token or a User Datagram Protocol UDP port number, and the second message includes the encrypted authentication parameter; or the first message includes a second message, and the second message includes an encrypted authentication parameter; or the first message includes a second message and an authentication parameter; and the second message is sent to a terminal.

Abstract translation: 本发明的实施例提供了一种通过终端，装置和通信系统访问通信网络的方法，涉及通信领域，并且可以有效地减少在WLCP被触发时引起的网络侧的资源浪费 终端上的恶意应用程序。 接收由第二设备发送的第一消息，其中第一消息包括第二消息和认证参数，认证参数是令牌或用户数据报协议UDP端口号，第二消息包括加密认证参数; 或者第一消息包括第二消息，并且第二消息包括加密认证参数; 或者第一消息包括第二消息和认证参数; 并且第二个消息被发送到终端。