公开(公告)号：US11863982B2

公开(公告)日：2024-01-02

申请号：US18150771

申请日：2023-01-05

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Huarui Liang ,  Lijia Zhang ,  Shu Guo ,  Haijing Hu ,  Fangli Xu ,  Yuqin Chen ,  Dawei Zhang ,  Li Li

IPC: H04W12/122 ,  H04W12/069 ,  H04W12/72 ,  H04W12/0433 ,  H04W12/03 ,  H04W12/041 ,  H04L9/08 ,  H04L9/16 ,  H04L9/32 ,  H04W12/02

CPC classification number: H04W12/069 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0844 ,  H04L9/0891 ,  H04L9/16 ,  H04L9/3228 ,  H04W12/02 ,  H04W12/03 ,  H04W12/041 ,  H04W12/0433 ,  H04W12/122 ,  H04W12/72

Abstract: Techniques to protect a subscriber identity, by encrypting a subscription permanent identifier (SUPI) to form one-time use subscription concealed identifiers (SUCIs) using a set of one-time ephemeral asymmetric keys, generated by a user equipment (UE), and network provided keys are disclosed. Encryption of the SUPI to form the SUCIs can mitigate snooping by rogue network entities, such as fake base stations. The UE is restricted from providing the unencrypted SUPI over an unauthenticated connection to a network entity. In some instances, the UE uses a trusted symmetric fallback encryption key KFB or trusted asymmetric fallback public key PKFB to verify messages from an unauthenticated network entity and/or to encrypt the SUPI to form a fallback SUCIFB for communication of messages with the unauthenticated network entity.

公开(公告)号：US20230276231A1

公开(公告)日：2023-08-31

申请号：US17916960

申请日：2021-10-28

Applicant: Apple Inc.

Inventor： Shu Guo ,  Dawei Zhang ,  Huarui Liang ,  Haijing Hu

IPC: H04W12/041 ,  H04W12/06 ,  H04W60/04 ,  H04W12/69

CPC classification number: H04W12/041 ,  H04W12/06 ,  H04W60/04 ,  H04W12/69

Abstract: This disclosure relates to techniques for performing wireless communications including authentication between user equipment and edge computing servers. One or more edge enabler client(s) operating at a user equipment may authenticate with one or more edge computing server(s). The authentication may use generic bootstrapping architecture, among various possibilities.

公开(公告)号：US20230164081A1

公开(公告)日：2023-05-25

申请号：US17978143

申请日：2022-10-31

Applicant: Apple Inc.

Inventor： Ralf Rossbach ,  Haijing Hu ,  Huarui Liang ,  Jan K. Ellenbeck ,  Robert Zaus ,  Sabine Roessel ,  Shu Guo ,  Sudeep Manithara Vamanan ,  Weidong Yang

IPC: H04L47/2416 ,  H04W28/02 ,  H04L47/34

CPC classification number: H04L47/2416 ,  H04W28/0268 ,  H04L47/34

Abstract: The present application relates to devices and components including apparatuses, systems, and methods for technologies for traffic detection for application data unit mapping in wireless networks.

公开(公告)号：US20230144223A1

公开(公告)日：2023-05-11

申请号：US17593676

申请日：2020-07-31

Applicant: Apple Inc.

Inventor： Fangli Xu ,  Shu Guo ,  Yuqin Chen ,  Haijing Hu ,  Huarui Liang ,  Dawei Zhang

IPC: H04W12/041 ,  H04W76/20 ,  H04W76/30 ,  H04W12/043

CPC classification number: H04W12/041 ,  H04W76/20 ,  H04W76/30 ,  H04W12/043

Abstract: An example technique for security key derivation in a wireless system includes: sending a radio resource control (RRC) suspend message from a first node, to a first user device, the RRC suspend message including a first next hop (NH) chaining counter (NCC) value; releasing access stratum (AS) resources associated with the first user device; deriving a first node key based on the first NCC value; receiving a first uplink message from the first user device without allocating AS resources to the first user device; and unscrambling the first uplink message based on the first NCC value.

公开(公告)号：US11589228B2

公开(公告)日：2023-02-21

申请号：US17054148

申请日：2018-05-11

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Huarui Liang ,  Lijia Zhang ,  Shu Guo ,  Haijing Hu ,  Fangli Xu ,  Yuqin Chen ,  Dawei Zhang ,  Li Li

IPC: H04W12/122 ,  H04W12/069 ,  H04W12/72 ,  H04W12/0433 ,  H04W12/03 ,  H04W12/041 ,  H04L9/08 ,  H04L9/16 ,  H04L9/32 ,  H04W12/02

Abstract: Techniques to protect a subscriber identity, by encrypting a subscription permanent identifier (SUPI) to form one-time use subscription concealed identifiers (SUCIs) using a set of one-time ephemeral asymmetric keys, generated by a user equipment (UE), and network provided keys are disclosed. Encryption of the SUPI to form the SUCIs can mitigate snooping by rogue network entities, such as fake base stations. The UE is restricted from providing the unencrypted SUPI over an unauthenticated connection to a network entity. In some instances, the UE uses a trusted symmetric fallback encryption key KFB or trusted asymmetric fallback public key PKFB to verify messages from an unauthenticated network entity and/or to encrypt the SUPI to form a fallback SUCIFB for communication of messages with the unauthenticated network entity.

公开(公告)号：US20220418030A1

公开(公告)日：2022-12-29

申请号：US17776449

申请日：2020-01-31

Applicant: Apple Inc.

Inventor： Shu Guo ,  Xiangying Yang ,  Fangli Xu ,  Yuqin Chen ,  Huarui Liang ,  Haijing Hu ,  Dawei Zhang

IPC: H04W76/19 ,  H04W76/30 ,  H04W12/106

Abstract: Embodiments are presented herein of apparatuses, systems, and methods for a user equipment device (UE) and/or cellular network to resume a connection. To resume the connection, the UE may transmit a fully protected connection resume message, e.g., which may include protection for a resume cause field.

公开(公告)号：US20220353780A1

公开(公告)日：2022-11-03

申请号：US17438538

申请日：2020-11-16

Applicant: Apple Inc.

Inventor： Sree Ram Kodali ,  Ahmed M. Soliman ,  Christian W. Mucke ,  Huarui Liang ,  Oleg M. Moskalenko ,  Rafael L. Rivera-Barreto ,  Sergey Stinikov ,  Teck Yang Lee

IPC: H04W40/02 ,  H04W40/24 ,  H04L45/302

Abstract: Apparatuses, systems, and methods for enhancement of network slicing for a UE. A UE may receive, from an AMF of a network, application related information associated with network slice data routing for data associated with an application. The information may be provided to the network by network slice customers. The UE may, in response to application initiation, determine traffic routing for data associated with the application. Traffic routing may be based on the application related information and a UE configuration associated with user privacy (e.g., user privacy setting) associated with the application. When the user UE configuration is enabled, the data may be routed via a default network slice and when the UE configuration is disabled, the data may be routed via a network slice indicated by the application related information. The UE configuration may be indicated by the application via a Boolean flag and/or via a user interface setting.

公开(公告)号：US20220312520A1

公开(公告)日：2022-09-29

申请号：US17593527

申请日：2020-10-29

Applicant: APPLE INC.

Inventor： Shu Guo ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Yuqin Chen

IPC: H04W76/15 ,  H04W12/033 ,  H04W12/106

Abstract: Systems and methods provide packet data convergence protocol (PDCP) user plane (UP) integrity protection (IP) for a user equipments (UE) and radio access network (RAN) nodes operating in Evolved Universal Terrestrial Radio Access—New Radio dual connectivity (EN-DC). In an attach procedure, a UE may indicate a UE security capability for support of relay node (RN) PDCP UP IP used in LTE. Based on the security capability, a master e Node B (MeNB) security capability, and a secondary g Node B (SgNB) security capability, the MeNB may determine whether to use UP IP between the UE and the MeNB, the UE and the SgNB, and/or in a split bearer between the MeNB and the SgNB.

公开(公告)号：US20220312196A1

公开(公告)日：2022-09-29

申请号：US17593506

申请日：2020-10-29

Applicant: APPLE INC.

Inventor： Shu Guo ,  Dawei Zhang ,  Fangli Xu ,  Haijing Hu ,  Huarui Liang ,  Sudeep Manithara Vamanan ,  Yuqin Chen

IPC: H04W12/037 ,  H04W4/08 ,  H04W12/041 ,  H04L9/14 ,  H04L9/08

Abstract: MBS key distribution includes processing group information associated with an MB session context received from an AF. At least a portion of the group information comprises a TMGI. A plurality of session join requests received from a plurality of UEs are processed. Each of the plurality of session join requests include the TMGE and are associated with the MB session context. A request associated with the MB session context for transmission to an MB-SMF is encoded. A response associated with the MB session context received from the MB-SMF is processed. The response includes a key derived for each of a portion of the plurality of UEs using a UE ID and the TMGI. A DL NAS message and an N2 message are encoded for the plurality of UEs and a base station, respectively. The DL NAS message and the N2 message include the derived key.

公开(公告)号：US20220303254A1

公开(公告)日：2022-09-22

申请号：US17598224

申请日：2021-06-15

Applicant: Apple Inc.

Inventor： Shu Guo ,  Fangli Xu ,  Yuqin Chen ,  Xiangying Yang ,  Huarui Liang ,  Haijing Hu ,  Chunhai Yao ,  Dawei Zhang ,  Yushu Zhang ,  Zhibin Wu

IPC: H04L9/40 ,  H04L9/14

Abstract: The present application relates to devices and components including apparatus, systems, and methods for secured user equipment communications over a user equipment relay. In some embodiments, symmetric or asymmetric encryption may be used for the secured user equipment communications.