公开(公告)号：US20200084631A1

公开(公告)日：2020-03-12

申请号：US16674697

申请日：2019-11-05

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo Zhang ,  Rong Wu ,  Lu Gan ,  Yan Li

IPC: H04W12/08 ,  H04W12/10 ,  H04W12/04

Abstract: A key configuration method includes receiving, by a policy function network element, a request for communication between a user equipment (UE) and a network device, determining a user plane protection mechanism based on the request, UE registration information, subscription service data, and a service security requirement, and sending the user plane protection mechanism to an algorithm network element when the network device is a core network (CN) device, where the algorithm network element determines a security protection algorithm based on the user plane protection mechanism, generates a first user plane protection key based on the security protection algorithm, sends the first user plane protection key to the CN device, and sends the security protection algorithm to the UE, and the UE generates a second user plane protection key based on the security protection algorithm.

公开(公告)号：US10447599B2

公开(公告)日：2019-10-15

申请号：US15277820

申请日：2016-09-27

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo Zhang ,  Xing Tong

IPC: H04L12/803 ,  H04L12/891 ,  H04L12/64 ,  H04L12/751

Abstract: A packet forwarding method, system, and apparatus are provided. The method includes: determining that a total number of links is an integral power of 2, wherein the total number of links is a sum of a number of added virtual link and a number of actual links for forwarding a data packet; calculating a hash value of the data packet, and calculating a remainder of the hash value divided by the total number of links; and if the remainder corresponds to a virtual link, calculating another hash value of the data packet, returning back to the step of calculating a remainder, performing the above operations cyclically until the remainder corresponds to an actual link, and forwarding the data packet on the actual link.

公开(公告)号：US20190080084A1

公开(公告)日：2019-03-14

申请号：US16185971

申请日：2018-11-09

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo Zhang ,  Yuming Xie ,  Zhigang Huang ,  Yang Wang ,  Liang Xia

IPC: G06F21/55 ,  H04L29/08 ,  H04L12/24

Abstract: A virtual network function (VNF) audit method and apparatus, used to audit a VNF generated by a platform that includes an authentication and authorization component, a service component, and a virtualized infrastructure. The method includes receiving an event reported by the authentication and authorization component, receiving an event reported by the service component, and receiving an event reported by the virtualized infrastructure, obtaining an event occurrence sequence of each VNF according to all received events, and auditing the event occurrence sequence of each VNF to obtain an audit result of the VNF. According to the method, the events that are distributed in different components are integrated into one event occurrence sequence in order to visually and quickly detect a malicious VNF generated by bypassing a component, and more comprehensively detect the malicious VNF, thereby reducing a missed detection rate of a VNF operation audit.

公开(公告)号：US20180198605A1

公开(公告)日：2018-07-12

申请号：US15905494

申请日：2018-02-26

Applicant: Huawei Technologies Co., Ltd.

Inventor： Bo Zhang ,  Lu Gan ,  Philip Ginzboorg

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/14 ,  H04L29/08

CPC classification number: H04L9/0819 ,  H04L9/08 ,  H04L9/14 ,  H04L63/06 ,  H04L63/061 ,  H04L67/26 ,  H04W12/04031

Abstract: A key distribution and receiving method includes obtaining, by a first key management center, NAF key information of the first network element and a NAF key of the first network element, wherein the NAF key information of the first network element is information required to obtain the NAF key of the first network element. A service key is obtained. Using the NAF key of the first network element to perform encryption and/or integrity protection on the service key, a first security protection parameter is generated. A first generic bootstrapping architecture GBA push message is sent to the first network element. The GBA push message carries the first security protection parameter and the NAF key information of the first network element.

公开(公告)号：US09882808B2

公开(公告)日：2018-01-30

申请号：US14934943

申请日：2015-11-06

Applicant: Huawei Technologies Co., Ltd.

Inventor： Duoliang Fan ,  Yang Wang ,  Bo Zhang ,  Qin Wu

IPC: H04J3/16 ,  H04L12/781 ,  H04L29/06 ,  H04L12/58

CPC classification number: H04L45/52 ,  H04L51/18 ,  H04L69/18

Abstract: Embodiments of the present disclosure provide a packet processing method and apparatus. A first protocol identifier of a first to-be-processed packet is acquired; and first protocol rule profile information that corresponds to the first protocol identifier is acquired from a rule profile repository, where the rule profile repository stores protocol rule profile information of at least one protocol, protocol rule profile information of each protocol in the at least one protocol is associated with a protocol identifier of the protocol, the protocol rule profile information of the protocol is used to describe a method and a parameter for processing a packet, and the packet meets a standard stipulated by the protocol; and the first to-be-processed packet is processed according to the acquired first protocol rule profile information.

公开(公告)号：US20170295521A1

公开(公告)日：2017-10-12

申请号：US15514070

申请日：2014-09-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Xiaoyan Duan ,  Bo Zhang ,  Hui Jin

IPC: H04W36/00 ,  H04W52/02

CPC classification number: H04W36/0022 ,  H04W36/14 ,  H04W36/245 ,  H04W36/36 ,  H04W48/18 ,  H04W52/0225 ,  Y02D70/00 ,  Y02D70/1242 ,  Y02D70/1262

Abstract: A method includes when a terminal needs to execute a circuit switched service again after completing the execution of the circuit switched service once, the terminal executes the circuit switched service again instead of immediately returning to a first network, and then returns to the first network when a preset condition is met.

公开(公告)号：US20250097714A1

公开(公告)日：2025-03-20

申请号：US18971164

申请日：2024-12-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xiangyu Li ,  Xiao Xiao ,  Bo Zhang ,  Jun Wang

IPC: H04W12/50 ,  H04W12/106 ,  H04W76/14 ,  H04W92/18

Abstract: A communication method and apparatus are disclosed. According to the communication method, a first terminal determines a logical channel identifier (LCID) meeting a preset condition, where a first packet data convergence protocol (PDCP) entity of the first terminal is associated with two or more logical channels (LCHs); the first terminal receives a first data packet from a second terminal; and the first PDCP entity of the first terminal parses the first data packet based on the LCID. In this way, corresponding PDCP entities of the first terminal and the second terminal use consistent input parameters when executing security algorithms, thereby ensuring normal communication on a sidelink and improving communication reliability.

公开(公告)号：US12192773B2

公开(公告)日：2025-01-07

申请号：US17852739

申请日：2022-06-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Xiangyu Li ,  Xiao Xiao ,  Bo Zhang ,  Jun Wang

IPC: H04L29/06 ,  H04W12/106 ,  H04W12/50 ,  H04W76/14 ,  H04W92/18

Abstract: A communication method and apparatus are disclosed. According to the communication method, corresponding PDCP entities of a first terminal and a second terminal use consistent input parameters when executing security algorithms, thereby ensuring normal communication on a sidelink (SL) and improving communication reliability. In an example embodiment, a first terminal determines a logical channel identifier (LCID) meeting a preset condition, where a first packet data convergence protocol (PDCP) entity of the first terminal is associated with two or more logical channels (LCHs); the first terminal receives a first data packet from a second terminal; and the first PDCP entity of the first terminal parses the first data packet based on the LCID.

公开(公告)号：US11956715B2

公开(公告)日：2024-04-09

申请号：US17452185

申请日：2021-10-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Hao Hu ,  Zhongding Lei ,  Rong Wu ,  Bo Zhang

IPC: H04W4/00 ,  H04W8/12 ,  H04W12/041 ,  H04W12/0431 ,  H04W48/18 ,  H04W60/04

CPC classification number: H04W48/18 ,  H04W8/12 ,  H04W12/041 ,  H04W12/0431 ,  H04W60/04

Abstract: A terminal device obtains first slice selection assistance information, where the first slice selection assistance information is obtained by encrypting second slice selection assistance information, and the second slice selection assistance information is selection assistance information of a slice to which the terminal device is allowed to access. The terminal device sends a registration request message to an access network device, where the registration request message includes the first slice selection assistance information.

公开(公告)号：US11956361B2

公开(公告)日：2024-04-09

申请号：US17540664

申请日：2021-12-02

Applicant: Huawei Technologies Co., Ltd.

Inventor： Shuaishuai Tan ,  Lu Gan ,  Bo Zhang ,  Rong Wu

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/40

CPC classification number: H04L9/3213 ,  H04L9/3247 ,  H04L63/10

Abstract: A network function service invocation method includes sending, by a first network function network element, a first request message to an authorization network element, wherein the first request message is used to request permission to invoke a first network function service provided by a second network function network element, performing, by the authorization network element, identity authentication on the first network function network element, generating, by the authorization network element, a token when determining that the identity authentication succeeds, wherein the token is used to indicate that the first network function network element has the permission to invoke the first network function service of the second network function network element, and sending, by the authorization network element, a token to the first network function network element.