公开(公告)号：US20240129730A1

公开(公告)日：2024-04-18

申请号：US18546804

申请日：2021-02-19

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Huarui LIANG ,  Mona AGNEL ,  Ralf ROSSBACH ,  Robert ZAUS ,  Sudeep MANITHARA VAMANAN

IPC: H04W12/06 ,  H04W12/37

CPC classification number: H04W12/06 ,  H04W12/37

Abstract: A user equipment (UE) configured to connect to an edge data network. The UE connects to a first edge application server (EAS) of an edge data network (EDN), the connecting comprising performing a first authorization/authentication procedure, receives a message indicating the UE is to connect to a second EAS of the EDN, the message including an indication as to whether the UE is to perform a second authorization/authentication procedure to connect to the second EAS and performs a discovery procedure to locate the second EAS based on at least the indication in the message.

公开(公告)号：US20220394458A1

公开(公告)日：2022-12-08

申请号：US17755726

申请日：2019-11-28

Applicant: Apple Inc.

Inventor： Huarui LIANG ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Hao DUO ,  Longda XING ,  Murtaza A. SHIKARI ,  Sethuraman GURUMOORTHY ,  Shu GUO ,  Sree Ram KODALI ,  Srinivasan NIMMALA ,  Srirang A. LOVLEKAR ,  Yuqin CHEN

IPC: H04W8/18

Abstract: A user equipment (UE) includes a first subscriber identification module (SIM) and a second SIM. The UE is configured to establish a first cellular network connection based on, at least, the first SIM and a second cellular network connection based on, at least, the second SIM. The UE sends, by the first SIM, a first registration request to the network, wherein the first registration request comprises an identification indicating the multi-SIM device is a type of multi-SIM device, receives, by the first SIM, a first registration accept message indicating the first registration request has been accepted, wherein the first registration accept message comprises a first temporary identification for the first SIM and sends, by the second SIM, an access network message comprising one of the first temporary identification or a further temporary identification based on, at least, the first temporary identification.

公开(公告)号：US20220295276A1

公开(公告)日：2022-09-15

申请号：US17634950

申请日：2019-08-18

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Jean-Marc PADOVA ,  Li LI ,  Shu GUO

IPC: H04W12/069 ,  H04L9/32 ,  H04W12/041 ,  H04W12/0431 ,  H04W8/20

Abstract: This application sets forth techniques for authenticating a mobile device with a cellular wireless network without electronic Subscriber Identity Module (eSIM) credentials by using an Extensible Authentication Protocol Transport Layer Security (EAP-TLS) procedure. The mobile device authenticates with an Authentication Server Function (AUSF) of the cellular wireless network using an embedded Universal Integrated Circuit Card (eUICC) certificate. Processing circuitry of the mobile wireless device external to the eUICC implements the EAP-TLS procedure and authenticates validity of the AUSF. In some embodiments, the eUICC provides key generation and storage for a session key for communication between the mobile device and the cellular wireless network. In some embodiments, a third-party managed Unified Data Management (UDM) broker authenticates the mobile device based on knowledge of the eUICC certificate and provides a session key to the cellular wireless network for subsequent communication with the mobile device, upon successful authentication of the mobile device.

公开(公告)号：US20220086642A1

公开(公告)日：2022-03-17

申请号：US17455000

申请日：2021-11-15

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Shu GUO ,  Lijia ZHANG ,  Qian SUN ,  Huarui LIANG ,  Fangli XU ,  Yuqin CHEN ,  Haijing HU ,  Dawei ZHANG ,  Hao DUO ,  Lanpeng CHEN

IPC: H04W12/106 ,  H04W72/04 ,  H04L9/32 ,  H04W74/00 ,  H04W12/069 ,  H04W12/0433

Abstract: Techniques for identity-based message integrity protection and verification between a user equipment (UE) and a wireless network entity, include use of signatures derived from identity-based keys. To protect against attacks from rogue network entities before activation of a security context with a network entity, the UE verifies integrity of messages by checking a signature using an identity-based public key PKID derived by the UE based on (i) an identity value (ID) of the network entity and (ii) a separate public key PKPKG of a private key generator (PKG) server. The network entity generates signatures for messages using an identity-based private key SKID obtained from the PKG server, which generates the identity-based private key SKID using (i) the ID value of the network entity and (ii) a private key SKPKG that is known only by the PKG server and corresponds to the public key PKPKG.

公开(公告)号：US20240236675A9

公开(公告)日：2024-07-11

申请号：US18546809

申请日：2021-02-19

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Hao DUO ,  Huarui LIANG ,  Lanpeng CHEN ,  Mona AGNEL ,  Ralf ROSSBACH ,  Sudeep MANITHARA VAMANAN ,  Xiaoyu QIAO

IPC: H04W12/069 ,  H04L9/32 ,  H04W12/106 ,  H04W12/71 ,  H04W12/72

CPC classification number: H04W12/069 ,  H04L9/3242 ,  H04W12/106 ,  H04W12/71 ,  H04W12/72

Abstract: A user equipment (UE) may attempt to access an edge data network. The UE generates a first credential based on a second credential that was generated for a procedure between the UE and a network. The UE then generates an identifier corresponding to the first credential and generates a message authentication code based on the first credential and a count, wherein the count is associated with an identifier of an edge network client running on the UE. The UE then transmits an application registration request, message to a server associated with an edge data network, the application registration request message including the count, the message authentication code, the identifier corresponding to the first credential, and a public land mobile network identifier (PLMN ID) of the network. The UE then receives an authentication accept message or an authentication reject message from the server associated with the edge data network.

公开(公告)号：US20230097664A1

公开(公告)日：2023-03-30

申请号：US17441415

申请日：2021-02-18

Applicant: APPLE INC.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Huarui LIANG ,  Sudeep MANITHARA VAMANAN

IPC: H04W40/22 ,  H04W40/24 ,  H04W8/00

Abstract: The present application relates to devices and components including apparatus, systems, and methods for direct discovery or solicitation messages that include indications of types of user equipment-to-network relays.

公开(公告)号：US20230088512A1

公开(公告)日：2023-03-23

申请号：US17440079

申请日：2021-02-19

Applicant: Apple Inc.

Inventor： Shu GUO ,  Dawei ZHANG ,  Haijing HU ,  Hao DUO ,  Huarui LIANG ,  Lanpeng CHEN ,  Sudeep MANITHARA VAMANAN ,  Yuqin CHEN ,  Zhibin WU

IPC: H04W36/00

Abstract: The present application relates to devices and components including apparatus, systems, and methods for security enhancement with respect to reselection of relay user equipment.

公开(公告)号：US20240414586A1

公开(公告)日：2024-12-12

申请号：US18699784

申请日：2021-10-11

Applicant: Apple Inc.

Inventor： Weidong YANG ,  Dawei ZHANG ,  Haijing HU ,  Pavan NUGGEHALLI ,  Ralf ROSSBACH ,  Shu GUO ,  Sudeep MANITHARA VAMANAN ,  Vivek G GUPTA ,  Wei ZENG ,  Huarui LIANG

IPC: H04W28/02 ,  G06T19/00 ,  H04L67/12

Abstract: A user plane function (UPF) of a core network is configured to receive an Internet Protocol (IP) packet including a flow label comprising a plurality of sub-fields, the plurality of sub-fields including an application data unit (ADU) identifier (ID) field for an ADU to which the IP packet belongs, map the IP packet to a quality of service (QOS) flow based on the flow label and transmit the IP packet to a base station with a tag including information from the plurality of sub-fields, the information including an ADU ID.

公开(公告)号：US20240032115A1

公开(公告)日：2024-01-25

申请号：US17442038

申请日：2021-07-01

Applicant: APPLE INC.

Inventor： Zhibin WU ,  Fangli XU ,  Haijing HU ,  Naveen Kumar R. PALLE VENKATA ,  Pavan NUGGEHALLI ,  Ralf ROSSBACH ,  Sarma V. VANGALA ,  Shu GUO

IPC: H04W74/08

CPC classification number: H04W74/0841

Abstract: The present application relates to devices and components including apparatus, systems, and methods for secure random access in wireless communication systems.

公开(公告)号：US20230247426A1

公开(公告)日：2023-08-03

申请号：US17593306

申请日：2021-05-10

Applicant: APPLE INC.

Inventor： Shu GUO ,  Dawei ZHANG ,  Fangli XU ,  Haijing HU ,  Huarui LIANG ,  Mona AGNEL ,  Ralf ROSSBACH ,  Sudeep Manithara VAMANAN ,  Yuqin CHEN

IPC: H04W12/069 ,  H04W12/041 ,  H04W12/72

CPC classification number: H04W12/069 ,  H04W12/041 ,  H04W12/72

Abstract: Disclosed are embodiments for authentication and authorization in a 5G network between an edge enabler client (EEC) of a UE and an edge configuration server (ECS). The embodiment include performing primary authentication with the 5G network to obtain a KAUSF; generating a Kedge and a Kedge ID using the KAUSF and a subscription permanent identifier (SUPI); providing the Kedge and the Kedge ID to the EEC to cause it to compute a MACEEC using the Kedge and an EEC ID; and sending to the ECS an application registration request, the application registration request including the EEC ID, MACEEC, and Kedge ID.