公开(公告)号：US11616753B2

公开(公告)日：2023-03-28

申请号：US17390335

申请日：2021-07-30

Applicant: Huawei Technologies Co., Ltd.

Inventor： Sridhar Bhaskaran ,  Marco Spini ,  Fenqin Zhu

IPC: H04L12/00 ,  H04L61/103 ,  H04W76/12 ,  H04L61/5014 ,  H04L101/622 ,  H04L101/659

Abstract: Methods and apparatuses for acquisition of an Address Resolution Protocol (ARP)/IPv6 neighbour cache at a user plane function (UPF) entity without performing deep packet inspection for every packet that traverses a network. The ARP broadcast/Internet Control Message Protocol version 6 (ICMPv6) neighbour solicitation multicast from any Ethernet client (a user equipment (UE) or clients behind the UE or clients in a data network (DN)) is responded to by the UPF entity itself, by looking up the ARP/IPv6 Neighbour cache built in the UPF entity, irrespective of whether the UPF entity acts as the core Ethernet switch or whether the core Ethernet switch is in the DN. The solution is simplified to always intercept ARP at the UPF entity and respond to it based on a local ARP/IPv6 Neighbour cache.

公开(公告)号：US11128596B2

公开(公告)日：2021-09-21

申请号：US16789697

申请日：2020-02-13

Applicant: Huawei Technologies Co., Ltd.

Inventor： Sridhar Bhaskaran ,  Marco Spini ,  Fenqin Zhu

IPC: H04L12/00 ,  H04L29/12 ,  H04W76/12

Abstract: Methods and apparatuses for acquisition of an address resolution protocol (ARP)/IPv6 Neighbour cache at a user plane function (UPF) entity without performing deep packet inspection for every packet that traverses a network. The ARP broadcast/ICMPv6 Neighbour Solicitation multicast from any Ethernet client (a user equipment (UE) or clients behind the UE or clients in a data network (DN)) is responded to by the UPF entity itself, by looking up the ARP/IPv6 Neighbour cache built in the UPF entity, irrespective of whether the UPF entity acts as the core Ethernet switch or whether the core Ethernet switch is in the DN. The solution is simplified to always intercept ARP at the UPF entity and respond to it based on a local ARP/IPv6 Neighbour cache.

公开(公告)号：US20200186490A1

公开(公告)日：2020-06-11

申请号：US16789697

申请日：2020-02-13

Applicant: Huawei Technologies Co., Ltd.

Inventor： Sridhar Bhaskaran ,  Marco Spini ,  Fenqin Zhu

IPC: H04L29/12 ,  H04W76/12

Abstract: Methods and apparatuses for acquisition of an address resolution protocol (ARP)/IPv6 Neighbour cache at a user plane function (UPF) entity without performing deep packet inspection for every packet that traverses a network. The ARP broadcast/ICMPv6 Neighbour Solicitation multicast from any Ethernet client (a user equipment (UE) or clients behind the UE or clients in a data network (DN)) is responded to by the UPF entity itself, by looking up the ARP/IPv6 Neighbour cache built in the UPF entity, irrespective of whether the UPF entity acts as the core Ethernet switch or whether the core Ethernet switch is in the DN. The solution is simplified to always intercept ARP at the UPF entity and respond to it based on a local ARP/IPv6 Neighbour cache.

公开(公告)号：US20210359971A1

公开(公告)日：2021-11-18

申请号：US17390335

申请日：2021-07-30

Applicant: Huawei Technologies Co., Ltd.

Inventor： Sridhar Bhaskaran ,  Marco Spini ,  Fenqin Zhu

IPC: H04L29/12 ,  H04W76/12

Abstract: Methods and apparatuses for acquisition of an Address Resolution Protocol (ARP)/IPv6 neighbour cache at a user plane function (UPF) entity without performing deep packet inspection for every packet that traverses a network. The ARP broadcast/Internet Control Message Protocol version 6 (ICMPv6) neighbour solicitation multicast from any Ethernet client (a user equipment (UE) or clients behind the UE or clients in a data network (DN)) is responded to by the UPF entity itself, by looking up the ARP/IPv6 Neighbour cache built in the UPF entity, irrespective of whether the UPF entity acts as the core Ethernet switch or whether the core Ethernet switch is in the DN. The solution is simplified to always intercept ARP at the UPF entity and respond to it based on a local ARP/IPv6 Neighbour cache.

公开(公告)号：US10897712B2

公开(公告)日：2021-01-19

申请号：US16240710

申请日：2019-01-05

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Lichun Li ,  Fei Liu ,  Marco Spini

IPC: G06F21/00 ,  H04W12/06 ,  H04L29/06 ,  H04W12/10 ,  H04W12/00 ,  H04L29/08

Abstract: Embodiments of the present invention disclose a cyber security management system, method, and apparatus. The system includes user equipment (UE), an access network (AN), a network function selection module, and at least two authentication modules. The UE is configured to send a first service request to the network function selection module, where the first service request carries authentication protocol information. The network function selection module is configured to: select a target authentication module based on the authentication protocol information, and send a second service request to the target authentication module. The target authentication module is configured to perform mutual authentication with the UE. The target authentication module is further configured to: determine a first security configuration according to a specified security policy, and send the first security configuration to the AN.