-
公开(公告)号:US20210243165A1
公开(公告)日:2021-08-05
申请号:US17053127
申请日:2019-05-10
Applicant: Nokia Technologies Oy
Inventor: Nagendra S. BYKAMPADI , Uwe RAUSCHENBACH
Abstract: In a communication system wherein a first security edge protection proxy (SEPP) element of a first network is operatively coupled to a second SEPP element of a second network, a method includes receiving, at the first SEPP element, a first message from a first network function in the first network addressed to a second network function in the second network, the first message comprising one of a request and a response line comprising a uniform resource identifier (URI) having a plurality of elements. The method also includes forming, at the first SEPP, a second message comprising encrypted and integrity protected portions, the encrypted portion comprising an encryption of at least a subset of the plurality of elements of the URI, the integrity protected portion comprising a structured representation of the URI wherein instances of elements in the subset are replaced with references to the encrypted portion.
-
公开(公告)号:US20220377528A1
公开(公告)日:2022-11-24
申请号:US17772006
申请日:2020-09-15
Applicant: NOKIA TECHNOLOGIES OY
Inventor: Devaki CHANDRAMOULI , Nagendra S. BYKAMPADI , Saurabh KHARE
Abstract: Systems, methods, apparatuses, and computer program products for dynamically unsubscribing from a public land mobile network (PLMN)/non-private network (NPN) service. In example embodiments, a method is provided. The method comprises transmitting, by a user equipment (UE), at least one first message (112, 114) associated with registering with at least one network, wherein the at least one first message (112, 114) includes first information that indicates whether the user equipment (UE) is capable of unsubscribing from one or more services associated with the at least one network; and receiving, by the user equipment (UE), at least one second message (124) associated with accepting registration of the user equipment (UE) with the at least one network, wherein the at least one second message (124) includes second information that indicates whether the user equipment (UE) is allowed to unsubscribe from the one or more services.
-
公开(公告)号:US20220191008A1
公开(公告)日:2022-06-16
申请号:US17437652
申请日:2020-03-04
Applicant: Nokia Technologies Oy
Inventor: Suresh NAIR , Anja JERICHOW , Nagendra S. BYKAMPADI
IPC: H04L9/08 , H04L67/141
Abstract: In with a network exposure function of a communication network, a method comprises generating at least one application layer cryptographic key based on a request specific to given user equipment received from an application function, and sharing the application layer cryptographic key with the application function. The application layer cryptographic key is configured to enable the application function and the given user equipment to establish a secure communication session.
-
公开(公告)号:US20200021992A1
公开(公告)日:2020-01-16
申请号:US16581690
申请日:2019-09-24
Applicant: Nokia Technologies Oy
Inventor: Suresh NAIR , Anja JERICHOW , Nagendra S. BYKAMPADI
Abstract: A short message service (SMS) message is encrypted using an encryption key stored at a user equipment and an access and mobility management function (AMF) and the encrypted SMS message is added to a payload of a non-access stratum (NAS) message that includes an NAS header. Integrity protection is applied to the NAS message using an integrity key stored at the user equipment and the AMF and the integrity-protected NAS message is transmitted. The NAS message is received via an NAS link between the user equipment and the AMF. An integrity check is performed on the NAS message using the integrity key. An encrypted short message service (SMS) message is extracted from a payload of the NAS message in response to the integrity check being successful and the encrypted SMS message is decrypted using the encryption key.
-
-
-