公开(公告)号：US11711692B2

公开(公告)日：2023-07-25

申请号：US17195151

申请日：2021-03-08

Applicant: Sprint Communications Company L.P.

Inventor： Ronald R. Marquardt ,  Arun Rajagopal ,  Lyle Walter Paczkowski

IPC: G06F16/18 ,  H04W12/069 ,  H04W48/18 ,  H04L9/40 ,  H04L9/06 ,  H04W12/0431 ,  H04L9/00

CPC classification number: H04W12/069 ,  G06F16/1805 ,  H04L9/0643 ,  H04L63/062 ,  H04L63/0823 ,  H04W12/0431 ,  H04W48/18 ,  H04L9/50

Abstract: A wireless communication network serves a wireless user device with a wireless communication service from a wireless network slice that includes a Virtual Network Function (VNF). The VNF maintains hardware-trust with a distributed ledger. The distributed ledger maintains hardware-trust with the VNF. The VNF delivers the wireless communication service to the wireless user device from the wireless network slice. The VNF generates slice data that characterizes the service delivery. When the VNF maintains the hardware-trust with the distributed ledger, the VNF transfers the slice data to the distributed ledger. When the distributed ledger maintains the hardware-trust with the VNF, the distributed ledger stores the slice data.

公开(公告)号：US20210195421A1

公开(公告)日：2021-06-24

申请号：US17195151

申请日：2021-03-08

Applicant: Sprint Communications Company L.P.

Inventor： Ronald R. Marquardt ,  Arun Rajagopal ,  Lyle Walter Paczkowski

IPC: H04W12/069 ,  H04L29/06 ,  H04L9/06 ,  G06F16/18 ,  H04W48/18 ,  H04W12/0431

Abstract: A wireless communication network serves a wireless user device with a wireless communication service from a wireless network slice that includes a Virtual Network Function (VNF). The VNF maintains hardware-trust with a distributed ledger. The distributed ledger maintains hardware-trust with the VNF. The VNF delivers the wireless communication service to the wireless user device from the wireless network slice. The VNF generates slice data that characterizes the service delivery. When the VNF maintains the hardware-trust with the distributed ledger, the VNF transfers the slice data to the distributed ledger. When the distributed ledger maintains the hardware-trust with the VNF, the distributed ledger stores the slice data.

公开(公告)号：US10749847B2

公开(公告)日：2020-08-18

申请号：US16367018

申请日：2019-03-27

Applicant: Sprint Communications Company L.P.

Inventor： Ronald R. Marquardt ,  Lyle Walter Paczkowski ,  Arun Rajagopal

IPC: H04L29/06 ,  H04L9/32 ,  G06F21/44 ,  G06F21/57 ,  G06F21/60 ,  G06F21/72

Abstract: A data communication system exchanges user data between a first System-On-Chip (SOC) and a second SOC. The SOCs hash and transfer their read-only hardware-trust keys and receive hardware-trust digital certificates. The SOCs exchange and validate the hardware-trust digital certificates. The first SOC encrypts user data and transfers the encrypted user data responsive to the hardware-trust validations. The second SOC receives the encrypted user data, decrypts the encrypted user data, and processes the decrypted user data responsive to the hardware-trust validations. In some examples, the second SOC encrypts and transfers other user data responsive to the hardware-trust validations, and the first SOC receives, decrypts, and processes the other user data responsive to the hardware-trust validations. The first and/or the second SOC could be wireless communication devices.

公开(公告)号：US10686725B2

公开(公告)日：2020-06-16

申请号：US16017005

申请日：2018-06-25

Applicant: Sprint Communications Company L.P.

Inventor： Marouane Balmakhtar ,  Arun Rajagopal

IPC: H04L12/927 ,  H04L12/26 ,  H04L12/715 ,  H04L12/24

Abstract: A Software-Defined Network (SDN) controller receives controller Application Programming Interface (API) calls from an SDN application and transfers SDN data machine API calls. SDN data machines receive the SDN data machine API calls and process user data responsive to the SDN data machine API calls. The SDN controller transfers SDN controller Key Performance Indicators (KPIs) that indicate an amount of the SDN application API calls for the SDN data machine API calls. The SDN data machines transfers SDN data machine KPIs that indicate an amount of the processed user data for the SDN data machine API calls. An SDN server receives the SDN data machine KPIs and the SDN controller KPIs. The SDN server determines an SDN Quality-of-Service (QoS) score for a data communication service based on the amount of the SDN application API calls relative to the corresponding amount of the processed user data.

公开(公告)号：US20190342089A1

公开(公告)日：2019-11-07

申请号：US16514656

申请日：2019-07-17

Applicant: Sprint Communications Company L.P.

Inventor： Lyle Walter Paczkowski ,  Arun Rajagopal ,  Marouane Balmakhtar

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/32 ,  H04L12/24

Abstract: A Network Function Virtualization (NFV) system implements hardware trusted Management and Orchestration (MANO). A Hardware (HW) trust server issues a HW trust challenge to a first MANO system. The first MANO system hashes its physically-embedded read-only hardware trust key to generate a HW trust result and transfers the HW trust result to the HW trust server. The HW trust server validates the hardware trust result and transfers a HW trust certificate to the first MANO system. The first MANO system transfers the HW trust certificate and NFV MANO data to a second MANO system. The second MANO system validates the HW trust certificate. The second MANO system exchanges NFVI control data with NFVI circuitry responsive to the NFV MANO data when the HW trust certificate is valid. The second MANO system isolates the NFV MANO data when the HW trust certificate is not valid.

公开(公告)号：US10164914B2

公开(公告)日：2018-12-25

申请号：US15352969

申请日：2016-11-16

Applicant: Sprint Communications Company L.P.

Inventor： Arun Rajagopal ,  Marouane Balmakhtar ,  Lyle Walter Paczkowski

IPC: H04L12/931 ,  H04L12/24

Abstract: A Network Function Virtualization (NFV) Software-Defined Network (SDN) communicates across network boundaries with other NFV SDNs to support a data communication service. An NFV orchestrator transfers forwarding graphs for service, NFV, and SDN Network-to-Network Interfaces (NNIs) to an SDN controller. The SDN controller converts the forwarding graphs into forwarding instructions and transfers the forwarding instructions for the service, NFV, and SDN NNIs to an NFV SDN switching system. The NFV orchestrator uses the NFV NNI to transfer its forwarding graphs over the NFV SDN switching system across the network boundary to another NFV orchestrator. The SDN controller uses the SDN NNI to transfer its forwarding instructions over the NFV SDN switching system across the network boundary to another SDN controller. The NFV SDN switching system uses the service NNI to transfer user data across the network boundary to another NFV SDN switching system.

公开(公告)号：US10075540B2

公开(公告)日：2018-09-11

申请号：US15815031

申请日：2017-11-16

Applicant: Sprint Communications Company L.P.

Inventor： Arun Rajagopal ,  Lyle Walter Paczkowski

IPC: G06F15/16 ,  H04L29/08 ,  H04L12/24 ,  G06F9/455

CPC classification number: H04L67/16 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L41/28 ,  H04W12/06

Abstract: A wireless User Equipment (UE) comprises a Network Function Virtualization Infrastructure (NFVI) that has hardware-trusted circuitry to support a hardware-trusted wireless communication service. A Network Function Virtualization Management and Orchestration (NFV MANO) orchestrator executes in the hardware-trusted circuitry and exchanges hardware trust data with a wireless communication network to maintain hardware-trust. The NFV MANO orchestrator also exchanges network operations data for the hardware-trusted wireless communication service with the wireless network over an Os-Nfvo link. Responsive to the exchange of the network operations data, the NFV MANO orchestrator exchanges network service data with the hardware-trusted circuitry in the NFVI over an Nf-Vi link to execute an NFV Virtual Network Function (VNF) to support the hardware-trusted wireless communication service. Responsive to the exchange of the network service data, the hardware-trusted circuitry in the NFVI executes the NFV VNF to support the hardware-trusted wireless communication service.

公开(公告)号：US10050739B2

公开(公告)日：2018-08-14

申请号：US15428529

申请日：2017-02-09

Applicant: Sprint Communications Company, L.P.

Inventor： Ronald R. Marquardt ,  Lyle Walter Paczkowski ,  Arun Rajagopal

IPC: H04B10/27 ,  H04J14/02 ,  H04L29/06

Abstract: An Internet Protocol/Wave Division Multiplex (IP/WDM) machine implements Hardware Root of Trust (HRoT). In the IP/WDM machine, an IP router exchanges IP packets between IP ports and WDM interfaces based on IP control data. A WDM switch exchanges the IP packets between the WDM interfaces and WDM ports based on WDM control data. The WDM ports exchange the IP packets using different optical wavelengths. Data processing circuitry transfers HRoT data indicating the optical wavelengths used to exchange the IP packets and indicating an encoded hardware key that is physically-embedded in the IP/WDM machine.

公开(公告)号：US20180219744A1

公开(公告)日：2018-08-02

申请号：US15421201

申请日：2017-01-31

Applicant: Sprint Communications Company L.P.

Inventor： Arun Rajagopal ,  Marouane Balmakhtar ,  Carl Joseph Persson

IPC: H04L12/24 ,  H04L12/26 ,  H04L29/08

CPC classification number: H04L41/12 ,  H04L41/0806 ,  H04L41/0893 ,  H04L43/08 ,  H04L43/16 ,  H04L47/805 ,  H04L67/10 ,  H04L67/28

Abstract: A Software-Defined Network (SDN) distributes Proxy Correlation Index (PCI) control in an SDN data-plane. An SDN controller transfers SDN signaling that indicates a data-plane PCI configuration. An SDN data machine processes the SDN signaling and configures a PCI generator and a flow controller to implement the data-plane PCI configuration. The SDN data-plane machine processes user data flows per a Flow Description Table (FDT) and generates Key Performance Indicators (KPIs) for the user data flows. The PCI generator generates PCIs based on the KPIs and the data-plane PCI configuration. The flow controller updates the FDT based on the PCIs and the data-plane PCI configuration. The SDN data-plane machine processes the user data flows per the updated FDT.

公开(公告)号：US09979699B1

公开(公告)日：2018-05-22

申请号：US15655080

申请日：2017-07-20

Applicant: Sprint Communications Company L.P.

Inventor： Ronald R. Marquardt ,  Lyle W. Paczkowski ,  Arun Rajagopal

IPC: H04L29/06 ,  H04L29/08 ,  G06F9/455

CPC classification number: H04L63/0272 ,  G06F9/45558 ,  G06F2009/4557 ,  H04L63/0209 ,  H04L63/0807 ,  H04L67/1002 ,  H04L67/32

Abstract: A system for establishing a trusted end-to-end communication link between different NFV networks is disclosed. The system comprises a server operating in a trusted security zone and configured to generate and send a trust ticket, a communication request, and disable communication with the first NFV network. The system further comprises a virtual machine executing virtualized network functions and a session border controller. The session border controller is configured to receive the trust ticket, request, and trusted data from the first server; transmit the trust ticket and request to a second session border controller, wherein the trust ticket and request are transmitted to a second server associated with a second NFV network, and receive a response and second trust ticket from the second NFV network, compare the first and second trust ticket for compatibility, and transmit the trusted data if the trust tickets are compatible.