公开(公告)号：US20250063360A1

公开(公告)日：2025-02-20

申请号：US18489611

申请日：2023-10-18

Applicant: Cisco Technology, Inc.

Inventor： Venkatesh Nataraj ,  Angelica Jirina Semenec

IPC: H04W12/069 ,  H04W12/71

Abstract: This disclosure describes techniques to establish and manage stateful multi-privileged control connections between edge devices and a controller of a SD-WAN. The described techniques may receive request(s) and/or data from edge device(s) that include certificates. The described techniques may utilize criteria to determine validity and acceptability of the certificates during authentication. Where the controller determines a certificate in invalid and acceptable, the described techniques move the edge device to a new quarantine state. In the quarantine state, an edge device maintains the control connection with the controller in order to remediate the certificate, but restricts access to the data plane to reduce security risks. A notification may be generated and displayed to an administrator in response to determining a certificate is invalid and acceptable and/or in response to moving the edge device to the quarantine state. Accordingly, the described techniques improve SD-WAN infrastructure and reduce security risks.

公开(公告)号：US12231887B2

公开(公告)日：2025-02-18

申请号：US18593815

申请日：2024-03-01

Applicant: Micron Technology, Inc.

Inventor： Zhan Liu

IPC: H04W88/02 ,  H04L9/32 ,  H04W12/06 ,  H04W12/069 ,  H04W12/08 ,  H04W12/12 ,  H04W84/04

Abstract: The disclosed embodiments relate to authenticating devices to a cellular network. In one embodiment, a method is disclosed comprising reading a mobile identifier from a storage area of a memory device, the mobile identifier comprising a value associated with a subscriber of a cellular network; signing the mobile identifier using a private key to generate a digital signature, the private key generated using a physically unclonable function (PUF); transmitting the digital signature and a public key to a cellular network, the public key associated with the private key; and receiving, from the cellular network, a confirmation of access to the cellular network, the confirmation generated based on the public key and the digital signature.

公开(公告)号：US20250048101A1

公开(公告)日：2025-02-06

申请号：US18904516

申请日：2024-10-02

Applicant: Global Business Software Development Technologies, Inc.

Inventor： Michael W. Powers

IPC: H04W12/069 ,  H04L9/32 ,  H04M3/436 ,  H04W76/10

Abstract: In one embodiment, a network interface is operable to receive a communication request over a communication link of a radio access network. A processor communicatively coupled to the network interface receives the communication request from a first networked device over a communication link of a radio access network via a first communication protocol. The communication request comprises caller information. The processor then verifies caller information and obtains an authenticator, associated with the caller information, that indicates the communication request is authorized to be routed to a second networked device. The second networked device is configured to receive communications via a second communication protocol.

公开(公告)号：US20250039675A1

公开(公告)日：2025-01-30

申请号：US18715757

申请日：2022-12-11

Applicant: Sony Semiconductor Solutions Corporation

Inventor： Avishay SHARAGA ,  Lavi SEMEL ,  Yehuda BEN-SIMON ,  Oleg MARINCHENCO ,  Carmit TAMIR ,  Omer BOTVIN

IPC: H04W12/72 ,  H04L67/30 ,  H04W4/60 ,  H04W8/24 ,  H04W12/069

Abstract: An edge device includes a memory and circuitry. The circuitry is configured to communicate over a communication network, including serving as a Subscriber Identity Module (SIM) of the edge device, to be pre-configured with security credentials assigned to the SIM, to receive, over the communication network or over an alternative communication channel, at least a portion of a SIM-blob, the portion including at least part of a SIM Operating System (SIM-OS) for operating the SIM, to store the SIM-blob in the memory, to provision the SIM-OS using the security credentials, and to carry out SIM tasks for the edge device using the SIM-OS.

公开(公告)号：US20250031039A1

公开(公告)日：2025-01-23

申请号：US18708456

申请日：2022-10-18

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Zhang Fu ,  Monica Wifvesson ,  Juying Gan ,  Cheng Wang ,  Qian Chen ,  David Castellanos Zamora

IPC: H04W12/069 ,  H04L12/28 ,  H04W12/63 ,  H04W92/18

Abstract: A remote communication device performs an authentication procedure with a home communication network, via a relay communication device, to authenticate the remote communication device to the home communication network for a proximity-based service, ProSe. Performing the authentication procedure comprises deriving one or more keys included in an authentication vector. The remote communication device generates an anchor key for the ProSe directly from the one or more keys included in the authentication vector. The remote communication device protects ProSe direct communication between the remote communication device and the relay communication device using security key material derived from the anchor key.

公开(公告)号：US12205155B1

公开(公告)日：2025-01-21

申请号：US18585921

申请日：2024-02-23

Applicant: Seven Networks, LLC

Inventor： Jay Sutaria ,  Brian Daniel Gustafson ,  Robert Paul van Gent ,  Ruth Lin ,  David Merriwether ,  Parvinder Sawhney

IPC: H04L29/06 ,  G06F21/44 ,  G06Q30/06 ,  H04L9/40 ,  H04W12/06 ,  H04W12/069 ,  H04W12/08

Abstract: Systems and methods for authenticating access to multiple data stores substantially in real-time are disclosed. The system may include a server coupled to a network, a client device in communication with the server via the network and a plurality of data stores. The server may authenticate access to the data stores and forward information from those stores to the client device. An exemplary authentication method may include receipt of a request for access to data. Information concerning access to that data is stored and associated with an identifier assigned to a client device. If the identifier is found to correspond to the stored information during a future request for access to the store, access to that store is granted.

公开(公告)号：US20250021963A1

公开(公告)日：2025-01-16

申请号：US18783919

申请日：2024-07-25

Applicant: Capital One Services, LLC

Inventor： Jeffrey RULE ,  Wayne LUTZ ,  Paul MORETON

IPC: G06Q20/34 ,  G06F16/955 ,  G06F21/35 ,  G06F21/44 ,  G06F21/62 ,  G06F40/174 ,  G06Q20/38 ,  G06Q20/40 ,  H04W4/80 ,  H04W12/069 ,  H04W12/30 ,  H04W12/47

Abstract: A device may receive a uniform resource locator (URL) and encrypted data. The device may download a first application from an application server based on the URL. The device may download and execute the first application. The first application may receive the encrypted data.

公开(公告)号：US20250016666A1

公开(公告)日：2025-01-09

申请号：US18896766

申请日：2024-09-25

Applicant: MAXLINEAR, INC.

Inventor： Artur ZAKS

IPC: H04W48/16 ,  G06F9/455 ,  H04L9/40 ,  H04L12/46 ,  H04W12/041 ,  H04W12/069 ,  H04W24/08 ,  H04W48/06 ,  H04W76/15 ,  H04W76/27 ,  H04W84/02 ,  H04W84/12 ,  H04W88/00 ,  H04W88/12 ,  H04W92/02 ,  H04W92/12

Abstract: A network device or system can operate to enable a security pass-through with a user equipment (UE) and further define various virtual functions between a physical access point (pAP) and a virtual AP (vAP) based on one or more communication link parameters (e.g., latency). The security pass-through can be an interface connection that passes through a computer premise equipment (CPE) or wireless residential gateway (GW) without the CPE or GW modifying or affecting the data traffic such as by authentication or security protocol. The SP network device can receive traffic data from a UE through or via the security pass-through from a UE of a community Wi-Fi network at a home, residence, or entity network.

公开(公告)号：US20250016551A1

公开(公告)日：2025-01-09

申请号：US18762723

申请日：2024-07-03

Applicant: LexAnalytico consulting private limited

Inventor： Gyanveer Singh

IPC: H04W8/26 ,  H04W8/18 ,  H04W12/069 ,  H04W12/72

Abstract: A method for temporary remote provisioning of an electronic Subscriber Identity Module (eSIM) profile on a secondary device is disclosed. The method includes receiving a request from a user to temporarily provision the eSIM profile on the secondary device and authenticating user's identity by verifying user credentials via an authentication server. Next, the method includes suspending the eSIM profile on a primary device upon successful authentication and downloading the eSIM profile, to the secondary device, from a subscription management server that is configured to manage eSIM profile provisioning. Thereafter, the method includes activating the eSIM profile on the secondary device for a specific interval based on a predefined condition.

公开(公告)号：US20250008341A2

公开(公告)日：2025-01-02

申请号：US18561883

申请日：2022-05-18

Applicant: HERE GLOBAL B.V.

Inventor： Giovanni LAFRANCHI ,  Oleksandr KONDRASHOV ,  Onur DERIN ,  Ezard OVERBEEK

IPC: H04W16/24 ,  H04W4/02 ,  H04W12/069

Abstract: A computer-implemented method can provide time-valid location-based information. The method comprises: for an environment, defining a plurality of cells, each cell comprising: a respective location with a range based on a geographical extent of the respective cell within the environment; a respective predetermined validity-time-interval; respective semantic-location-data relevant to the respective location; respective executable code instructions configured to operate on the respective semantic-location-data to enable determination of respective time-valid location-based information upon execution of the respective code instructions by a first edge computing apparatus proximal to the respective location. The respective time-valid location-based information is valid within the respective predetermined validity-time-interval.