STATEFUL MULTI-PRIVILEGED SD-WAN CONTROL CONNECTIONS

    公开(公告)号:US20250063360A1

    公开(公告)日:2025-02-20

    申请号:US18489611

    申请日:2023-10-18

    Abstract: This disclosure describes techniques to establish and manage stateful multi-privileged control connections between edge devices and a controller of a SD-WAN. The described techniques may receive request(s) and/or data from edge device(s) that include certificates. The described techniques may utilize criteria to determine validity and acceptability of the certificates during authentication. Where the controller determines a certificate in invalid and acceptable, the described techniques move the edge device to a new quarantine state. In the quarantine state, an edge device maintains the control connection with the controller in order to remediate the certificate, but restricts access to the data plane to reduce security risks. A notification may be generated and displayed to an administrator in response to determining a certificate is invalid and acceptable and/or in response to moving the edge device to the quarantine state. Accordingly, the described techniques improve SD-WAN infrastructure and reduce security risks.

    Cellular network authentication using a memory security token

    公开(公告)号:US12231887B2

    公开(公告)日:2025-02-18

    申请号:US18593815

    申请日:2024-03-01

    Inventor: Zhan Liu

    Abstract: The disclosed embodiments relate to authenticating devices to a cellular network. In one embodiment, a method is disclosed comprising reading a mobile identifier from a storage area of a memory device, the mobile identifier comprising a value associated with a subscriber of a cellular network; signing the mobile identifier using a private key to generate a digital signature, the private key generated using a physically unclonable function (PUF); transmitting the digital signature and a public key to a cellular network, the public key associated with the private key; and receiving, from the cellular network, a confirmation of access to the cellular network, the confirmation generated based on the public key and the digital signature.

    AUTHENTICATOR MANAGER IN INTER-PROTOCOL NETWORKS

    公开(公告)号:US20250048101A1

    公开(公告)日:2025-02-06

    申请号:US18904516

    申请日:2024-10-02

    Abstract: In one embodiment, a network interface is operable to receive a communication request over a communication link of a radio access network. A processor communicatively coupled to the network interface receives the communication request from a first networked device over a communication link of a radio access network via a first communication protocol. The communication request comprises caller information. The processor then verifies caller information and obtains an authenticator, associated with the caller information, that indicates the communication request is authorized to be routed to a second networked device. The second networked device is configured to receive communications via a second communication protocol.

    SYSTEM AND METHOD FOR TEMPORARY PROVISIONING OF ESIM PROFILE ON A SECONDARY DEVICE

    公开(公告)号:US20250016551A1

    公开(公告)日:2025-01-09

    申请号:US18762723

    申请日:2024-07-03

    Inventor: Gyanveer Singh

    Abstract: A method for temporary remote provisioning of an electronic Subscriber Identity Module (eSIM) profile on a secondary device is disclosed. The method includes receiving a request from a user to temporarily provision the eSIM profile on the secondary device and authenticating user's identity by verifying user credentials via an authentication server. Next, the method includes suspending the eSIM profile on a primary device upon successful authentication and downloading the eSIM profile, to the secondary device, from a subscription management server that is configured to manage eSIM profile provisioning. Thereafter, the method includes activating the eSIM profile on the secondary device for a specific interval based on a predefined condition.

    METHODS AND APPARATUS FOR PROVIDING TIME VALID LOCATION BASED INFORMATION

    公开(公告)号:US20250008341A2

    公开(公告)日:2025-01-02

    申请号:US18561883

    申请日:2022-05-18

    Abstract: A computer-implemented method can provide time-valid location-based information. The method comprises: for an environment, defining a plurality of cells, each cell comprising: a respective location with a range based on a geographical extent of the respective cell within the environment; a respective predetermined validity-time-interval; respective semantic-location-data relevant to the respective location; respective executable code instructions configured to operate on the respective semantic-location-data to enable determination of respective time-valid location-based information upon execution of the respective code instructions by a first edge computing apparatus proximal to the respective location. The respective time-valid location-based information is valid within the respective predetermined validity-time-interval.

Patent Agency Ranking