-
公开(公告)号:WO2021259452A1
公开(公告)日:2021-12-30
申请号:PCT/EP2020/067372
申请日:2020-06-22
申请人: LENOVO (SINGAPORE) PTE. LTD. , KUNZ, Andreas , SALKINTZIS, Apostolis , BASKARAN, Sheeba Backia Mary , ATARIUS, Roozbeh
IPC分类号: H04W12/06 , H04W12/02 , H04L29/06 , H04W12/12 , H04L63/1475
摘要: Apparatuses, methods, and systems are disclosed for supporting authentication with a mobile core network using a concealed identity. One apparatus (300) includes a processor (305) that sends (505) a first authentication message that includes a concealed identifier to a network function to authenticate with a mobile communication network via a non-3GPP access network. The processor (305) receives (510) a second authentication message from the network function in response to the first authentication message. The second authentication message comprises an authentication response based on the concealed identifier. The processor (305) completes (515) authentication with the mobile communication network in response to the authentication response comprising a challenge packet. The processor (305) receives (520) configuration information for accessing the mobile communication network in response to successful authentication with the mobile communication network.
-
公开(公告)号:WO2021244758A1
公开(公告)日:2021-12-09
申请号:PCT/EP2020/065682
申请日:2020-06-05
申请人: LENOVO (SINGAPORE) PTE. LTD. , KUNZ, Andreas , SALKINTZIS, Apostolis , BASKARAN, Sheeba Backia Mary
IPC分类号: H04W12/06 , H04W12/041 , H04W12/0433 , H04W12/086 , H04L29/06 , H04L63/164
摘要: Apparatuses, methods, and systems are disclosed for supporting remote unit reauthentication. One apparatus (600) apparatus includes a processor (605) and a transceiver (625) that sends (805) a first authentication message to a network function in a mobile communication network and receives (810) a second authentication message from the network function in response to the first authentication message. Here, the first authentication message contains an indicator that the apparatus supports EAP Reauthentication Protocol and the second authentication message contains a key management domain name indicating a group of network functions that can share reauthentication security context. The processor (605) derives (815) reauthentication security context in response to successful authentication with the mobile communication network and locally stores (820) the received key management domain name and the derived reauthentication security context for subsequent reauthentication with the mobile communication network.
-
公开(公告)号:WO2022122127A1
公开(公告)日:2022-06-16
申请号:PCT/EP2020/085120
申请日:2020-12-08
申请人: LENOVO (SINGAPORE) PTE. LTD. [SG]/[SG] , PATEROMICHELAKIS, Emmanouil [GR]/[DE] (US) , BASKARAN, Sheeba Backia Mary [IN]/[DE] (US) , KUCHIBHOTLA, Ravi [US]/[US] (US)
IPC分类号: H04W12/00 , H04W12/106 , H04W12/30 , H04W12/69
摘要: Apparatuses, methods, and systems are disclosed for managing the end-to-end ("e2e") data protection. One apparatus (600) includes a transceiver (625) that receives (705), from an application server (217), a management requirement for managing e2e data protection for at least one service. The apparatus (600) includes a processor (605) that obtains (710) at least one digital identifier ("DIG-ID") of at least one client device (201) for the at least one service in response to receiving the management requirement and verifies (715) the at least one DIG-ID with a distributed transaction verification network. The transceiver (625) further sends 720 a request to a mobile communication network, the request providing the at least one verified DID, and sends (725) a trigger event to the at least one client device for connecting to the mobile communication network using the at least one verified DID.
-
公开(公告)号:WO2022096126A1
公开(公告)日:2022-05-12
申请号:PCT/EP2020/081375
申请日:2020-11-06
申请人: LENOVO (SINGAPORE) PTE. LTD. , BASKARAN, Sheeba Backia Mary , SALKINTZIS, Apostolis , KUNZ, Andreas , VELEV, Genadi , ATARIUS, Roozbeh , VAISHNAVI, Ishan , PATEROMICHELAKIS, Emmanouil , KARAMPATSIS, Dimitrios
发明人: BASKARAN, Sheeba Backia Mary , SALKINTZIS, Apostolis , KUNZ, Andreas , VELEV, Genadi , ATARIUS, Roozbeh , VAISHNAVI, Ishan , PATEROMICHELAKIS, Emmanouil , KARAMPATSIS, Dimitrios
摘要: Apparatuses, methods, and systems are disclosed for Digital Identifier-based subscription onboarding. One apparatus (600) includes a processor (605) that acquires (805) a Digital Identifier ("DIG-ID"), the DIG-ID comprising a verifiably secure identity, and generates (810) a digital signature of the DIG-ID and a timestamp using a private key. The apparatus (600) includes a transceiver (625) that sends (815) a first request to a mobile communication network and receives (820) a response containing an onboarding authentication success indication and a verified DIG-ID, said first request including the DIG-ID, the timestamp and the generated digital signature. The processor (605) establishes (825) a provisioning connection to the mobile communication network and receives (830) a subscription credential and/or a user subscription profile via the provisioning connection.
-
公开(公告)号:WO2021223861A1
公开(公告)日:2021-11-11
申请号:PCT/EP2020/062505
申请日:2020-05-06
申请人: LENOVO (SINGAPORE) PTE. LTD. , SALKINTZIS, Apostolis , BASKARAN, Sheeba Backia Mary , KUNZ, Andreas
摘要: Apparatuses, methods, and systems are disclosed for supporting TNGF reauthentication. One apparatus 700 apparatus includes a processor 705 that establishes 905 connectivity with a first access point in a non-3GPP access network. The processor 705 sends 910 a first EAP message containing a NAI. If the NAI indicates a request to reauthenticate with a gateway function in the non-3GPP access network, then the processor 705 receives 915 a first EAP challenge packet used to authenticate the gateway function. If the NAI indicates a request to initiate a NAS signaling procedure with a mobile communication network, then the processor 705 receives 920 an EAP start packet. Here, the EAP start packet triggers the processor to send a first NAS message to the mobile communication network. The processor 705 completes 925 an EAP session initiated by one of the first EAP challenge packet and the EAP start packet.
-
公开(公告)号:WO2022067654A1
公开(公告)日:2022-04-07
申请号:PCT/CN2020/119365
申请日:2020-09-30
IPC分类号: H04L9/08 , H04W12/04 , H04W12/041
摘要: Apparatuses, methods, and systems are disclosed for key-based authentication for a mobile edge computing network. One method (800) includes deriving (805), at a user equipment, a first network key after authentication with a network function of a wireless core network, deriving (810) a second network key based on the first network key, the second network key for a first network function of a mobile edge computing network, sending (815) a registration request message to the first network function of the mobile edge computing network, the registration request message integrity protected with the second network key, receiving (820) a registration response message from the first network function, and, in response to verifying the integrity of the registration response message using the second network key, establishing (825) a secure communication with the first network function of the mobile edge computing network based on the second network key.
-
公开(公告)号:WO2022053148A1
公开(公告)日:2022-03-17
申请号:PCT/EP2020/075551
申请日:2020-09-11
申请人: LENOVO (SINGAPORE) PTE. LTD. , VAISHNAVI, Ishan , KUNZ, Andreas , BASKARAN, Sheeba Backia Mary , SALKINTZIS, Apostolis , KARAMPATSIS, Dimitrios
发明人: VAISHNAVI, Ishan , KUNZ, Andreas , BASKARAN, Sheeba Backia Mary , SALKINTZIS, Apostolis , KARAMPATSIS, Dimitrios
摘要: Apparatuses, methods, and systems are disclosed for determining a network system issue. One method (900) includes a first network device determining (902) a system issue corresponding to at least one second network device. The first network device is an analytics entity in a cellular network and the at least one second network device is a managed entity in the cellular network, and the system issue comprises a software issue, a hardware issue, a compatibility issue, an issue with an interaction between a plurality of second network devices comprising the at least one second network device, an issue with an interaction between the at least one second network device and another device, or some combination thereof. The analytics entity comprises an entity that analyzes one or more devices to determine descriptive analytics, predictive analytics, and/or prescriptive analytics. The method (900) includes providing (904) a notification indicating the system issue.
-
公开(公告)号:WO2021254595A1
公开(公告)日:2021-12-23
申请号:PCT/EP2020/066521
申请日:2020-06-15
申请人: LENOVO (SINGAPORE) PTE. LTD. , ATARIUS, Roozbeh , SALKINTZIS, Apostolis , KUNZ, Andreas , BASKARAN, Sheeba Backia Mary
摘要: Apparatuses, methods, and systems are disclosed for using a pseudonym for access authentication over non-3 GPP access. One apparatus (500) includes a processor (505) and a transceiver (525) that communicates with a mobile communication network using a 3GPP access network and a non-3GPP access network. The processor (505) sends (705) a registration message to a first network function in the mobile communication network via the 3GPP access network, the first authentication message comprising a first indicator and a SUCI for the apparatus (500), wherein the first indicator comprises an indication that the apparatus (500) has the capability for access authentication for non-3 GPP access in an EPS. The processor (505) receives (710) a first identity pseudonym for the apparatus (500) in response to the registration message comprising the first indicator and performs (715) access authentication via a non-3 GPP access network using the first identify pseudonym.
-
公开(公告)号:WO2021233554A1
公开(公告)日:2021-11-25
申请号:PCT/EP2020/064328
申请日:2020-05-22
申请人: LENOVO (SINGAPORE) PTE. LTD. , VELEV, Genadi , SALKINTZIS, Apostolis , BASKARAN, Sheeba Backia Mary
IPC分类号: H04W8/20
摘要: Apparatuses, methods, and systems are disclosed for providing subscription data for an external subscriber. One apparatus (600) includes a processor (605) and a network interface (640) that receives (805) a registration request message from a remote unit and receives (810) a subscription retrieval information. Here, the registration request message contains an external subscriber identifier and the subscription retrieval information is different than the external subscriber identifier of the remote unit. The processor (605) controls the network interface (640) to transmit (815) to a network function in a mobile communication network a first request for subscription data retrieval using the subscription retrieval information and receive (820) a response message from the network function that contains the UE subscription data. Here, the subscription retrieval information indicates that the subscription data is stored in a subscription owner outside the mobile communication network.
-
公开(公告)号:WO2022096125A1
公开(公告)日:2022-05-12
申请号:PCT/EP2020/081366
申请日:2020-11-06
申请人: LENOVO (SINGAPORE) PTE. LTD. , BASKARAN, Sheeba Backia Mary , SALKINTZIS, Apostolis , KUNZ, Andreas
摘要: Apparatuses, methods, and systems are disclosed for Digital Identifier-based authentication for network access. One apparatus (600) includes a network interface (640) that receives (805) a first authentication request message from a network function and receives (810) subscription information from a service provider, the message containing a UE identifier that is based on a Digital Identifier ("DIG-ID"), said DIG-ID comprising a verifiably secure identity, said service provider identified using the DIG-ID. The apparatus (600) includes a processor (605) that stores (815) the subscription information and UE security context in response to successful authentication of the UE using the DIG-ID. Here, the UE security context contains at least one security key derived using the DIG-ID. The network interface (610) transmits (820) the at least one security key to the network function, where the at least one security key is used to protect traffic of the UE.
-
-
-
-
-
-
-
-
-
搜索结果
13 条记录 (耗时 0.015 秒)
