公开(公告)号：WO2017167402A1

公开(公告)日：2017-10-05

申请号：PCT/EP2016/057273

申请日：2016-04-01

Applicant: NEC EUROPE LTD.

Inventor： GAJEK, Sebastian ,  KARAME, Ghassan

IPC: H04L9/00

Abstract: The present invention relates to a method performed in a memory available to a computation device, for providing a space puzzle, using functional encryption for key generation, encryption and decryption, comprising the steps of a) Computing, by a puzzle generating entity, 'PGE', a master secret key, 'MSK', and a public key, 'PK' b) Computing, by said PGE, a random predicate, 'RP', c) Computing, by said PGE, a secret key, 'SK', using said computed MSK and said computed RP, d) Providing, by said PGE, a challenge comprising said PK and said SK, to a proving computing entity, e) Computing, by said proving computing entity, a response to said challenge using the size of said RP by computing a higher dimensional virtual structure each dimension of said higher dimensional virtual structure being of said size of said RP, f) Encrypting each row of said higher dimensional structure with said PK, g) Decrypting said encrypted rows using said SK to obtain a decrypted predicate, h) Recomputing said RP using said decrypted predicate and said higher dimensional virtual structure. i) Verifying said provided challenge by comparing said recomputed RP with said random predicate.

Abstract translation: 本发明涉及一种在可用于计算设备的存储器中执行的方法，用于使用用于密钥生成，加密和解密的功能性加密来提供空间难题，该方法包括以下步骤：a）计算， 由一个智力生成实体'PGE'，一个主秘密密钥'MSK'和一个公共密钥'PK'b）由所述PGE计算随机谓词'RP'，c）由所述PGE ，使用所述计算出的MSK和所述计算出的RP，秘密密钥“SK”，d）由所述PGE将包括所述PK和所述SK的质询提供给证明计算实体。e）由所述证明计算实体 通过计算更高维虚拟结构来对所述挑战做出响应，所述更高维虚拟结构的所述更高维虚拟结构的每个维是所述RP的所述大小，f）利用所述PK对所述更高维结构的每一行进行加密，g ）使用所述SK解密所述加密的行以获得解密的谓词，h） 使用所述解密的谓词和所述较高维度的虚拟结构来计算所述RP。 i）通过将所述重新计算的RP与所述随机谓词进行比较来验证所提供的挑战。

公开(公告)号：WO2017167391A1

公开(公告)日：2017-10-05

申请号：PCT/EP2016/057171

申请日：2016-03-31

Applicant: NEC EUROPE LTD.

Inventor： GONZALEZ SANCHEZ, Roberto ,  MARCIEL, Miriam ,  JIANG, Lili

IPC: H04L29/06 ,  G06F21/62

Abstract: A method for preserving privacy in an HTTP communication between a client and a server, the method comprising: intercepting an HTTP request that is sent from said client to said server; extracting a cookie from said HTTP request, wherein said cookie includes a cookie name and a cookie value; splitting said cookie value into information segments; and modifying one or more of said information segments based on predefined modification rules. Furthermore, a corresponding system is disclosed.

Abstract translation: 一种用于在客户端和服务器之间的HTTP通信中保存隐私的方法，所述方法包括：拦截从所述客户端发送到所述服务器的HTTP请求; 从所述HTTP请求中提取cookie，其中所述cookie包括cookie名称和cookie值; 将所述cookie值分割成信息段; 以及基于预定义的修改规则修改所述信息片段中的一个或多个。 此外，还披露了相应的系统。

公开(公告)号：WO2017167371A1

公开(公告)日：2017-10-05

申请号：PCT/EP2016/057041

申请日：2016-03-31

Applicant: NEC EUROPE LTD.

Inventor： MATSIUK, Anton

IPC: H04L12/721 ,  H04L12/715 ,  H04L12/707 ,  H04L12/703

CPC classification number: H04L45/28 ,  H04L41/0654 ,  H04L41/0677 ,  H04L45/22 ,  H04L45/566 ,  H04L45/64 ,  H04L45/745

Abstract: A method for performing path protection in an SDN network (1), comprises establishing protected connections, wherein each of said protected connections is between two endpoint switches (5) and includes a working path along a first set of intermediate switches (3) and at least one protection path along a second set of intermediate switches (3), providing metadata to said switches (3, 5), said metadata carrying information about the endpoint switches (5) of protected connections together with a unique identifier allocated to each or a group of said protected connections following the same path, by said intermediate switches (3), in case of experiencing a local port and/or link failure, using said metadata to generate a failure message towards endpoint switches (5) of the connections affected by said port and/or link failure, and by said endpoint switches (5), upon receiving a failure message, switching the affected connections from their working path to their at least one protection path.

Abstract translation: 一种用于在SDN网络（1）中执行路径保护的方法，包括建立受保护的连接，其中每个所述受保护的连接在两个端点交换机（5）之间并且包括沿着第一组 （3）的至少一个保护路径以及沿着第二组中间交换机（3）的至少一个保护路径，向所述交换机（3,5）提供元数据，所述元数据携带关于受保护连接的端点交换机（5）的信息以及 通过所述中间交换机（3）在遇到本地端口和/或链路故障的情况下，使用所述元数据来生成针对端点交换机的故障消息，从而为在相同路径之后的每个或一组所述受保护连接分配唯一标识符 （5）受到所述端口和/或链路故障影响的连接，并且由所述端点交换机（5）在接收到故障消息时，将受影响的连接从其工作路​​径切换到它们的至少一个p 保护路径。

公开(公告)号：WO2017167359A1

公开(公告)日：2017-10-05

申请号：PCT/EP2016/056929

申请日：2016-03-30

Applicant: NEC EUROPE LTD.

Inventor： LESSMANN, Johannes ,  BIFULCO, Roberto

IPC: H04L12/721 ,  H04L12/715 ,  H04W84/18

Abstract: The present invention relates to a method of forwarding packet flows in a network, wherein said packet flows originate from a plurality of end hosts (6) in the network and wherein said packet flows are transmitted from the respective one of said end hosts (6) to a sink node (8) via predefined routing paths. A routing path for packet flows of an end host (6) includes one or more SDN switches (2) that are under control of an SDN controller (4), wherein said one or more SDN switches (2) include an edge switch (7) having at least one port connected to said end host (6). The forwarding of a packet flow from a particular of said end hosts (6) by the respective edge switch (7) is enabled by means of a dedicated packet - door-opener packet - that, when being processed at said switches (2, 7), effectuates the activation or installation of a forwarding rule within said switches (2, 7) for forwarding said packet flow to the next switch along its routing path or to its final destination.

Abstract translation: 本发明涉及一种在网络中转发分组流的方法，其中所述分组流源自网络中的多个终端主机（6），并且其中所述分组流从相应的 通过预定义的路由路径将所述终端主机（6）中的一个节点连接到汇聚节点（8）。 终端主机（6）的分组流的路由路径包括在SDN控制器（4）的控制下的一个或多个SDN交换机（2），其中所述一个或多个SDN交换机（2）包括边缘交换机 ）具有连接到所述终端主机（6）的至少一个端口。 由相应的边缘交换机（7）从特定的所述终端主机（6）转发分组流由专用分组 - 开门器分组实现 - 当在所述交换机（2,7） ）在所述交换机（2,7）内实现转发规则的激活或安装，用于将所述分组流转发到沿其路由路径或其最终目的地的下一个交换机。

公开(公告)号：WO2017140356A1

公开(公告)日：2017-08-24

申请号：PCT/EP2016/053335

申请日：2016-02-17

Applicant: NEC EUROPE LTD.

Inventor： SAMDANIS, Konstantinos ,  SCIANCALEPORE, Vincenzo ,  KUNZ, Andreas ,  COSTA-PEREZ, Xavier

IPC: H04W28/16 ,  H04W16/24

CPC classification number: H04W16/04 ,  H04W16/14 ,  H04W28/24

Abstract: For providing an efficient resource allocation within a network a method for operating a wireless network is claimed, wherein the use of network resources is managed by a management entity within the network, wherein the management entity performs a network traffic forecast for a definable time period, wherein the network traffic forecast estimates expected traffic demands with a predefined or tunable confidence degree, divides forecasted available network resources into one or more classes of traffic reflecting different service quality within said classes using the confidence degree, and defines and allocates at least one network resource slice of said class or classes of traffic to operators and/or third parties for the time period considering an SLA of incoming service requests. Further, an according wireless network for carrying out the method and a management entity for managing the use of network resources within a wireless network are claimed.

Abstract translation: 为了在网络内提供有效的资源分配，要求保护用于操作无线网络的方法，其中网络资源的使用由网络内的管理实体管理，其中管理实体执行网络 其中所述网络流量预测估计具有预定义或可调节置信度的预期流量需求，使用所述置信度将预测可用网络资源划分为反映所述类别内的不同服务质量的一个或多个类别的流量，以及 在考虑输入服务请求的SLA的时间段内定义并分配所述一个或多个类别的业务的至少一个网络资源分段给运营商和/或第三方。 此外，要求保护用于执行该方法的相应无线网络和用于管理无线网络内的网络资源的使用的管理实体。

公开(公告)号：WO2017125698A1

公开(公告)日：2017-07-27

申请号：PCT/GB2016/050105

申请日：2016-01-18

Applicant: NEC EUROPE LTD ,  LEITAO, Filipe ,  KUNZ, Andreas ,  VELEV, Genadi

Inventor： LEITAO, Filipe ,  KUNZ, Andreas ,  VELEV, Genadi

IPC: H04L12/14

CPC classification number: H04L12/1475 ,  H04L12/1407

Abstract: A system is disclosed in which an application server sends, to an interworking function, a request for setting up sponsored data connectivity for one or more services provided by the application server. The request includes an application server identifier and packet flow description(s) associated with the one or more services. The interworking function determines, from the received information, information for forwarding to a core network node, and sends the information to the core network node for managing and/or storing respective policy charging control (PCC) rules associated with the one or more services. The interworking function can be a Service Capability Exposure Function.

Abstract translation: 公开了一种系统，其中应用服务器向互通功能发送针对由应用服务器提供的一个或多个服务建立赞助数据连接性的请求。 该请求包括与一个或多个服务相关联的应用服务器标识符和（一个或多个）分组流描述。 互通功能从接收到的信息中确定用于转发到核心网络节点的信息，并将该信息发送到核心网络节点，以管理和/或存储与一个或多个服务相关联的各个策略计费控制（PCC）规则。 互通功能可以是服务能力暴露功能。

公开(公告)号：WO2017084726A1

公开(公告)日：2017-05-26

申请号：PCT/EP2015/077290

申请日：2015-11-20

Applicant: NEC EUROPE LTD.

Inventor： OECHSNER, Simon

IPC: G06F9/48

CPC classification number: G06F9/4856 ,  G06F9/45558 ,  G06F2009/45562 ,  G06F2009/4557 ,  G06F2009/45583 ,  H04L45/64 ,  H04W28/0247 ,  H04W28/08 ,  H04W36/0033 ,  H04W36/22

Abstract: The present invention relates to a method for perfornning CRAN process migration in a centralized radio access network, CRAN. The generic solution proposed here is to achieve seamless migration of CRAN processing utilizing traffic duplication by means of SDN rules on network devices and guard intervals for the data flows in order to start processing in a defined state on the node that is migrated to. In addition, a warm-up phase is implemented in the RAN application logic.

Abstract translation: 本发明涉及一种用于在集中式无线电接入网CRAN中执行CRAN过程迁移的方法。 这里提出的通用解决方案是通过网络设备上的SDN规则和数据流的保护间隔实现利用流量重复的CRAN处理的无缝迁移，以便在迁移到的节点上以定义的状态开始处理。 另外，预热阶段在RAN应用程序逻辑中实现。

公开(公告)号：WO2017025152A1

公开(公告)日：2017-02-16

申请号：PCT/EP2015/069464

申请日：2015-08-25

Applicant: NEC EUROPE LTD.

Inventor： SAMDANIS, Konstantinos ,  PÉREZ COSTA, Xavier

IPC: H04W16/14

CPC classification number: H04W16/14

Abstract: A method of performing network management for a shared Radio Access Network, RAN, infrastructure (3) provided by a mobile network operator, comprises managing said shared RAN infrastructure (3) by means of a master operator network manager (4) of said mobile network operator, said master operator network manager (4), upon receiving service requests from one or more tenants (2), allocating resources to accommodate said service requests, wherein said master operator network manager (4) cooperates with a capacity or resource broker (1) residing inside the network of said mobile network operator that considers information on the mobility of the user or the set of users involved in a particular service request for deciding on the resource allocations to said service request. Furthermore, a corresponding network management system for a shared Radio Access Network, RAN, infrastructure (3) is disclosed.

Abstract translation: 对由移动网络运营商提供的共享无线电接入网络RAN，基础设施（3）执行网络管理的方法包括通过所述移动网络的主运营商网络管理器（4）管理所述共享RAN基础设施（3） 所述主运营商网络管理器（4）在接收到来自一个或多个租户（2）的服务请求时，分配资源以适应所述服务请求，其中所述主运营商网络管理器（4）与容量或资源代理（1 ），其考虑关于特定服务请求中涉及的用户或一组用户的移动性的信息的所述移动网络运营商的网络内，以决定对所述服务请求的资源分配。 此外，公开了一种用于共享无线电接入网络RAN，基础设施（3）的相应网络管理系统。

公开(公告)号：WO2017012678A1

公开(公告)日：2017-01-26

申请号：PCT/EP2015/070245

申请日：2015-09-04

Applicant: NEC EUROPE LTD.

Inventor： BAUER, Martin

IPC: G06F17/30 ,  H04W4/00

CPC classification number: G06F17/30545 ,  G06F17/30404 ,  G06F17/30457 ,  G06F17/30474 ,  G06F17/30477 ,  G06F17/3048 ,  G06F17/30604 ,  G06F17/30902 ,  G06F17/30958 ,  H04W4/70

Abstract: A method for querying semantic information stored across several semantically enhanced resources of a resource structure, particularly for a machine-to-machine application, is disclosed, wherein a semantic description is associated with each of the semantically enhanced resources. This method comprises the steps of: accessing a first semantically enhanced resource of the resource structure by a querying entity, wherein a first semantic description is associated with the first semantically enhanced resource, loading the first semantic description into a memory, analyzing the first semantic description, and loading into the memory a second semantic description associated with a second semantically enhanced resource of the resource structure, if a semantic element of the first semantic description contains a resource link, said resource link pointing to the second semantically enhanced resource. Additionally an according system for querying semantic information, a querying entity, a method for generating a resource structure and a database for enabling queries regarding semantic information stored across several semantically enhances resources are disclosed.

Abstract translation: 公开了一种用于查询存储在资源结构的多个语义增强资源（特别是机器对机器应用）上的语义信息的方法，其中语义描述与每个语义增强的资源相关联。 该方法包括以下步骤：通过查询实体访问资源结构的第一语义增强资源，其中第一语义描述与第一语义增强资源相关联，将第一语义描述加载到存储器中，分析第一语义描述 并且如果所述第一语义描述的语义元素包含资源链接，则将与所述资源结构的第二语义增强资源相关联的第二语义描述加载到所述存储器中，所述资源链接指向所述第二语义增强资源。 另外，公开了一种用于查询语义信息的查询系统，查询实体，用于生成资源结构的方法和数据库，用于启用关于跨多个语义增强资源存储的语义信息的查询。

公开(公告)号：WO2017001640A1

公开(公告)日：2017-01-05

申请号：PCT/EP2016/065446

申请日：2016-06-30

Applicant: NEC EUROPE LTD. ,  KUNZ, Andreas ,  VELEV, Genadi ,  IANEV, Iskren

Inventor： KUNZ, Andreas ,  VELEV, Genadi ,  IANEV, Iskren

IPC: H04W8/12 ,  H04L29/06

CPC classification number: H04L65/1016 ,  G06F17/30964 ,  H04L65/1069 ,  H04L65/1073 ,  H04W8/12

Abstract: A Proxy Call Session Control Function, P-CSCF, comprises a transceiver and a controller. The transceiver receives a register request from a user equipment, UE, in a visited public land mobile network, VPLMN. The controller retrieves a network identifier, PLMN ID, for the VPLMN, queries a database for any local emergency number(s), and includes the PLMN ID for the VPLMN in a header and forwards the register request to a Serving Call Session Control Function, S-CSCF.

Abstract translation: 代理呼叫会话控制功能P-CSCF包括收发器和控制器。 收发器在被访问的公共陆地移动网络VPLMN中从用户设备UE接收注册请求。 控制器检索VPLMN的网络标识符PLMN ID，查询数据库中的任何本地紧急号码，并且在标题中包括VPLMN的PLMN ID，并将注册请求转发到服务呼叫会话控制功能， S-CSCF。