公开(公告)号：WO2023086149A1

公开(公告)日：2023-05-19

申请号：PCT/US2022/042412

申请日：2022-09-02

申请人： MICROSOFT TECHNOLOGY LICENSING, LLC.

发明人： LI, Mengke ,  KABUE, Samuel Mberere ,  MANGINO, John Matthew ,  MINASYAN, David ,  GREEN, Trent Der

IPC分类号： G06F21/62 ,  H04L9/40 ,  H04L41/28

摘要： A system and method for method for providing access to a resource includes receiving, from a user device of a user, a request to access the resource and an access token, the access token identifying an access role associated with the user and the request identifying a task to be performed on the resource; retrieving the access role from the access token; examining a role-to-permissions map to identify one or more permission available for the access role; determining, based on the available permissions for the access role that the user is authorized to perform the task on the resource; determining, based on the access role and the available permissions that the user has permission to access the resource managed by an object model; and upon determining that the user is authorized to perform the task on the resource and the user has permission to access the resource managed by the object model, permitting the user device of the user to access the resource to perform the task.

公开(公告)号：WO2023280695A1

公开(公告)日：2023-01-12

申请号：PCT/EP2022/068236

申请日：2022-07-01

申请人： TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

发明人： LONG, Hongxia ,  LUO, Ying ,  XU, Yongfeng ,  NAZARI, Ala ,  MIKLÓS, György ,  WANG, Kun

IPC分类号： H04L12/46 ,  H04L41/0893 ,  H04L41/0894 ,  H04L41/122 ,  H04L41/28 ,  H04L41/40 ,  H04L45/64 ,  H04L49/354 ,  H04W76/11 ,  H04W88/18 ,  H04L67/14 ,  H04W48/16 ,  H04L9/40 ,  H04W12/037

摘要： Methods and apparatuses for control of virtual local area network (VLAN) are disclosed. According to an embodiment, a service consumer sends, to a service provider of a Fifth Generation System (5GS) that provides Ethernet bridging operations for User Equipments (UEs) acting as Ethernet access ports or Ethernet trunk ports, a request for providing configuration information related to a VLAN. The configuration information indicates a port type of at least one port related to the VLAN.

公开(公告)号：WO2023071649A1

公开(公告)日：2023-05-04

申请号：PCT/CN2022/120913

申请日：2022-09-23

申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION ,  IBM (CHINA) CO., LIMITED

发明人： CRUZ BENITO, Juan ,  DURAN MARTINEZ, Ivan ,  VISHWAKARMA, Sanjay Kumar Lalta Prasad ,  PANDA, Sanket ,  MARTIN FERNANDEZ, Francisco Jose ,  FARO SERTAGE, Ismael

IPC分类号： H04L9/32 ,  H04L41/28

摘要： A method and system determine network based access to restricted systems. The method includes receiving a request for a permission access status of a party seeking access to one of the restricted systems. A database of periodically updated lists of entities is accessed. A name of the party is extracted from the request. A determination is made whether the name does not match one of the entities. The name is decomposed into parts if the name not matching one of the entities. A determination is made whether any of the parts of the name matches one of the entities. A denial of access status is forwarded from the computer server to an external computing device if any of the parts of the name matches one of the entities.

公开(公告)号：WO2023282956A1

公开(公告)日：2023-01-12

申请号：PCT/US2022/025018

申请日：2022-04-15

申请人： ARRIS ENTERPRISES LLC

发明人： LIANG, Jianming

IPC分类号： H04L9/40 ,  H04L12/28 ,  H04L41/0806 ,  H04L41/28 ,  H04R25/00 ,  H04W12/50

摘要： The present disclosure relates to an access point, a method, a medium, and a computer program product for the access point. An access point is configured to perform at least the following processing: in response to an association request received from a user station, checking a first access control list set by a user to determine whether the user station is set by the user as a user station that is to be refused access to the access point; in response to determination that the user station is set by the user as a user station that is to be refused access to the access point, determining whether a push button configuration mode of a wireless protection setup of the access point is activated and verifying whether the association request is related to the push button configuration mode; and in response to determination that the push button configuration mode of the access point is activated and the association request of the user station is related to the push button configuration mode, sending an association response to the user station to complete a network configuration process of the user station.

公开(公告)号：WO2023036493A1

公开(公告)日：2023-03-16

申请号：PCT/EP2022/068893

申请日：2022-07-07

申请人： BAYERISCHE MOTOREN WERKE AKTIENGESELLSCHAFT

发明人： REINHARDT, Dominik ,  KESSLER, Matthias ,  SEYBOLD, Paul ,  CORETTI, Nicola

IPC分类号： H04L12/40 ,  H04L41/0803 ,  H04L41/28 ,  H04L9/40 ,  H04L9/32

摘要： Die Erfindung betrifft ein Verfahren zum sicheren Konfigurieren einer Vielzahl von Gateway- Steuergeräten eines Fahrzeugs, das Verfahren umfassend: Empfangen einer Empfangsanforderung von einer Client-Schnittstelle eines ersten Gateway-Steuergeräts durch eine Server-Schnittstelle eines zweiten Gateway-Steuergeräts; Signieren des Empfangsanforderung mit einem privaten Schlüssel der Server-Schnittstelle des zweiten Steuergeräts; Übermitteln eines Sendeangebots von der Server-Schnittstelle des zweiten Gateway-Steuergeräts an die Client-Schnittstelle des ersten Gateway-Steuergeräts, wobei das Sendeangebot die signierte Empfangsanforderung umfasst; Verifizieren der signierten Empfangsanforderung mit einem öffentlichen Schlüssel der Server-Schnittstelle des zweiten Gateway-Steuergeräts durch die Client-Schnittstelle des ersten Gateway-Steuergeräts; Empfangen einer Bestätigungsnachricht von der Client-Schnittstelle des ersten Gateway- Steuergeräts durch die Server-Schnittstelle des zweiten Gateway-Steuergeräts, wobei die Bestätigungsnachricht eine Bestätigung oder eine Ablehnung des übermittelten Sendeangebots durch das erste Gateway-Steuergerät umfasst, wobei die Bestätigungsnachricht mit dem privaten Schlüssel der Client-Schnittstelle des ersten Gateway-Steuergeräts signiert ist; Verifizieren der signierten Bestätigungsnachricht mit einem öffentlichen Schlüssel der Client- Schnittstelle des ersten Gateway-Steuergeräts durch die Server-Schnittstelle des zweiten Gateway-Steuergeräts; und Konfigurieren einer Routing-Tabelle des zweiten Gateway- Steuergeräts in Abhängigkeit der empfangenen Bestätigungsnachricht durch das zweite Gateway-Steuergerät, falls die signierte Bestätigungsnachricht erfolgreich durch die Server- Schnittstelle des zweiten Gateway-Steuergeräts verifiziert wurde.

公开(公告)号：WO2022198303A1

公开(公告)日：2022-09-29

申请号：PCT/CA2022/050381

申请日：2022-03-15

申请人： GENETEC INC.

发明人： OUELLET, Sylvain

IPC分类号： H04L9/40 ,  G06F21/44 ,  G06F21/45 ,  H04L41/28

摘要： Methods, systems, devices and computer-readable media for granting remote access to an electronic device are described herein. An electronic device obtains an encrypted password comprising a password encrypted with a public encryption key. The electronic device outputs the encrypted password for a device user computer to transmit the encrypted password to a support computer to have the encrypted password decrypted with a private encryption key corresponding to the public encryption key. The electronic device receiving an access request comprising the password from the support computer. The electronic device grants the support computer access thereto when the password of the access request from the support computer corresponds to the password at the electronic device.

公开(公告)号：WO2022197532A1

公开(公告)日：2022-09-22

申请号：PCT/US2022/019849

申请日：2022-03-10

申请人： ORACLE INTERNATIONAL CORPORATION

发明人： SCALI, James, Lawrence ,  LORKIEWICZ, Gary, Michael ,  HOLT, Robert, Hugh ,  DEUBLER, Gregory, Thomas

IPC分类号： H04L41/046 ,  H04L41/0226 ,  H04L41/28 ,  H04L41/0213 ,  H04L41/0273 ,  H04L41/0604

摘要： A method for enabling cloud-based management services using an on-site management cloud engine includes establishing a single secure communication channel between a management cloud engine (MCE) located in a customer premises and a cloud management services platform located in a cloud computing infrastructure, receiving, by the MCE from a unified management service (UMS) manager located in the cloud management services platform, a management instruction message directed to at least one network function located in the customer premises via the single secure communication channel, converting instruction data contained in the management instruction message to a legacy protocol recognized by the at least one network function, and providing the converted instruction data to the at least one network function.

公开(公告)号：WO2023064042A1

公开(公告)日：2023-04-20

申请号：PCT/US2022/041416

申请日：2022-08-24

申请人： ORACLE INTERNATIONAL CORPORATION

发明人： ŠTERBA, Ján ,  GOPALAKRISHNAN, Venkatakrishnan ,  LAM, May Bich Nhi ,  XUE, Yunjiao ,  LEI, Nana ,  CHENG, Edward C. ,  WELCHER, Hayward Ivan Craig ,  WEST, Jacob Becker ,  CAO, Qi Wen

IPC分类号： G06F21/57 ,  G06N20/00 ,  H04L9/40 ,  G06N5/00 ,  H04L41/28 ,  H04W12/08

摘要： Machine-learning (ML) techniques and models are described for predicting the number and severity of network attacks within a specified timeframe, such as the next fifteen minutes. In some embodiments, the techniques including training a ML model based on features extracted from a training dataset and applying the trained ML model to estimate (a) the probability of an attack happening on an account within a specified timeframe; (b) how many attacks are predicted to occur in the specified timeframe (if any); and/or (c) the severity of the attacks predicted to occur. A system may deploy preventative measures based on the ML model output to counter or mitigate the effects of predicted and coordinated network attacks.

公开(公告)号：WO2023019386A1

公开(公告)日：2023-02-23

申请号：PCT/CN2021/112703

申请日：2021-08-16

申请人： TELEFONAKTIEBOLAGET LM ERICSSON (PUBL) ,  LIU, Daiying

发明人： LIU, Daiying ,  LIU, Renwang ,  LUO, Min

IPC分类号： H04L41/28 ,  G06F21/62 ,  H04L9/40 ,  H04L41/0803 ,  H04L41/0213

摘要： Methods and devices for encrypting Network Configuration Protocol (NETCONF) datastore in communication networks are disclosed. One of the methods is performed by a device using NETCONF. The method comprises enabling (step 1) a function for NETCONF Datastore Security (DS-SEC). The method further comprises publishing (step 2a) a first indication indicating that the device supports the NETCONF DS-SEC function. If supported by the controller, it will control the NETCONF DS-SEC by selecting (step 3c) an encryption algorithm and enable (step 3b) or disable (step 3d) the DS-SEC

公开(公告)号：WO2022096561A1

公开(公告)日：2022-05-12

申请号：PCT/EP2021/080615

申请日：2021-11-04

申请人： SIGNIFY HOLDING B.V.

发明人： WANG, Changjie ,  FENG, Lei

IPC分类号： H04L9/08 ,  H04W12/0431 ,  H04L9/32 ,  H04W12/06 ,  H04L41/0806 ,  H04L41/08 ,  H04L41/28 ,  H04W4/50 ,  H04W4/80 ,  H04W12/30 ,  H04L9/40

摘要： A method of provisioning a particular type of node devices in a network is disclosed. The network comprises a plurality of operatively interconnected node devices of the particular type. Each of the particular type of node devices comprises a short range communication interface and configured for operating under control of a network backend server and an application backend server separate from the network backend server. The method performed by an application provisioner associated with the particular type of node devices, which first obtains device specific network provisioning data for the particular type of node devices from the network backend server, then obtains an application credential for the particular type of node devices; and thereafter provision the particular type of node devices by distributing the application credential to each of the particular type of node devices over a short range communication interface of the particular type of node device.