公开(公告)号：US20170078288A1

公开(公告)日：2017-03-16

申请号：US15337830

申请日：2016-10-28

Applicant: Huawei Technologies Co., Ltd.

Inventor： Yizhuang WU ,  Yixian XU ,  Huan LI ,  Youyang YU

IPC: H04L29/06

CPC classification number: H04L63/0876 ,  H04L63/061 ,  H04L63/0807 ,  H04L2463/081 ,  H04W12/08 ,  H04W84/12

Abstract: Embodiments of the present invention provide a method for accessing a communications network by a terminal, an apparatus, and a communications system, relate to the communications field, and can effectively reduce a resource waste on a network side that is caused when WLCP is triggered by a malicious application on a terminal. A first message sent by a second device is received, where the first message includes a second message and an authentication parameter, the authentication parameter is a token or a User Datagram Protocol UDP port number, and the second message includes the encrypted authentication parameter; or the first message includes a second message, and the second message includes an encrypted authentication parameter; or the first message includes a second message and an authentication parameter; and the second message is sent to a terminal.

Abstract translation: 本发明的实施例提供了一种通过终端，装置和通信系统访问通信网络的方法，涉及通信领域，并且可以有效地减少在WLCP被触发时引起的网络侧的资源浪费 终端上的恶意应用程序。 接收由第二设备发送的第一消息，其中第一消息包括第二消息和认证参数，认证参数是令牌或用户数据报协议UDP端口号，第二消息包括加密认证参数; 或者第一消息包括第二消息，并且第二消息包括加密认证参数; 或者第一消息包括第二消息和认证参数; 并且第二个消息被发送到终端。

公开(公告)号：US20250097891A1

公开(公告)日：2025-03-20

申请号：US18964072

申请日：2024-11-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Lun LI ,  Yizhuang WU ,  Yang CUI ,  Taoran SUN

IPC: H04W64/00 ,  H04W4/14 ,  H04W48/04

Abstract: Embodiments of this application provide a communication method, a system, and an apparatus. The method includes: A network device obtains at least one piece of location information based on at least one piece of first information in a plurality of pieces of information, where each piece of information corresponds to at least one terminal, and one piece of first information corresponds to the at least one piece of location information; and the network device determines at least one first location range based on the location information, where a terminal in the first location range receives and sends information abnormally. In embodiments of this application, an area in which the information is abnormally received and sent may be determined by detecting the information by the network device, and information receiving and sending of the terminal in the abnormal area may be further restricted.

公开(公告)号：US20250063364A1

公开(公告)日：2025-02-20

申请号：US18939046

申请日：2024-11-06

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Zhongding LEI ,  Haiguang WANG ,  Xin KANG ,  Tieyan LI ,  Yizhuang WU

IPC: H04W12/106 ,  H04W12/122 ,  H04W12/61

Abstract: Embodiments of this application provide a communication method and a network element device. The method includes: A first network function network element obtains integrity-protected attestation information, where the attestation information includes an attestation result and range indication information associated with the attestation result; generates a service request message when determining that a service provided by a second network function network element is to be requested; and sends the service request message to the second network function network element, where the service request message includes the attestation information and an identifier of the first network function network element. The method disclosed in this application can prevent and mitigate a potential security risk faced by a network function in a mobile communication network, especially faced by a network function implemented in a software or virtualization manner.

公开(公告)号：US20240348693A1

公开(公告)日：2024-10-17

申请号：US18753147

申请日：2024-06-25

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Haiyang SUN ,  Yizhuang WU ,  Chunshan XIONG

IPC: H04L67/141 ,  H04W8/02 ,  H04W80/02

CPC classification number: H04L67/141 ,  H04W8/02 ,  H04W80/02

Abstract: A session establishment method and apparatus is provided, to resolve a problem that a terminal device cannot establish a plurality of PDU sessions for a same APP based on a URSP. The method includes: A terminal apparatus receives indication information from a first network apparatus, where the indication information is used to indicate that a first application needs to be associated with at least two sessions; and establishes at least one session for the first application based on at least the indication information, so that the first application is associated with at least two sessions.

公开(公告)号：US20240291849A1

公开(公告)日：2024-08-29

申请号：US18659239

申请日：2024-05-09

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Ao LEI ,  Yizhuang WU ,  Yang CUI ,  Taoran SUN

IPC: H04L9/40

CPC classification number: H04L63/1433

Abstract: Embodiments of this application provide a method for obtaining a security classification result and a communication apparatus. The method includes: A security function network element determines to perform security analytics on a target location area; and the security function network element determines a security classification result of the target location area based on first information, where the security classification result indicates a degree to which a potential attack exists in the target location area, the first information is related to behavior information of a terminal device in the target location area, and the behavior information includes traffic data and/or movement track information. According to this application, security analytics may be performed on a location area, to obtain a security classification result of the location area.

公开(公告)号：US20240224355A1

公开(公告)日：2024-07-04

申请号：US18606038

申请日：2024-03-15

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Ao LEI ,  He LI ,  Yizhuang WU

IPC: H04W76/14 ,  H04W88/04 ,  H04W92/18

CPC classification number: H04W76/14 ,  H04W88/04 ,  H04W92/18

Abstract: A method for determining a key obtaining manner, a communication method, and a communication apparatus. In response to a preset condition being met, a first terminal device sends a first message to a second terminal device, where the first message includes first indication information. The first indication information indicates a first PC5 key in a control plane manner is to be obtained, and the first PC5 key is a key used for a PC5 link between the first terminal device and the second terminal device. The first terminal device receives, from the second terminal device, a response message of the first message, where the response message indicates whether the second terminal device is able to obtain the first PC5 key.

公开(公告)号：US20240224098A1

公开(公告)日：2024-07-04

申请号：US18606393

申请日：2024-03-15

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Taoran SUN ,  Yizhuang WU ,  Fangyuan ZHU

IPC: H04W24/08 ,  H04W12/062 ,  H04W24/10

CPC classification number: H04W24/08 ,  H04W12/062 ,  H04W24/10

Abstract: This application provides a network verification method and apparatus. The method may include: A slice statistics network element (30) receives a slice registration request message (410) from a mobility management network element (20), where the slice registration request message (410) includes an identifier of a terminal device (10) and an identifier of a network slice. In response to the slice registration request message (410), the slice statistics network element (30) determines whether the terminal device (10) occupies a resource of the network slice. The slice statistics network element (30) determines, based on a determining result, whether to count the terminal device (10) into statistics about a terminal accessing the network slice.

公开(公告)号：US20240179516A1

公开(公告)日：2024-05-30

申请号：US18437407

申请日：2024-02-09

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU

IPC: H04W12/033 ,  H04W12/06

CPC classification number: H04W12/033 ,  H04W12/06

Abstract: This application provides a secure communication method and apparatus. The secure communication method includes: A session management function network element receives first security capability indication information from a terminal device, where the first security capability indication information indicates that the terminal device supports to establish a secure connection between the terminal device and a server. The session management function network element determines, based on the first security capability indication information, a first server that supports to establish the secure connection. The session management function network element sends information about the first server to the terminal device to establish the secure connection. According to the method, a server that matches a security capability of the terminal device can be selected, to ensure security protection for communication between the terminal device and the server, avoid information leakage or tampering, and help improve information exchange transmission efficiency.

公开(公告)号：US20240073212A1

公开(公告)日：2024-02-29

申请号：US18504954

申请日：2023-11-08

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU

IPC: H04L9/40 ,  H04L67/56

CPC classification number: H04L63/0884 ,  H04L67/56

Abstract: A communication method includes sending, by a service consumer network element, a first service request message to a service communication proxy, and receiving, by the service consumer network element, a first response message of the first service request message from the service communication proxy. The first service request message is useable to request a first service from a service producer network element. The first service request message includes a first client credentials assertion. The first client credentials assertion is useable to authenticate the service consumer network element. The first client credentials assertion includes a first network function type of the service producer network element and a second network function type of a network element configured to provide a second service. The second service is useable to provide information about the service producer network element.

公开(公告)号：US20240056907A1

公开(公告)日：2024-02-15

申请号：US18495995

申请日：2023-10-27

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Yizhuang WU

IPC: H04W36/00

CPC classification number: H04W36/0038 ,  H04W36/0069

Abstract: A security configuration method in a handover scenario and a communication apparatus are provided. The method includes that a target access network node receives a first message including first information indicating a terminal device to be handed over from a source access network node to the target access network node, and indicating to use a user plane security configuration that is of a data radio bearer and that is the same as that of a data radio bearer of the source access network node. The target access network node sends a response message of the first message. The response message includes second information indicating a user plane security configuration of a second data radio bearer of the target access network node, which is the same as a user plane security configuration of a first data radio bearer of the source access network node.