公开(公告)号：US20220377528A1

公开(公告)日：2022-11-24

申请号：US17772006

申请日：2020-09-15

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Devaki CHANDRAMOULI ,  Nagendra S. BYKAMPADI ,  Saurabh KHARE

IPC: H04W8/18 ,  H04W60/06

Abstract: Systems, methods, apparatuses, and computer program products for dynamically unsubscribing from a public land mobile network (PLMN)/non-private network (NPN) service. In example embodiments, a method is provided. The method comprises transmitting, by a user equipment (UE), at least one first message (112, 114) associated with registering with at least one network, wherein the at least one first message (112, 114) includes first information that indicates whether the user equipment (UE) is capable of unsubscribing from one or more services associated with the at least one network; and receiving, by the user equipment (UE), at least one second message (124) associated with accepting registration of the user equipment (UE) with the at least one network, wherein the at least one second message (124) includes second information that indicates whether the user equipment (UE) is allowed to unsubscribe from the one or more services.

公开(公告)号：US20220158847A1

公开(公告)日：2022-05-19

申请号：US17523251

申请日：2021-11-10

Applicant: Nokia Technologies Oy

Inventor： Chaitanya AGGARWAL ,  Saurabh KHARE ,  Anja JERICHOW ,  Jani EKMAN

IPC: H04L9/32

Abstract: According to an example aspect of the present invention, there is provided an apparatus configured at least to determine whether a cryptographic signature of a token received in the apparatus from a network function consumer is valid, obtain a cryptographic signature of the apparatus of the token responsive to the cryptographic signature of the token being valid, and provide the token to a peer entity of the apparatus, wherein the cryptographic signature of the apparatus is either included into the token or provided in a header external to the token, wherein the peer entity is comprised in a second network, different from a first network where the apparatus is comprised in. The request may serve a user equipment, directly or indirectly.

公开(公告)号：US20210297896A1

公开(公告)日：2021-09-23

申请号：US17201932

申请日：2021-03-15

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Bruno LANDAIS ,  Saurabh KHARE

IPC: H04W28/02 ,  H04L29/08 ,  H04L29/06

Abstract: There is provided an apparatus with means for issuing (S601) a request message to a first proxy function for forwarding to a network server. The means are further configured for receiving (S603) a response message from the first proxy function. The response message comprises information about a signalling capacity of the first proxy function.

公开(公告)号：US20250097703A1

公开(公告)日：2025-03-20

申请号：US18967335

申请日：2024-12-03

Applicant: Nokia Technologies Oy

Inventor： Rajesh Babu NATARAJAN ,  Saurabh KHARE

IPC: H04W12/06 ,  H04W12/041 ,  H04W12/0433

Abstract: Systems, methods, and software of performing an Authentication and Key Management for Applications (AKMA) authentication service. In one embodiment, an AKMA element (1200) handles an enriched AKMA Key Identifier (A-KID) (800) having an identifier format with a username (802) and a realm (804) separated by an @-symbol (806). The username includes a Routing Indicator (RID) (812), an AKMA Temporary UE Identifier (A-TID) (814), and at least one supplemental character (810) that distinguishes the RID from the A-TID in the username. The AKMA element performs a function of the AKMA authentication service based on the enriched A-KID.

公开(公告)号：US20250062903A1

公开(公告)日：2025-02-20

申请号：US18802902

申请日：2024-08-13

Applicant: Nokia Technologies Oy

Inventor： Saurabh KHARE ,  German PEINADO GOMEZ ,  Chaitanya AGGARWAL

IPC: H04L9/32 ,  H04L9/30

Abstract: Various examples of embodiments described herein relate to methods and apparatuses for mitigation against access token theft attack in direct and indirect communications in SBA. One such example of an embodiment relates to a method that includes obtaining a first access token request from a network function service consumer, NFc, the first access token request comprising an authentication code of the NFc; authenticate the network function consumer, NFc, based on a check whether the authentication code is signed by the NFc; sending a second access token request to a network authorization entity or function, wherein the second access token request comprises the authentication code of the NFc and the second access token request further comprises a public key of the NFc or a hash of the public key of the NFc; based thereon, receiving an access token from the network authorization entity or function, wherein the access token comprises the public key of the NFc or a hash of the public key of the NFc; and sending a service request to a network function service provider, NFp, wherein the service request comprises the access token and the authentication code of the NFc.

公开(公告)号：US20250056395A1

公开(公告)日：2025-02-13

申请号：US18798990

申请日：2024-08-09

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Pallab GUPTA ,  Saurabh KHARE

IPC: H04W48/18 ,  H04W60/00 ,  H04W84/04

Abstract: Various example embodiments of the subject disclosure relate to apparatus, methods and computer programs. For example, there is provided a user equipment comprising means for: registering the user equipment with a first public land mobile network; selecting a second public land mobile network to register a user equipment with based on the user equipment's registration with the first public land mobile network; and registering the user equipment with the selected second public land mobile network.

公开(公告)号：US20250039162A1

公开(公告)日：2025-01-30

申请号：US18785003

申请日：2024-07-26

Applicant: Nokia Technologies Oy

Inventor： Saurabh KHARE ,  Bruno LANDAIS ,  Apostolos PAPAGEORGIOU

IPC: H04L9/40

Abstract: The disclosure relates to a method comprising to: receiving (700), from a network function service consumer, a request for an access token that authorizes access to a service provided by a network exposure function, wherein the service provides data obtained from an untrusted application function connected to the network exposure function, wherein the request comprises an identifier associated with the network exposure function, an identifier associated with the network function service consumer and an identifier associated with the untrusted application function; determining (702) to provide an access token to the network function service consumer based on the identifier associated with the network exposure function, the identifier associated with the network function service consumer, the identifier associated with the untrusted application function and attributes associated with the untrusted application function included in a profile of the network exposure function stored at the network repository function; and providing (704), to the network function service consumer, the access token comprising the identifier associated with the untrusted application function comprised in the request.

公开(公告)号：US20250031166A1

公开(公告)日：2025-01-23

申请号：US18775890

申请日：2024-07-17

Applicant: NOKIA TECHNOLOGIES OY

Inventor： Pallab GUPTA ,  Saubhagya BALIARSINGH ,  Saurabh KHARE

IPC: H04W60/00 ,  H04W8/18 ,  H04W76/10 ,  H04W84/04

Abstract: There is provided an apparatus comprising: means for receiving, at a target public land mobile network, signalling for establishing a protocol data unit session for a first service for a user equipment, wherein the first service is hostable by the target public land mobile network and a home public land mobile network, and means for causing data associated with the protocol data unit session for the first service to be transferred between the target public land mobile network and a visitor public land mobile network, wherein the user equipment is registered with the visitor public land mobile network.

公开(公告)号：US20240346557A1

公开(公告)日：2024-10-17

申请号：US18701065

申请日：2021-10-13

Applicant: Nokia Technologies Oy

Inventor： Dario BEGA ,  Anja JERICHOW ,  Saurabh KHARE ,  Konstantinos SAMDANIS ,  Colin KAHN ,  Gerald KUNZMANN

IPC: G06Q30/0282

CPC classification number: G06Q30/0282

Abstract: A trusted rating function in a communication network system obtains at least one verification information associated with at least one of an analytics function identifier, a service identifier and a service consumer identifier, receives, from a service consumer, rating information related to at least one rated service and consumer verification information associated with the service consumer, accepts the rating information based on a comparison between the obtained verification information and the consumer verification information, and updates a rating stored for the rated service based on the rating information.

公开(公告)号：US20240114345A1

公开(公告)日：2024-04-04

申请号：US18474467

申请日：2023-09-26

Applicant: Nokia Technologies Oy

Inventor： Saurabh KHARE ,  Ranganathan MAVUREDDI DHANASEKARAN

IPC: H04W12/80 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04W12/80 ,  H04L9/085 ,  H04L9/32

Abstract: A method, apparatus, and computer program for receiving an application session establishment request comprising an authentication and key management for applications, AKMA, Key Identifier, A-KID; producing an application key request (Naanf_AKMA_ApplicationKey_Get_request) comprising information elements AKMA Key Identifier A-KID; an application function identifier, AF_ID; and an application encryption key indication (Nnef_AKMA_AF_Encryption_Key_Indication); and sending the produced application key request (Naanf_AKMA_ApplicationKey_Get_request) to a home AKMA anchor function, hAAnF, or to a network exposure function, NEF, for enabling lawful interception in the VPLMN.