公开(公告)号：US12213210B2

公开(公告)日：2025-01-28

申请号：US18507308

申请日：2023-11-13

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Stefan Rommer ,  Jan Backman ,  Qian Chen ,  Göran Hall ,  Åsa Larsen

IPC: H04W36/14 ,  H04W8/08 ,  H04W36/00

Abstract: An Access and Mobility Management Function (AMF) adapted for taking part in handover from a 5G system (5GS) to an Evolved Packet System (EPS).

公开(公告)号：US12069471B2

公开(公告)日：2024-08-20

申请号：US17620587

申请日：2020-06-12

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Peter Hedman ,  Vlasios Tsiatsis ,  Monica Wifvesson ,  Qian Chen ,  Noamen Ben Henda ,  Ivo Sedlacek

IPC: H04M1/66 ,  H04W12/03 ,  H04W12/041 ,  H04W12/106 ,  H04W36/00

CPC classification number: H04W12/03 ,  H04W12/041 ,  H04W12/106 ,  H04W36/0038

Abstract: The AMF re-allocation procedure for an Initiating AMF that has reroute capability via an Access Network (AN) is optimized in scenarios where a wireless device, such as a User Equipment (UE), already shares a 5G security context with-in a Last Serving AMF that is different from the Initiating AMF, and where the Initiating AMF and the Last Serving AMF can communicate with each other via an interface.

公开(公告)号：US20240121601A1

公开(公告)日：2024-04-11

申请号：US18542948

申请日：2023-12-18

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Christine Jost ,  Vesa Torvinen ,  Peter Hedman ,  Qian Chen ,  Lars-Bertil Olsson ,  Noamen Ben Henda

IPC: H04W12/04 ,  H04W8/08 ,  H04W12/03 ,  H04W12/104 ,  H04W12/108 ,  H04W60/00 ,  H04W76/25

CPC classification number: H04W12/04 ,  H04W8/08 ,  H04W12/03 ,  H04W12/104 ,  H04W12/108 ,  H04W60/00 ,  H04W76/25 ,  H04W12/009

Abstract: A method for operating a User Equipment (UE) is disclosed, wherein the UE is served by a source first network function in a first network and requires to register with a target second network function in a second network. The method comprises generating a registration request with integrity protection for at least a part of the registration request, and sending an integrity protected part of the registration request to the source first network function via the target second network function.

公开(公告)号：US11937337B2

公开(公告)日：2024-03-19

申请号：US17430561

申请日：2019-10-17

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Qian Chen ,  Hans Bertil Rönneke ,  Yong Yang

IPC: H04W8/18 ,  H04W76/12

CPC classification number: H04W8/18 ,  H04W76/12

Abstract: A method in a core network of a cellular communications system to enable Data over Non-Access Stratum, DoNAS, data delivery in a roaming scenario, the method comprising: sending from the V-SMF to a Home Session Management Function, H-SMF, a Packet Data Unit, PDU, session create request during PDU session establishment for DoNAS data delivery for a User Equipment, UE, in a roaming scenario; and receiving a response from the H-SMF. In embodiments of the method the PDU session create request comprises an indication that a control plane can be used for data delivery.

公开(公告)号：US11917412B2

公开(公告)日：2024-02-27

申请号：US17619874

申请日：2020-06-17

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Vlasios Tsiatsis ,  Qian Chen ,  Noamen Ben Henda ,  Ivo Sedlacek ,  Monica Wifvesson

IPC: H04W12/37 ,  H04W12/037 ,  H04W60/00

CPC classification number: H04W12/37 ,  H04W12/037 ,  H04W60/00

Abstract: A UE having a security context with an Initial AMF is able to accept an unprotected AUTHRQ, under certain circumstances, for a limited time. In one embodiment, a UE considers the security context to be temporary, which invokes rules or exceptions different than a permanent security context, such as the acceptance of an unprotected AUTHRQ from a Target AMF. The network may indicate to the UE the temporary status, or the UE may assume it. Alternatively, the UE may enable exceptions to the defined rules associated with the security context. In one embodiment, the UE receives a plurality of partial registration acceptance messages, each indicating a specific task or aspect of the overall registration has been completed. The UE may mark its security context temporary, or enable exceptions to the rules 10 associated with it, until a partial registration acceptance messages indicates AMF re-allocation is complete or is not required. In another embodiment, the UE accepts unprotected authentication messages from the network until the Registration procedure is completed, enabling a Target AMF to successfully send it an unprotected AUTHRQ.

公开(公告)号：US11849315B2

公开(公告)日：2023-12-19

申请号：US17403214

申请日：2021-08-16

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Christine Jost ,  Noamen Ben Henda ,  Qian Chen ,  Peter Hedman ,  Lars-Bertil Olsson ,  Vesa Torvinen

IPC: H04W12/04 ,  H04W76/25 ,  H04W8/08 ,  H04W60/00 ,  H04W12/03 ,  H04W12/104 ,  H04W12/108 ,  H04W12/00 ,  H04W12/041

CPC classification number: H04W12/04 ,  H04W8/08 ,  H04W12/03 ,  H04W12/104 ,  H04W12/108 ,  H04W60/00 ,  H04W76/25 ,  H04W12/009 ,  H04W12/041

Abstract: A method for operating a User Equipment (UE) is disclosed, wherein the UE is served by a source first network function in a first network and requires to register with a target second network function in a second network. The method comprises generating a registration request with integrity protection for at least a part of the registration request, and sending an integrity protected part of the registration request to the source first network function via the target second network function.

公开(公告)号：US11463527B2

公开(公告)日：2022-10-04

申请号：US16348554

申请日：2017-11-09

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Stefan Rommer ,  Gunnar Rydnell ,  Daniel Nilsson ,  Qian Chen

IPC: H04L67/14 ,  H04W76/12 ,  H04L12/46 ,  H04L9/40 ,  H04W12/033 ,  H04W12/069 ,  H04W12/0431 ,  H04L61/5007 ,  H04L67/12

Abstract: Systems and methods relating to establishment of a Packet Data Unit, PDU, session over a Non 3GPP Access to a 3GPP network and transmitting IP data and non-IP data are provided. A method of operation of a wireless device is provided and comprises sending to an AMF over an N3IWF a PDU session request to establish a PDU session to transport one of IP data or non-IP data over an established first IPsec, Security Association, SA, establishing an IPSec Child SA, for the PDU session and associating the IPSec Child SA to a PDU session then encapsulating the data using ESP encapsulation or GRE encapsulation associated with the IPSec Child SA and indicating the type of data that is being transmitted (e.g., non-IP data that comprises raw application data). In this manner, an IoT device is able to securely transmit to the 3GPP network IP data/non-IP data/raw application data over an unsecure non 3GPP access network such as Wireless Local Area Network. Methods and apparatus describing the NAS signalling and the PDU session as each using their respective IPSec SA are provided. Similarly, methods and apparatus describing the NAS signalling and the PDU sessions sharing a common IPSec SA are provided. GRE encapsulation of the data within the ESP frame is described for both NAS signalling and PDU session in the case of multiple IPSec/Child SAs or common IPSec SA. Similarly, methods and apparatus are provided for the N3IWF which provides for the UE secure access to the network.

公开(公告)号：US20220312217A1

公开(公告)日：2022-09-29

申请号：US17619874

申请日：2020-06-17

Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

Inventor： Vlasios Tsiatsis ,  Qian Chen ,  Noamen Ben Henda ,  Ivo Sedlacek ,  Monica Wifvesson

IPC: H04W12/37 ,  H04W60/00 ,  H04W12/037

Abstract: A UE having a security context with an Initial AMF is able to accept an unprotected AUTHRQ, under certain circumstances, for a limited time. In one embodiment, a UE considers the security context to be temporary, which invokes rules or exceptions different than a permanent security context, such as the acceptance of an unprotected AUTHRQ from a Target AMF. The network may indicate to the UE the temporary status, or the UE may assume it. Alternatively, the UE may enable exceptions to the defined rules associated with the security context. In one embodiment, the UE receives a plurality of partial registration acceptance messages, each indicating a specific task or aspect of the overall registration has been completed. The UE may mark its security context temporary, or enable exceptions to the rules 10 associated with it, until a partial registration acceptance messages indicates AMF re-allocation is complete or is not required. In another embodiment, the UE accepts unprotected authentication messages from the network until the Registration procedure is completed, enabling a Target AMF to successfully send it an unprotected AUTHRQ.

公开(公告)号：US11432215B2

公开(公告)日：2022-08-30

申请号：US16756724

申请日：2018-10-17

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Stefan Rommer ,  Jan Backman ,  Qian Chen ,  Göran Hall ,  Åsa Larsen

IPC: H04W36/14 ,  H04W8/08 ,  H04W36/00

Abstract: Access and Mobility Management Function, AMF, adapted for taking part in handover from a 5G system, 5GS, to an Evolved Packet System, EPS, an interface being provided between a Mobility Management Entity, MME, of the EPS and the AMF. The AMF being adapted for signalling with a Session Management Function and Packet Data Network, PDN, Gateway-Control plane, SMF and PGW-C, entity, the AMF being adapted for—providing a request (102d, 2-2a) to the SMF and PGW-C entity to provide a Session Management, SM, Context that also includes mapped EPS, Bearer Contexts (102d); —wherein for PDU Sessions with PDU Session type Ethernet or Unstructured, providing (102e1) a capability of a target MME of supporting a Non-IP PDN type to the PGW-C and SMF entity in the request (2-2a) to allow the PGW-C and SMF entity to determine whether or not to include an EPS Bearer context for non-IP PDN type; —transmitting the request (2-2a) to the SMF.

公开(公告)号：US20220224543A1

公开(公告)日：2022-07-14

申请号：US17706774

申请日：2022-03-29

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Vesa Torvinen ,  Noamen Ben Henda ,  Qian Chen ,  Vesa Lehtovirta ,  Mats Näslund ,  Karl Norrman ,  Gang Ren ,  Mikael Wass ,  Monica Wifvesson

IPC: H04L9/32 ,  H04L9/06 ,  H04L9/08 ,  H04W12/041 ,  H04W12/106

Abstract: A message authentication code, for a message transmitted and received over a communications network, is formed by applying inputs to an integrity algorithm acting on the message. The inputs comprise: an integrity key; a value indicating a transfer direction; and a frame-dependent integrity input, wherein the frame-dependent integrity input is a frame-dependent modulo count value that also depends on a random value and on a frame-specific sequence number.