SG11201903613VA - User plane model for non-3gpp access to fifth generation core network - Google Patents
User plane model for non-3gpp access to fifth generation core networkInfo
- Publication number
- SG11201903613VA SG11201903613VA SG11201903613VA SG11201903613VA SG11201903613VA SG 11201903613V A SG11201903613V A SG 11201903613VA SG 11201903613V A SG11201903613V A SG 11201903613VA SG 11201903613V A SG11201903613V A SG 11201903613VA SG 11201903613V A SG11201903613V A SG 11201903613VA
- Authority
- SG
- Singapore
- Prior art keywords
- data
- ipsec
- pdu session
- international
- child
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/50—Address allocation
- H04L61/5007—Internet protocol [IP] addresses
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0485—Networking architectures for enhanced packet encryption processing, e.g. offloading of IPsec packet processing or efficient security association look-up
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
- H04W12/033—Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
- H04W76/12—Setup of transport tunnels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Systems and methods relating to establishment of a Packet Data Unit, PDU, session over a Non 3GPP Access to a 3GPP network and transmitting IP data and non-IP data are pro- vided. A method of operation of a wireless device is provided and comprises sending to an AMF over an N3IWF a PDU session re- quest to establish a PDU session to transport one of IP data or non- IP data over an established first IPsec, Security Association, SA, establishing an IPSec Child SA, for the PDU session and associ- ating the IPSec Child SA to a PDU session then encapsulating the data using ESP encapsulation or GRE encapsulation associated with the IPSec Child SA and indicating the type of data that is be- ing transmitted (e.g., non-IP data that comprises raw application data). In this manner, an loT device is able to securely transmit to the 3GPP network IP data/non-IP data/raw application data over 440 an unsecure non 3GPP access network such as Wireless Local Area Network. Methods and apparatus describing the NAS sig- nalling and the PDU session as each using their respective IPSec SA are provided. Similarly, methods and apparatus describing the NAS signalling and the PDU sessions sharing a common IPSec SA are provided. GRE encapsulation of the data within the ESP frame is described for both NAS signalling and PDU session in the case of multiple IPSec/Child SAs or common IPSec SA. Sim- ilarly, methods and apparatus are provided for the N3IWF which provides for the UE secure access to the network. 4 420 Establishing an IPSec Child SA (request initiated from N3IWF or from the UE), for the PDU session and associating the IPSec Child SA to a PDU session response obtained in response to the PDU session request. 430 o sending a PDU session request to AMF through N3IWF to establish a PDU session for 410 transporting data (IP and non-IP) over an established first IPsec SA established at registration, Encapsulating data using encapsulation associated with the IPSec Child SA and indicating the type of data to be transmitted as IP or non-IP data. Encapsulating data in GRE or the likes and transmitting in an ESP associated with the IPSec Child SA and indicating the type of data to be transmitted in the GRE header. (12) INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) (19) World Intellectual Property Organization International Bureau (43) International Publication Date 17 May 2018 (17.05.2018) W I PO I IiiimmommionotiolooluomilailiflovoimIE (10) International Publication Number WO 2018/087696 Al PCT W O 20 18/087 696 Al (51) International Patent Classification: H04L 12/46 (2006.01) H04W 12/06 (2009.01) H04L 29/06 (2006.01) (21) International Application Number: PCT/IB2017/057021 (22) International Filing Date: 09 November 2017 (09.11.2017) (25) Filing Language: English (26) Publication Language: English (30) Priority Data: 62/420,843 11 November 2016 (11.11.2016) US (71) Applicant: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL) [SE/SE]; 164 83 Stockholm (SE). (72) Inventors: ROMMER, Stefan; Skogsrydsgatan 7, SE-426 74 Vastra Frolunda (SE). RYDNELL, Gunnar; Sylvester- gatan 7, SE-41132 Se (SE). NILSSON, Daniel; Watsmans- vagen 34, SE-446 33 Alvangen (SE). CHEN, Qian; Eklan- da Skog 64, SE-431 49 Molndal (SE). (74) Agent: CARTIER, Francois et al.; Ericsson Canada Inc., Patent Department, 8275 Route Transcanadienne, Saint - Laurent, Quebec, H4S OB6 (CA). (81) Designated States (unless otherwise indicated, for every kind of national protection available): AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JO, JP, KE, KG, KH, KN, KP, KR, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW. (84) Designated States (unless otherwise indicated, for every kind of regional protection available): ARIPO (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW), Eurasian (AM, AZ, BY, KG, KZ, RU, TJ, TM), European (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, (54) Title: USER PLANE MODEL FOR NON-3GPP ACCESS TO FIFTH GENERATION CORE NETWORK Figure 4a [Continued on next page] WO 2018/087696 Al MIDEDIMOMOIDEIREIDIONHOMEDIEROMEMOIS TR), OAPI (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG). Declarations under Rule 4.17: as to applicant's entitlement to apply for and be granted a patent (Rule 4.17(H)) as to the applicant's entitlement to claim the priority of the earlier application (Rule 4.17(iii)) Published: — with international search report (Art. 21(3))
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US201662420843P | 2016-11-11 | 2016-11-11 | |
PCT/IB2017/057021 WO2018087696A1 (en) | 2016-11-11 | 2017-11-09 | User plane model for non-3gpp access to fifth generation core network |
Publications (1)
Publication Number | Publication Date |
---|---|
SG11201903613VA true SG11201903613VA (en) | 2019-05-30 |
Family
ID=60484416
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
SG11201903613VA SG11201903613VA (en) | 2016-11-11 | 2017-11-09 | User plane model for non-3gpp access to fifth generation core network |
Country Status (6)
Country | Link |
---|---|
US (2) | US11463527B2 (en) |
KR (1) | KR102246671B1 (en) |
BR (1) | BR112019009600A2 (en) |
CA (1) | CA3043470A1 (en) |
SG (1) | SG11201903613VA (en) |
WO (1) | WO2018087696A1 (en) |
Families Citing this family (22)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10051000B2 (en) * | 2015-07-28 | 2018-08-14 | Citrix Systems, Inc. | Efficient use of IPsec tunnels in multi-path environment |
US11375558B2 (en) * | 2016-12-02 | 2022-06-28 | Apple Inc. | LWIP (LTE/WLAN radio level integration using IPSEC tunnel) packet acknowledgement using GRE (generic routing encapsulation) header |
CN110235510B (en) * | 2017-02-01 | 2021-01-15 | 华为技术有限公司 | System and method for enhanced session management in a NextGen mobile core network |
US10624020B2 (en) * | 2017-02-06 | 2020-04-14 | Qualcomm Incorporated | Non-access stratum transport for non-mobility management messages |
CN112888036A (en) | 2017-03-20 | 2021-06-01 | 华为技术有限公司 | Method for moving among communication systems, user equipment and storage medium |
EP3639612B1 (en) * | 2017-06-16 | 2023-09-20 | IPLA Holdings Inc. | Small data transfer, data buffering, and data management as a service in a communications network |
CN109104448B (en) | 2017-06-20 | 2021-10-01 | 华为技术有限公司 | Session management method and device |
CN109429363B (en) | 2017-06-20 | 2021-04-20 | 华为技术有限公司 | Session management method and device |
WO2019097499A1 (en) * | 2017-11-20 | 2019-05-23 | Telefonaktiebolaget Lm Ericsson (Publ) | Security gateway selection in hybrid 4g and 5g networks |
US10980084B2 (en) * | 2018-02-15 | 2021-04-13 | Huawei Technologies Co., Ltd. | Supporting multiple QOS flows for unstructured PDU sessions in wireless system using non-standardized application information |
US11323948B2 (en) * | 2018-07-24 | 2022-05-03 | T-Mobile Usa, Inc. | Device management for NB-IoT devices |
CN110830989B (en) * | 2018-08-09 | 2021-06-08 | 华为技术有限公司 | Communication method and device |
JP7233532B2 (en) * | 2018-11-12 | 2023-03-06 | テレフオンアクチーボラゲット エルエム エリクソン(パブル) | Method and apparatus for session management |
EP3881606B1 (en) * | 2018-11-16 | 2023-09-06 | Lenovo (Singapore) Pte. Ltd. | Access network selection for a ue not supporting nas over non-3gpp access |
CN111416791B (en) * | 2019-01-04 | 2022-06-14 | 华为技术有限公司 | Data transmission method, equipment and system |
US20220086744A1 (en) * | 2019-01-15 | 2022-03-17 | Lg Electronics Inc. | Ue for establishing pdu session, and twif |
CN117715243A (en) * | 2019-06-14 | 2024-03-15 | 瑞典爱立信有限公司 | Method and apparatus for assigning PDU session ID to terminal device |
US10735995B1 (en) | 2019-09-05 | 2020-08-04 | Cisco Technology, Inc. | Enhanced fixed broadband access network—mobile network integration for efficient local traffic offloading |
CN113572801B (en) * | 2020-09-30 | 2022-08-12 | 中兴通讯股份有限公司 | Session establishing method, device, access network equipment and storage medium |
CN114422619B (en) * | 2020-10-12 | 2023-11-10 | 中国移动通信集团广东有限公司 | Service identification method, device, equipment and storage medium |
US20230422039A1 (en) * | 2020-11-09 | 2023-12-28 | The Trustees Of Princeton University | System and method for machine learning assisted security analysis of 5g network connected systems |
CN117641608A (en) * | 2022-08-10 | 2024-03-01 | 中国电信股份有限公司 | Communication method and system, and computer readable storage medium |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20060003506A (en) * | 2004-07-06 | 2006-01-11 | 삼성전자주식회사 | Apparatus and method of session information management in mobile communication service providing system |
RU2424628C2 (en) * | 2006-08-21 | 2011-07-20 | Квэлкомм Инкорпорейтед | Method and apparatus for interworking authorisation of dual stack operation |
EP2166724A1 (en) * | 2008-09-23 | 2010-03-24 | Panasonic Corporation | Optimization of handovers to untrusted non-3GPP networks |
US10321497B2 (en) * | 2016-10-11 | 2019-06-11 | Lg Electronics Inc. | Method and apparatus for supporting data transmission of network node in wireless communication system |
-
2017
- 2017-11-09 SG SG11201903613VA patent/SG11201903613VA/en unknown
- 2017-11-09 CA CA3043470A patent/CA3043470A1/en not_active Abandoned
- 2017-11-09 BR BR112019009600A patent/BR112019009600A2/en unknown
- 2017-11-09 US US16/348,554 patent/US11463527B2/en active Active
- 2017-11-09 KR KR1020197013572A patent/KR102246671B1/en active IP Right Grant
- 2017-11-09 WO PCT/IB2017/057021 patent/WO2018087696A1/en active Application Filing
-
2022
- 2022-07-26 US US17/873,847 patent/US20220360634A1/en active Pending
Also Published As
Publication number | Publication date |
---|---|
BR112019009600A2 (en) | 2019-08-13 |
KR20190067217A (en) | 2019-06-14 |
US20220360634A1 (en) | 2022-11-10 |
WO2018087696A1 (en) | 2018-05-17 |
US20190364420A1 (en) | 2019-11-28 |
KR102246671B1 (en) | 2021-05-03 |
US11463527B2 (en) | 2022-10-04 |
CA3043470A1 (en) | 2018-05-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
SG11201903613VA (en) | User plane model for non-3gpp access to fifth generation core network | |
SG11201808991WA (en) | Method and system for secure data transmission | |
SG11201900399WA (en) | Method and apparatus for performing access barring check | |
SG11201805589VA (en) | System and method for implementing secure communications for internet of things (iot) devices | |
SG11201803388YA (en) | Key exchange through partially trusted third party | |
SG11201807205XA (en) | Quality of service (qos) management in wireless networks | |
SG11201806702XA (en) | Personal device security using elliptic curve cryptography for secret sharing | |
SG11201908469UA (en) | Enhanced registration procedure in a mobile system supporting network slicing | |
SG11201811168QA (en) | Improved support of quality of service for v2x transmissions | |
SG11201908505RA (en) | Reusing long-term evolution (lte) reference signals for nested system operations | |
SG11201804697PA (en) | Method and system for distributed cryptographic key provisioning and storage via elliptic curve cryptography | |
SG11201906546TA (en) | Narrowband time-division duplex frame structure for narrowband communications | |
SG11201902084QA (en) | Wireless communication between wideband enb and narrowband ue | |
SG11201900218TA (en) | Layer 2 relay to support coverage and resource-constrained devices in wireless networks | |
SG11201810979SA (en) | Systems and methods for switching driving mode of vehicle | |
SG11201803963TA (en) | Systems and methods for authenticating network messages | |
SG11201901360YA (en) | Uplink voice and video enhancements | |
SG11201903445SA (en) | Improvements in and relating to network communication | |
SG11201905392UA (en) | Current indication channel for embb/urllc multiplexing | |
SG11201811535RA (en) | Systems and methods for allocating service requests | |
SG11201908688PA (en) | Techniques and apparatuses for channel state information feedback performance for introduction of 64-qam in machine type communication devices | |
SG11201907510TA (en) | Selective activation of bearers in a connection | |
SG11201808254WA (en) | Cloud-based forensic ip traceback | |
SG11201811659PA (en) | Systems and methods for determining an estimated time of arrival | |
SG11201900199TA (en) | Control channel with flexible numerology |