US 11,750,662 B2
Multi-access edge computing services security in mobile networks by parsing application programming interfaces
Sachin Verma, Danville, CA (US); and Leonid Burakovsky, Pleasanton, CA (US)
Assigned to Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed by Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed on Apr. 13, 2022, as Appl. No. 17/720,213.
Application 17/720,213 is a continuation of application No. 16/779,253, filed on Jan. 31, 2020, granted, now 11,343,285.
Prior Publication US 2022/0247792 A1, Aug. 4, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04W 12/08 (2021.01); H04W 24/08 (2009.01); H04W 12/121 (2021.01)
CPC H04L 63/205 (2013.01) [H04L 63/0236 (2013.01); H04W 12/08 (2013.01); H04W 12/121 (2021.01); H04W 24/08 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system, comprising:
a processor configured to:
monitor network traffic on a mobile network at a security platform to identify an application programming interface (API) message associated with a new session, wherein the mobile network includes a 5G network or a converged 5G network that includes a multi-access edge computing (MEC) service;
extract mobile network identifier information from the API message at the security platform, wherein the mobile network identifier information includes one or more of the following: an International Mobile Subscription Identity (IMSI), International Mobile Equipment Identifier (IMEI), and/or Mobile Subscriber Integrated Services Digital Network (MSISDN); and
enforce a security policy at the security platform to the new session based on the mobile network identifier information; and
a memory coupled to the processor and configured to provide the processor with instructions.