US 12,219,361 B2
5G network slice device security protection
Marouane Balmakhtar, Fairfax, VA (US); Serge Manning, Plano, TX (US); and Greg Schumacher, Holliston, MA (US)
Assigned to T-Mobile Innovations LLC, Overland Park, KS (US)
Filed by T-Mobile Innovations LLC, Overland Park, KS (US)
Filed on Jun. 16, 2023, as Appl. No. 18/336,953.
Application 18/336,953 is a continuation of application No. 17/576,313, filed on Jan. 14, 2022, granted, now 11,751,058.
Prior Publication US 2023/0337001 A1, Oct. 19, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04W 12/30 (2021.01); H04W 12/088 (2021.01); H04W 12/102 (2021.01)
CPC H04W 12/35 (2021.01) [H04W 12/088 (2021.01); H04W 12/102 (2021.01)] 20 Claims
OG exemplary drawing
 
1. A method of user equipment (UE) implemented network slice security protection, comprising:
receiving, by the UE, a request to initialize an application on the UE;
querying, by the UE, a UE Route Selection Policy (URSP) stored on the UE based on the application;
in response to the querying, initiating, by a UE, an application within a virtualization container, wherein the virtualization container is bound to a network slice;
binding, by the UE, traffic for the application in the virtualization container to a protocol data unit (PDU) session; and
communicating, by the application executing within the virtualization container, with a core network over the PDU session via the network slice bound to the virtualization container, wherein a secure boundary is created via use of the virtualization container to prevent data leakage from the network slice to other network slices.