US 12,231,876 B2
Method and apparatus for security realization of connections over heterogeneous access networks
Jennifer Liu, Plano, TX (US)
Assigned to NOKIA TECHNOLOGIES OY, Espoo (FI)
Appl. No. 17/266,295
Filed by Nokia Technologies Oy, Espoo (FI)
PCT Filed Aug. 2, 2019, PCT No. PCT/FI2019/050573
§ 371(c)(1), (2) Date Feb. 5, 2021,
PCT Pub. No. WO2020/030851, PCT Pub. Date Feb. 13, 2020.
Claims priority of provisional application 62/716,887, filed on Aug. 9, 2018.
Prior Publication US 2021/0306849 A1, Sep. 30, 2021
Int. Cl. H04W 12/06 (2021.01); H04W 8/02 (2009.01); H04W 12/037 (2021.01); H04W 12/086 (2021.01); H04W 12/60 (2021.01); H04W 60/00 (2009.01); H04W 76/11 (2018.01); H04W 88/06 (2009.01)
CPC H04W 12/037 (2021.01) [H04W 8/02 (2013.01); H04W 12/06 (2013.01); H04W 12/086 (2021.01); H04W 12/60 (2021.01); H04W 60/00 (2013.01); H04W 76/11 (2018.02); H04W 88/06 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A user equipment (UE) comprising:
at least one processor; and
at least one memory storing instructions thereon that, when executed by the at least one processor, cause the UE to perform at least:
determining a subscription permanent identifier (SUPI) format of a SUPI from among a plurality of SUPI formats, the plurality of SUPI formats comprising an international mobile subscriber identity (IMSI) type and a network specific identifier (NSI) type;
constructing a subscription concealed identifier (SUCI) operable to be used to identify the UE during communication with a core network via a selected type of access network, the selected type of access network being a third-generation partnership project (3GPP) access network type or a non-3GPP access network type, the SUCI including at least:
a SUPI format value corresponding to the SUPI format of the SUPI,
a home network identifier associated with a home network of the UE, a home network identifier format of the home network identifier being dependent upon the SUPI format of the SUPI,
a routing indicator associated with the home network of the UE,
a protection scheme identifier corresponding to a protection scheme of a plurality of protection schemes,
a home network public key identifier associated with a public key generated by the home network of the UE, and
a scheme output, the scheme output being determined from the SUPI using the protection scheme, wherein a scheme output format of the scheme output is dependent on the protection scheme;
in an instance in which the SUPI format of the SUPI is the IMSI type, setting the SUPI format value to a first value to indicate the SUPI format of the SUPI is the IMSI type;
in an instance in which the SUPI format of the SUPI is the NSI type, setting the SUPI format value to a second value to indicate the SUPI format of the SUPI is the NSI type; and
communicating with a network node of the core network via the selected type of access network using the SUCI.