Abstract: Apparatuses, methods, and systems are disclosed for determining a RAT for an untrusted access network. One apparatus includes a processor and a transceiver that communicates with a first access network. The processor obtains ANI about the first access network, the AM including an access technology type for the first access network. The processor determines to register with a mobile communication network (e.g., a 5GC) via the first access network using an untrusted registration procedure and sends a first request (e.g., an IKE_AUTH Request) to establish a secure connection with a N3IWF in the mobile communication network. Here, the first request includes a registration request for the mobile communication network and the obtained ANI, wherein the obtained ANI is used by the mobile communication network to determine a RAT for the first access network.

Abstract: A method and apparatus provides for establishing a communication connection between the network entity and the user equipment, while the user equipment has established and is maintaining an alternative communication connection with another network entity associated with a second one of the multiple networks. Flow management information is received from a shared common control element of the user equipment, which manages parallel user equipment activity including a flow of information between the user equipment and each of the multiple networks via the respective communication connections. The user equipment is communicated with in a manner which is consistent with the flow management information received from the shared common control element.

Abstract: In order for making MTC more efficient and/or secure, a base station forming a communication system connects a UE to a core network. A node serves as an entering point to the core network for a service provider, and transmits traffic between the service provider and the UE. The node establishes, as a connection to the base station, a first connection for directly transceiving messages between the node and the base station. Alternatively, the node establishes a second connection for transparently transceiving the messages through a different node that is placed within the core network and has established a different secure connection to the base station.

Abstract: A session initiation protocol register request message for RLOS can be received at a P-CSCF. The session initiation protocol register request message can include an IP multimedia public user identification for a UE. The session initiation protocol register request message can be forwarded to a Serving Call Session Control Function (S-CSCF). A UE identifier in a 200 OK response can be received in response to forwarding the session initiation protocol register request message at the P-CSCF from the S-CSCF. Signaling can be ciphered using a security key for the UE in response to receiving the 200 OK response.

Abstract: Apparatuses, methods, and systems are disclosed for selecting a non-3GPP access network. One apparatus includes a processor and a transceiver for communicating with one or more non-3GPP access networks. The processor creates a first list of available PLMNs connectable via non-3GPP access networks. Here, the first list indicates one or more trusted connectivity types supported for each PLMN. The processor selects a first PLMN and a first connectivity type supported by the first PLMN. The processor creates a second list of available non-3GPP access networks. The processor selects a highest priority available non-3GPP network that supports the first connectivity type to the first PLMN. The processor begins a connectivity procedure with the first PLMN using the first connectivity type over the selected non-3GPP access network.

Abstract: For data collection, apparatuses, methods, and systems are disclosed. One apparatus 800 includes a transceiver 825 that receives 905 a first request from a network analytics function to monitor and report occurrences of a first event. The apparatus 800 includes a processor 805 that identifies 910 a first type of network function in a mobile communication network that reports occurrence of the first event. The processor 805 sends 915 a second request to at least one network function of the first type to monitor and report occurrences of the first event and relays 920 reports of occurrence of the first event from the at least one network function to the network analytics function.

Abstract: Apparatuses, methods, and systems are disclosed for providing fallback assistance information to a RAN node. One apparatus includes a memory coupled to a processor, the processor configured to cause the apparatus to: receive a service request indicating a service for fallback, the service request associated with a UE, where the service for fallback corresponds to a different RAT or a different system generation; and transmit, to a network entity, an indication of a fallback requirement or a target system, or both, based on a service type associated with the service request or a network configuration, where the service type corresponds to a different RAT or a different system generation, where a handover or redirection is performed based on the transmitted indication.

Abstract: For monitoring a slice attribute, apparatuses, methods, and systems are disclosed. One apparatus (1000) includes a processor (1005) that determines (1105) to collect data for a slice attribute of a network slice. Here, the slice attribute is a number of UEs using the network slice and/or a number of data sessions using the network slice. The processor (1005) requests (1110) a first collecting network function to report first usage data (e.g., roaming UE usage) for the network slice according to the slice attribute and requests (1115) a second collecting network function to report second usage data (e.g., non-roaming usage) for the network slice according to the slice attribute. The processor (1005) determines (1120) whether a quota associated with the slice attribute is reached. The apparatus (1000) includes a transceiver (1025) that sends (1125) a notification to a network function in response to the quota being met.

Abstract: A core network node supporting Control Plane CIoT (Celluar Internet of Things) EPS (Evolved Packet System) Optimization includes a transmitter configured to transmit to a radio access network node an information indicating overload from data transfer via the Control Plane CIoT EPS Optimization. A radio access network node includes a receiver configured to receive, from a core network node, an information indicating overload from data transfer via Control Plane CIoT (Celluar Internet of Things) EPS (Evolved Packet System) Optimization.

Abstract: Apparatuses, methods, and systems are disclosed for security mode integrity verification. One method includes receiving an authentication request message corresponding to a user equipment. The method includes, in response to receiving the authentication request message, determining whether the user equipment has moved from a first public land mobile network to a second public land mobile network within a predetermined period of time. The method includes, in response to the user equipment having moved from the first public land mobile network to the second public land mobile network within the predetermined period of time, determining a likelihood factor that indicates a likelihood that the user equipment moved from the first public land mobile network to the second public land mobile network. The method includes, in response to the likelihood factor being less than a predetermined threshold, transmitting an authentication response message indicating a failed authentication.

Abstract: Apparatuses, methods, and systems are disclosed for session management function derived core network assisted radio access network parameters. One method includes receiving session management function derived core network assisted radio access network parameters from a session management function. The method includes storing the session management function derived core network assisted radio access network parameters in a protocol data unit session level context. The method includes using the session management function derived core network assisted radio access network parameters to determine an expected session activity behavior parameter set.

Abstract: Apparatuses, methods, and systems are disclosed for modifying a radio capability. One apparatus includes a processor and a transceiver that communicates with a RAN node. The processor registers with a first communication system via the RAN node. The processor detects a trigger to perform radio capability change for at least one radio access technology (“RAT”) and transitions the apparatus to an idle state. The processor further sends a request to the first communication system to update one or more UE radio capabilities while in the idle state.

Abstract: Apparatuses, methods, and systems are disclosed for determining mobile network policy freshness. One method includes accessing a first policy associated with a first mobile network, a first policy identifier, and a freshness parameter. The method includes determining, based on the freshness parameter, whether the first policy is fresh. The method includes transmitting a registration message to a second mobile network. The registration message includes the first policy identifier in response to determining that the first policy is not fresh.

Abstract: Apparatuses, methods, and systems are disclosed for protecting the user identity and credentials. One apparatus includes a processor registers with a mobile communication network using a first set of credentials, the mobile communication network supporting a plurality of network slices. The processor receives a public key for a network slice where slice-specific authentication is required and encrypts a second set of credentials using the public key. Here, the second set of credentials is used for authentication with the network slice. The apparatus includes a transceiver that sends a message to the mobile communication network, the message including the encrypted second set of credentials.

Abstract: A transceiver can transmit a broadcasted system information message including a restricted operator service access indication from a serving cell of a network. A controller can perform a radio resource control connection establishment procedure to receive an attach request message.

Abstract: Apparatuses, methods, and systems are disclosed for network slice authentication. One apparatus includes a processor that provides an application layer and a non-access stratum (“NAS”) layer and a transceiver for communicating with a mobile communication network. The processor receives, at an application at the application layer, network slice authentication information for a subscribed service and stores the network slice authentication information at an application module. The processor associates the network slice authentication information with single network slice selection assistance information (“S-NSSAI”) and registers the application with the NAS layer, said registration pointing to the associated S-NSSAI. Additionally, the transceiver that exchanges, via the NAS layer, authentication messages with an authentication, authorization, and accounting (“AAA”) server for network slice authentication information.

Abstract: Apparatuses, methods, and systems are disclosed for creating a network slice section policy (“NSSP”) rule. One apparatus includes a processor and a transceiver for communicating with a network function in a mobile communication network. The processor receives a first request from the network function, the first request comprising a list of one or more application identifiers and a corresponding application profile and application provider for each application identifier. The processor determines one or more network slice identifiers for each application identifier using the corresponding application profile and application provider. The processor also creates a NSSP rule for each application identifier in the list of application identifiers, the NSSP rule containing the application identifier and the associated one or more network slice identifiers.

Abstract: A method and apparatus provide for attachment for restricted local operator services for an apparatus, such as a user equipment. An attach procedure for the restricted local operator services for the apparatus can be performed. A proxy call session control function address for the restricted local operator services can be received during the attach procedure. A session initiation protocol register request message can be generated. The session initiation protocol register request message can include an indication for the restricted local operator services and can include an internet protocol multimedia public user identification based on an identification of the apparatus. The session initiation protocol register request message to the proxy call session control function address can be sent, the session initiation protocol register request message can include the indication for the restricted local operator services.

Abstract: Apparatuses, methods, and systems are disclosed for supporting edge data network discovery. One apparatus includes a transceiver and a processor that receives a first request from a function in the mobile communication network including a UE identity and a UE network address. The processor determines whether the UE is located in a first service area based on a UE location and forwards a DNS request received from the UE network address to a first DNS server associated with the first service area in response to determining that the UE is located in the first service area. Via the transceiver, the processor receives a DNS reply from the first DNS server and sends a second request to a policy function in the mobile communication network in response to determining that the DNS reply includes a first IP address.

Abstract: Method and apparatus for improving the flexibility of supporting service continuity are disclosed. A method comprises receiving a PCC rule containing a traffic steering control information per AF request which includes an indication on whether service continuity for offload traffic is supported or not; and performing a PSA relocation based on the information.