Abstract: Systems, methods, and computer-readable media are provided for delivering 5G SMS messages over an enterprise wireless local area network (WLAN). An example method can include associating, by an enterprise WLAN, a client device with the enterprise WLAN by assigning an enterprise WLAN identity to the client device, authenticating, by the enterprise WLAN, the client device, and generating, by the enterprise WLAN, a subscription policy for the client device. The client device can be subscribed to a 5G network. The subscription policy can specify how to route to the client device from the 5G network through the enterprise WLAN.

Abstract: Object movement detection may be provided. Channel State Information (CSI) data may be obtained. The CSI data may be associated with a plurality of links between a plurality of Access Points (APs) that provide coverage to an area. Next, a plurality of features may be extracted from the CSI data. The plurality of features may then be converted to a plurality of scores. Then motion in sub-areas of the area may be classified based on a comparison of the plurality of scores to a threshold for the area. The threshold may be determined based upon data collected when no motion occurred in the area.

Abstract: Stateless address translation at an Autonomous System (AS) boundary for host privacy may be provided. An address associated with a host device in the AS may be received. The address may comprise a network prefix and an interface identifier (ID). Then a cypher value may be assigned to a cypher bit range in the network prefix. The cypher value may be associated with a first cypher algorithm of a plurality of cypher algorithms. Next, the address may be encoded wherein encoding the address comprises applying the first cypher algorithm to encode a coding bit range in the address that is less significant than the cypher bit range. The encoded address may then be used for flows from the host that egress the AS.

Abstract: Presented herein are techniques to facilitate wireless authorization based on in-line assurance and tariffing information. In one example, a method may include determining, by a roaming subscriber, that a visited network is a chargeable network; querying, by the roaming subscriber, the visited network for charging policies for at least two identity realms; obtaining, by the roaming subscriber, charging policy metadata associated with the charging policies for the at least two identity realms; selecting, by the roaming subscriber, an identity realm through which to connect to the visited network based on the charging policy metadata for the at least two identity realms; and connecting to the visited network using the selected identity realm.

Abstract: In one embodiment, an apparatus comprises a compressive sensing schedule generator configured to generate a plurality of compressive sensing schedules, wherein each of the plurality of compressive sensing schedules is for each of a plurality of frequency bands of a network, wherein the network comprises a plurality of access points and a plurality of clients, and a sensing matrix combiner configured to combine the plurality of compressive sensing schedules into a resulting schedule that comprises a spatial distribution and a scheduled time slot for each of the plurality of access points.

Abstract: Methods are provided which indicate availability of the same service on a different access network. In these methods, the network controller generates an identifier for each of one or more services provided by a wireless local access network (WLAN). The identifier is associated with a particular service which is also provided by a private radio network. The network controller provides to an access point the identifier to be broadcast to one or more user devices of the WLAN to connect to the particular service via the private radio network. A mobility management entity receives a request from a user device to connect to the private network, where the request includes an identifier associated with a particular service provided to the user device in the WLAN and based on the identifier, the mobility management entity enables the particular service to be provided to the user device via the private radio network.

Abstract: A server may receive, from a virtual private network (VPN) client of a client device, a message which indicates a request for a policy rule for communications with a network-based application (e.g. provided via a data center or cloud computing services). The server may obtain source attributes of the client device and a user thereof based on source identifiers, and destination attributes of the application based on a destination identifier, and select a policy rule associated with the attributes (e.g. indicative of security, risk, cost, load, and/or business function). The server may send a message which indicates a response and includes the policy rule for application at the VPN client. The policy rule may indicate a policy action for selecting a path, of a plurality of paths, identified by a path identifier, and specify conditions such as a location and/or a date, day, and/or time of the client device.

Abstract: Multiple authenticated identities for a single wireless association may be provided. First, an Access Point (AP) may provide an association with a client device. The AP may then establish, on the association, a first authenticated session for the client device based on a first media access control (MAC) address and a first identity. Next, the AP may establish, on same the association, a second authenticated session for the client device based on a second MAC address and a second identity.

Abstract: Best links for wireless clients may be provided. A computing device may receive, from a client device, a request to join a network. Then, in response to receiving the request to join the network, initial characteristics of the client device may be evaluated. Next, an initial plurality of links list may be provided to the client device in response to evaluating the initial characteristics of the client device. Subsequent characteristics of the client device may then be evaluated. An updated plurality of links list may be provided to the client device in response to evaluating the subsequent characteristics of the client device.

Abstract: An access point in a wireless network communicates wirelessly with one or more client devices over a channel that includes a plurality of subchannels. Radar is detected on a first subchannel of the plurality of subchannels. It is determined to puncture the first subchannel, based on the detecting the radar on the first subchannel and based on one or more puncturing factors. The first subchannel is punctured, the puncturing comprising muting one or more subcarriers on the first subchannel.

Abstract: A method, computer system, and computer program product are provided for controlling data access and visibility using a context-based security policy. A request from an endpoint device to receive data is received at a server, wherein the request includes one or more contextual attributes of the endpoint device including an identity of a user of the endpoint device. The one or more contextual attributes are processed to determine that the endpoint device is authorized to receive the data. A security policy is determined for the data based on the one or more contextual attributes. The data is transmitted, including the security policy, to the endpoint device, wherein the endpoint devices enforces the security policy to selectively permit access to the data by preventing the endpoint device from displaying the data to an unauthorized individual.

Abstract: An electronic device of a content producer generates a chunk of data, associates a location-independent name with the chunk of data, generates a signature for the chunk of data, attaches the signature to the chunk of data, and transmits the chunk of data, with the signature attached, to one or more user devices in response to respective requests. The signature is generated based on the data in the chunk, using a private key of the electronic device. The electronic device also stores information, including a specification of a public key associated with the private key, in a first ledger entry of a blockchain, to provide the one or more user devices with access to the public key. A user device may obtain the public key and use it to verify the chunk of data.

Abstract: In a fronthaul network system, when a CPRI link fault is detected at either of the REC or RE, both the REC and RE perform a Layer 1 synchronization. The fault may be a loss of signal, loss of frame, or a line code violation, which also translates to a loss of signal if seen beyond a threshold. A proxy slave recognizes the fault in a CPRI signal from a first radio device and inserts the fault alarm into a header of a radio over Ethernet frame. The proxy slave continues to communicate the signal for a configured number of hyper-frames. A proxy master receives the signal and communicates the signal and the fault alarm to a receiving radio device for a configured number of hyper-frames. The proxy and radio devices all perform a joint resynchronization.

Abstract: Techniques for initiator-based data-plane validation of segment routed, multiprotocol label switched (MPLS) networks are described herein. In examples, an initiating node may determine to validate data-plane connectivity associated with a network path of the MPLS network. The initiating node may store validation data in a local memory of the initiating node. In examples, the initiating node may send a probe message that includes a request for identification data associated with a terminating node. The terminating node may send a probe reply message that includes the identification data, as well as, in some examples, a code that instructs the initiating node to perform validation. In examples, the initiating node may use the validation data stored in memory to compare to the identification data received from the terminating node to validate data-plane connectivity. In some examples, the initiating node may indicate a positive or negative response after performing the validation.

Abstract: According to an embodiment, a node comprises one or more processors and one or more computer-readable non-transitory storage media comprising instructions that, when executed by the one or more processors, cause one or more components of the node to perform operations. The operations comprise determining security validation information that the node associates with a packet, inserting into the packet an identifier associated with the node and the security validation information that the node associates with the packet, and transmitting the packet comprising the identifier associated with the node and the security validation information that the node associates with the packet. The security validation information comprises one or more proof of security attributes and/or one or more proof of security level attributes.

Abstract: This disclosure describes various methods, systems, and devices related to identifying path changes of data flows in a network. An example method includes receiving, at a node, a packet including a first value. The method further includes generating a second value by inputting the first value and one or more node details into a hash function. The method includes replacing the first value with the second value in the packet. The packet including the second value is forwarded by the node.

Abstract: Disclosed are a system and method of establishing secure communications between nodes in a cloud environment. The method includes receiving a registration of a first user at a quantum processor service provider, receiving at the quantum processor service provider a request for authentication of the first registered user, the request comprising at least the password and the registration number, when the password and registration number match stored data at the quantum processor service provider for the first registered user, generating an EPR entangled pair and transmitting the EPR entangled pair to a first computing device of the first registered user, wherein the first registered user utilizes the EPR entangled pair in order to communicate with a second computing device associated with a second registered user. The quantum processor service provider can include a quantum EPR (Einstein Podoslky and Rosen) processor (QEP) and a logically co-located computer server.

Abstract: Improved mesh performance using Overlapping Basic Service Set (OBSS) coloring and transmission scheduling may be provided. A controller may determine that a plurality of Access Points (APs) in a mesh network each have a Received Signal Strength Indicator (RSSI) that is in a predetermined range. Next, the controller may assign, in response to determining that the plurality of APs each have the RSSI that is in the predetermined range, OBSS colors to links between the plurality of APs to limit packet collision in the mesh network between the plurality of APs. The controller may then create a transmission schedule for transmissions between the plurality of APs in the mesh network based on the assigned OBSS colors.

Abstract: In one example, a server obtains a plurality of code modules configured to identify issues in one or more network devices of a target network. Based on the plurality of code modules, the server generates a fingerprinting process configured to produce a fingerprint that includes a plurality of key-value pairs. Each key of the plurality of key-value pairs is a unique key that corresponds to select data associated with raw data obtained from the one or more network devices. Each value of the plurality of key-value pairs represents information regarding the select data. Based further on the plurality of code modules, the server generates an analysis model that is uniquely compatible with the fingerprinting process. The analysis model is configured to identify the issues in the one or more network devices based on the key-value pairs.

Abstract: Techniques are provided for improving the environmental sustainability of a networking device and/or a networking system. In one example, a sustainability server obtains power consumption data of a networking device on a per-plane basis. Based on the power consumption data, the sustainability server computes an individual sustainability score that indicates a level of environmental sustainability of the networking device. The sustainability server further analyzes the power consumption data on the per-plane basis. In response to analyzing the power consumption data on the per-plane basis, the sustainability server provides a recommendation to implement a change to a configuration or operating parameter of the networking device, or to a networking system that includes the networking device, to improve the individual sustainability score.