Abstract: A computer-implemented method, performed by a first node (111), for handling one or more data sessions. The first node (111) operates in the communications system (100). The first node (111) receives (301) a first indication originating from an external node (113) operating outside the communications system (100). The first indication indicates a request to preclude one or more data sessions meeting one or more conditions indicated by the external node (113). The first node (111) also initiates (305) the preclusion of the one or more data sessions by sending another indication to a second node (112) operating in the communications system (100). The another indication indicates the received request.

Abstract: A method for handling user notifications in a communications network. The method comprises receiving an indication that a second entity supports a user notification type; determining that a user notification of the user notification type shall be transmitted to the second entity, the user notification comprising a user identity and a notification content; selecting the second entity for delivering the user notification of the user notification type to the user; and transmitting to the second entity the user notification including the user identity and the notification content. The method may be performed by a Network Exposure Function (NEF), a Service Capability Exposure Function (SCEF), a Policy Control Function (PCF), a Policy and Charging Rules Function (PCRF), a Charging Function (CHF), or an Online Charging System (OCS).

Abstract: Techniques are provided to enable the SMF or other network node performing UPF selection to determine a computational resource demand, also referred to herein as the computational footprint, associated with a PDU session. The computational footprint can then be used by the SMF or other network node to inform the selection of the UPF.

Abstract: Embodiments described herein relate to methods and apparatuses for enabling selection of a media resource function or a media gateway in an IP session. A method in a Proxy Call Session Control Function, P-CSCF, includes receiving one or more Session Initiation Protocol, SIP, packets originating from a wireless device as part of the IP session; responsive to receiving the SIP packets, transmitting a request to a Policy Control Function, PCF, for an indication of a geographical service area for a User Plane Function, UPF associated with the IP session; receiving an indication of the geographical service area; and selecting a gateway node based on the geographical service area.

Abstract: Embodiments described herein relate to methods and apparatuses for providing an analytic result relating to tunneling traffic to a consumer network function, NF. A method in a first network function comprises receiving a request from the consumer NF, to receive analytics relating to tunneling traffic; responsive to receiving the request, triggering one or more network nodes to transmit data relating to tunneling traffic to the first NF; receiving data relating to tunneling traffic from one or more network nodes; analysing the received data to determine an analytic result; and transmitting an indication of the analytic result to the consumer NF.

Abstract: According to one aspect of the present disclosure, an apparatus for correlating network data analytics, NDA, information for a device group comprising multiple terminal devices is provided, wherein each terminal device is associated with a group member identifier and the device group is associated with a group identifier. The apparatus is adapted to receive an NDA request comprising a group identifier and an NDA specification of NDA information to be collected, to send a group member identifier request comprising the group identifier, and to receive, in response to the group member identifier request, one or more group member identifiers associated with the group identifier.

Abstract: An aspect provides a method by user plane function (UPF) in a core network (CN) of a communication network for registering the UPF at a network repository function (NRF) of the CN. The UPF is to selectively route uplink data traffic in one or more data sessions from a user equipment (UE) to one of a plurality of session anchor network functions (NFs). The method by the UPF comprises sending (1701) a registration request to the NRF. The registration request comprises registration information comprising an indication of a type of filter supported by the UPF to selectively route uplink data traffic from a UE to a particular session anchor NF. The type of filter relates to an application identity; and an indication of a value for the indicated type of filter.

Abstract: A network operator node (17) is provided. The network operator node (17) includes processing circuitry (42) configured to receive data traffic that is encrypted using one of an uplink and downlink public cryptographic key, decrypt the data traffic using one of an uplink and downlink private cryptographic key, apply at least a first traffic management action to the decrypted data traffic, after applying at least the first traffic management action, encrypt the data traffic using one of an application server, AS, public cryptographic key and an application client, AC, public cryptographic key where the AS public cryptographic key is associated with an AS private cryptographic key that remains unshared with the network operator node (17), and the AC public cryptographic key is associated with an AC private cryptographic key that remains unshared with the network operator node (17).

Abstract: Methods, apparatus and systems performed and configured to operate in a wireless communication network are presented. In example implementations, a request to register or update a Network Function, NF, profile of an NF in a Network Repository Function, NRF, is sent from the NF to the NRF. The NF profile signaled via the request comprises one or more parameters relating to one or more of a hardware characteristic of hardware comprised in the wireless communication network, a latency characteristic of the wireless communication network, and a throughput characteristic of the wireless communication network. An acknowledgement of the request may be sent from the NRF to the NF.

Abstract: A User Plane Function, UPF (35), sends a load report to a Session Management Function, SMF (45). Responsive to receiving the load report from the UPF (35), the SMF (45) installs a load reduction policy rule in the UPF (35). The load reduction policy rule comprises a criterion for identifying one or more users subject to the load reduction policy rule. The UPF (35) selectively applies the load reduction policy rule to user plane traffic of the one or more users based on the criterion.

Abstract: The invention relates to a method for operating an application server providing a service to a multipath enabled mobile entity connected to the application server with a first bearer of a first access network of a first mobile communications network, wherein the application server is external to the mobile communications network, whereas the method comprises the steps of receiving an indication that the mobile entity has an option to use another bearer not belonging to the first mobile communications network for accessing the application server, and of transmitting a request message towards a policy control entity of the first mobile communications network requesting the policy control entity to disconnect the first bearer.

Abstract: Method for operating a policy control entity (260) in a wireless communications network (200). In the wireless communications network (200) a multipath transmission with at least two data packet sessions can be provided between a content provider (300) and a user equipment (100), where a first data packet session of the at least two data packet sessions is transmitted through the wireless communications network (200) over a cellular access node (210) and a second data packet sessions of the at least two data packet sessions is transmitted through the wireless communications network (200) over a non-cellular access node (220). The method comprises the following steps. First an establishment request is received (SS) from a network exposure entity (270) to set up the multipath transmission.

Abstract: A method for implementing an AF multipath policy. The method may be performed by a PCF and may include a step of transmitting a request message comprising a UE ID identifying a UE. The method also includes receiving a response message transmitted as a response to the request message, the response message comprising: the AF multipath policy, an application ID (App-ID) identifying an application, and an application protocol ID (App-ID-Protocol), identifying a protocol used by the application. The method further includes generating a multipath policy using at least: i) the AF multipath policy and ii) the App-ID-Protocol. The method further includes providing the generated multipath policy to a management function (e.g., SMF).

Abstract: A communication network (10) tracking usage information for each of two or more components of traffic associated with the same application identifier provides a basis for differentiating charging with respect to the two or more components. For example, traffic carried by a communication network (10) for a social media application running on a User Equipment (UE) (12) may be identified by a corresponding application identifier. However, the so-identified traffic may include multiple components, such as traffic providing the social-media service(s) and traffic constituting advertising or other ancillary or supplementary content. Tracking and reporting the network usage associated with respective components, i.e., at a granularity finer than that provided by the overall application or traffic flow identifier, provides an advantageous basis for differentiated charging as between the respective components.

Abstract: There is provided a computer-implemented method for enabling an Application Function (AF) to request User Plane capabilities of a Mobile Network Operator (MNO). The method comprises requesting, by the AF from a Network Exposure Function (NEF), one or more UP capability groups for a first application identifier (App-ID) and/or one or more UP capabilities for the first App-ID, providing, from the NEF to a network entity, information associated with the one or more UP capability groups for the first App-ID and/or one or more UP capabilities for the first App-ID, storing, at the network entity, the one or more UP capability groups for the first App-ID and/or one or more UP capabilities for the first App-ID; and providing an indication from the NEF to the AF to indicate that the request has been accepted.

Abstract: A computer-implemented method, performed by a first node (111). The method is for handling encrypted traffic in a communications system (100). The first node (111) receives (304), from a second node (112) one or more keys to enable decryption by a third node (113) of traffic. The traffic is routed between two or more endpoints (130, 120) and is encrypted between the endpoints (130, 120) The first node (111) also receives (304) the one or more indications. The one or more indications indicate a respective protocol to be used with the one or more keys to enable decryption of the traffic. The first node (111) also initiates (305) sending the one or more keys and the one or more indications to the third node (113), thereby enabling decryption of the traffic. The first node (111) and the third node (113) are different from any of the two or more endpoints (130, 120).

Abstract: The use of multipath enabled mobile entities accessing a service outside the network in a multipath connection. The invention relates to a method for operating an application server (100) providing a service to a multipath enabled mobile entity (10) connected to the application server with a first bearer of a first access network of a first mobile communications network, wherein the application server is external to the mobile communications network, whereas the method comprises the steps of receiving an indication that the mobile entity (10) has an option to use another bearer not belonging to the first mobile communications network for accessing the application server, and of transmitting a request message towards a policy control entity (50) of the first mobile communications network requesting the policy control entity to disconnect the first bearer.

Abstract: The invention relates to various methods, entities, systems and computer programs for allowing a wireless communications network to implement content filtering even when a protocol used for packet data flow through the wireless communications network requires encryption of a domain name. One method relates in particular to a method for operating a policy control entity (240) in a wireless communications network (200), in which a data packet flow is provided for exchanging data packets between a user equipment (100) and a content provider (400), the data packet flow encrypting a domain name of the content provider (400). The method comprises a step of receiving (S6, S31) a user policy profile from a data repository (250), the user policy profile comprising a content filtering policy for filtering the data packets.

Abstract: A technique of configuring a core network domain of a wireless communication network for detection of service traffic that is to be trustfully handled in accordance with traffic handling information stored in a blockchain is provided. A method implementation of this technique comprises receiving, from a service provider, traffic detection information for service traffic that is to be handled in accordance with the traffic handling information. The method further comprises triggering an association, in the blockchain, of the received traffic detection information with the traffic handling information, and providing the traffic detection information to the core network domain for detecting the service traffic that is to be handled in accordance with the traffic handling information.

Abstract: Embodiments described herein relate to methods and apparatuses for the provision of an address resolver function. An application client is connected to a core network via a wireless device, wherein the application client is unaware of a session binding internet protocol, IP, address associated with a PDU session established between the wireless device and an anchor point to a data network. A method in the application client comprises transmitting an address request to an address resolver function, wherein the address resolver function is connected between the wireless device and a Network Address Translation, NAT, function; receiving an indication of the session binding IP address from the address resolver function; and transmitting an augmented service request to an application function, wherein the augmented service request comprises the session binding IP address.