Abstract: Systems and methods are provided for notifying third-party servers, such as law enforcement agency servers, of updates to wireless user equipment identifiers. The method includes receiving a replacement wireless user equipment identifier to replace a current wireless UE identifier. It is determined that a third-party server (law enforcement agency) information request is associated with the current wireless UE identifier (such as an IMEI or PEI). Responsive to determining there is an information request from a third-party server associated with the current wireless UE identifier, notification of the replacement wireless user equipment identifier is generated and transmitted to the third-party server.

Abstract: An Internet Protocol Multimedia Subsystem (IMS) serves an IMS service to user communication devices based on individual subscriber profiles and a shared subscriber profile. The individual subscriber profiles and the shared subscriber profile are stored. The IMS serves the IMS service to the user communication devices based on the individual subscriber profiles. When an individual subscriber profile is unavailable for a user communication device, the IMS serves the IMS service to the user communication device based on the shared subscriber profile.

Abstract: Systems and methods are provided for tracking handover types in a wireless network. An originating radio access technology (RAT) and a destination radio access technology (RAT) are determined from the initial request from a UE to attach to the wireless network. The originating RAT and destination RAT for the initial attach request are transmitted and maintained in a subscriber profile associated with the wireless device for subscriber tracking and network analysis.

Abstract: Techniques for controllable device deregistration and reregistration provide for enhanced network operator control over the timing of device deregistration and reregistration with the network. Example techniques can be applied by a home subscriber service (HSS) of an internet protocol multimedia core network subsystem (IMS). In response to a reregistration notification initiated by a network operator, the HSS can create an IMS deregistration notification comprising a reregister bit and can set the reregister bit to an enabled state. The HSS can then forward the IMS deregistration notification to downstream network equipment such as call session control functions (CSCF), which can in turn forward the IMS deregistration notification to a user equipment (UE), thereby causing the UE to re-register with the IMS.

Abstract: Techniques for authenticating user equipment (UE) in a Fifth-Generation (5G) network are discussed herein. A UE can connect with a 5G network and can send a registration request to an authentication server function (AUSF) of the network. The AUSF can request multiple authentication vectors from a unified data management (UDM) function, which can use a 5G-AKA (authentication and key management) procedure to generate authentication vectors. The AUSF can receive and store a subset of the authentication vectors at the AUSF (or another location) and can forward an authentication vector to an access and mobility management function (AMF) to subsequently authenticate the UE. Later, when the UE leaves the 5G network (e.g., because of a handover) and returns to the 5G network, the AUSF can re-authenticate the UE without additional signaling to the UDM to generate or otherwise determine additional authentication vectors, thereby saving additional signaling in the core network.

Abstract: Techniques for optimizing messages in a telecommunications network are discussed herein. More particularly, an SMSF can be configured to refrain from sending deregistration and/or unsubscribe messages to a UDM in response to a handover from 5G to 4G, which can thereby reduce signaling in the network. Further, because of the suppressed messages, the network maintains SMSF session information, which indicates the delivery location for a SMS message. However, when a SMSC receives a SMS addressed to the UE, the HSS may query a UDR for SMSF session information, SMSF registration status, and/or AMF registration status. The HSS may determine a location for the SMS based on the active location of the UE, as determined by the AMF registration status. Thus, the techniques discussed herein represent network optimizations while allowing SMS messages to be correctly routed in a network.

Abstract: Technology is disclosed herein for operating a wireless network including deregistering a user device from the network. In an implementation, a first network element deregisters the user device from the wireless network. The first network element determines a cause of the deregistration from among a plurality of possible causes and generates a notification message indicating the cause of the deregistration. The first network element communicates the notification message to a second network element which purges subscriber data from a data repository of the network and updates a subscriber profile of the user device with the cause of the deregistration. In an implementation, the first network element is an Access and Mobility Management function (AMF), the second network element is a Unified Data Management function (UDM), and the data repository is a Unified Data Repository (UDR) of the network.

Abstract: Techniques for optimizing messages in a telecommunications network are discussed herein. More particularly, an SMSF can be configured to refrain from sending deregistration and/or unsubscribe messages to a UDM in response to a handover from 5G to 4G, which can thereby reduce signaling in the network. Further, because of the suppressed messages, the network maintains SMSF session information, which indicates the delivery location for a SMS message. However, when a SMSC receives a SMS addressed to the UE, the HSS may query a UDR for SMSF session information, SMSF registration status, and/or AMF registration status. The HSS may determine a location for the SMS based on the active location of the UE, as determined by the AMF registration status. Thus, the techniques discussed herein represent network optimizations while allowing SMS messages to be correctly routed in a network.

Abstract: An access and mobility management function (AMF) and a unified data management node (UDM) described herein are configured to refrain from sending messages between each other in the contexts of handovers between 4G (fourth generation) and 5G (fifth generation) technologies and of initial registration on 5G. During a handover from 5G to 4G, the UDM sets a 5G registration status to not active and refrains from sending a deregistration notification to the AMF. During a handover from 4G to 5G that is not an initial registration, the AMF refrains from sending get messages and subscribe messages to the UDM but receives updates to subscriber profile information from the UDM. Further, during an initial 5G registration, the AMF refrains from sending subscribe messages to the UDM but receives updates to subscriber profile information from the UDM.

Abstract: An access and mobility management function (AMF) configured to send a registration message with an initial registration flag set to false to a unified data management node (UDM) and refrain from sending an update message to the UDM is described herein. The AMF receives a registration request from a user equipment (UE) associated with a handover of the UE from a fourth generation (4G) network to a fifth generation (5G) network and determines that the registration request is not for an initial registration. In response to determining that the registration request is not for an initial registration, the AMF sends the registration message to the UDM with an initial registration flag set to false and refrains from sending the update message to the UDM.

Abstract: Systems, methods and devices are provided for subscriber prioritization upon initial attachment. Methods include receiving notification of an initial attach request from a wireless device at a core network component, obtaining a subscriber priority during the initial attach procedure, and sharing the subscriber priority with the network component responding to the initial attach request.

Abstract: An access and mobility management function (AMF) configured to obtain subscriber profile information without sending a get message and a subscribe message to a unified data management node (UDM) is described herein. The AMF is a new AMF that receives a registration request as part of a handover from an old AMF and receives user equipment (UE) context information from the old AMF. Without sending a get message to the UDM, the AMF obtains subscriber profile information by either fetching the subscriber profile information from an unstructured data storage function (UDSF) shared by a pool of AMFs, when the UDSF is available, or receiving the subscriber profile information from old AMF, when the UDSF is not available. Also, without sending a subscribe message to the UDM, the AMF receives notification of changes to the subscriber profile information from the UDM.

Abstract: An Internet Protocol Multimedia Subsystem (IMS) uses IMS slices in association with wireless network slices. The IMS receives an IMS registration from an IMS user device. In response, a wireless communication network identifies the wireless network slice that currently serves the IMS user device. The wireless communication network and/or the IMS selects an IMS slice for the IMS user device based on the wireless network slice that currently serves the IMS user device. The IMS serves an IMS service to the IMS user device from the selected IMS slice over the identified wireless network slice.

Abstract: A wireless communication system serves wireless communication devices based on individual subscriber profiles and a shared subscriber profile. The wireless communication system stores the individual subscriber profiles and stores the shared subscriber profile. The wireless communication system serves the wireless communication devices based on the individual subscriber profiles. The wireless communication system determines when the individual subscriber profiles are unavailable for the wireless communication devices. In response, the wireless communication system serves the wireless communication devices based on the shared subscriber profile.

Abstract: Methods, systems and computer readable media for rogue device detection are described. The method may include automatically generating one or more dummy network identifiers associated with a wireless network, advertising the one or more dummy network identifiers, and identifying a device as a suspect device based on receiving a connection attempt to at least one of the one or more dummy network identifiers by the device. The method can also include allocating a virtual local area network within the wireless network to process traffic associated with the at least one of the one or more dummy network identifiers, and monitoring network traffic of the suspect device on the virtual local area network. The method can further include, if the monitored network traffic meets an abnormality threshold, determining that the suspect device is a rogue device, and performing an action to protect the wireless network from the rogue device.

Abstract: A wireless communication system modifies wireless network slice information for a wireless communication user. The wireless communication system detects a modification to the wireless network slice information for the wireless communication user. In response to the modification detection, the wireless communication system transfers a slice information modification message to a wireless communication device for the wireless communication user. The wireless communication system detects a failure of the slice information modification message sent to the wireless communication device. In response to the failure detection, the wireless communication system transfers another slice information modification message to the wireless communication device.

Abstract: Aspects of the present disclosure are directed to controlling access to resources in a network. In an embodiment, a gateway system receives a packet requesting access to a resource in the network, and identifies access control policies to be applied in determining whether or not to permit access to said first resource. The gateway system applies a higher-layer policy and then a lower-layer policy on the packet to determine whether or not to forward the packet to the network and forwards the packet to the network only if it is determined to forward the packet. The higher-layer policy and lower-layer policies are according to respective layers of a networking model.

Abstract: Methods, systems and computer readable media for rogue access point detection are described.

Abstract: Methods, systems and computer readable media for secure VLAN within a wireless network are described.

Abstract: Methods, systems and computer readable media for location-based endpoint security are described.