Abstract: A method of selectively connecting mobile devices to 4G and/or 5G networks includes preparing a plurality of isolated 4G and/or 5G networks configured to define a network federation and each having a Radio Access Network (RAN), a PDN Gateway node or a User Plane Function (UPF), and an application server; preparing a plurality of mobile devices; connecting the mobile devices to the networks to exchange data traffic with the application server via, at least, the RAN and the PDN Gateway or UPF node; preparing a connectivity network configured to selectively connect the networks to each other; selecting one reference PDN Gateway or UPF node associated with a network of the federation; and migrating the data traffic associated with all the mobile devices connected to the networks other than the reference network to the application server associated with the reference network that includes the previously selected PDN Gateway or UPF node.

Abstract: A method of selectively connecting mobile devices to 4G and/or 5G networks includes preparing a plurality of isolated 4G and/or 5G networks configured to define a network federation and each having a Radio Access Network (RAN), a PDN Gateway node or a User Plane Function (UPF), and an application server; preparing a plurality of mobile devices; connecting the mobile devices to the networks to exchange data traffic with the application server via, at least, the RAN and the PDN Gateway or UPF node; preparing a connectivity network configured to selectively connect the networks to each other; selecting one reference PDN Gateway or UPF node associated with a network of the federation; and migrating the data traffic associated with all the mobile devices connected to the networks other than the reference network to the application server associated with the reference network that includes the previously selected PDN Gateway or UPF node.

Abstract: A method is presented for optimizing communication for a user identified by a user identifier accessing a service in a telecommunication network. The method including the steps of: analyzing at the edge site all traffic packets originating from the user which connects to the network; checking whether the traffic packet requests a service; checking whether the service is available at the server of the edge site; rerouting the traffic packet to the edge site on the basis of a forwarding policy which is based either on the user identifier or on information contained in the IP packet portion; and forwarding the traffic packet to the core network if the traffic packet does not satisfy the policy or the service is not available at the edge site. The step of rerouting the traffic packet to the edge site includes rerouting the traffic packet by the serving gateway.

Abstract: A method for charging a user identified by a user identifier accessing a service in a LTE telecommunication network is provided. The network includes a base station, a core network with an enhanced serving gateway function, and an IP network. The method includes: analyzing all traffic packets originating from the user which connects to the network; forwarding the traffic packet to the core network if the traffic packet or the user sending it does not satisfy the policy or the service is not available at the edge site; offloading traffic packet outside the core network if it meets the policies configured in the serving gateway; routing of the traffic packet is done by the serving gateway; and sending from the serving gateway information about the offload traffic packets to the packet data network gateway located in the core network or to an Online Charging System.

Abstract: A method for creating a secure communication session between a user and an application server is provided. The method includes: providing a database associating a plurality of authorized user identifiers with a plurality of security credentials approved by the application server; assigning an IP address to the user; providing the serving gateway with the IP address and the user identifier of the user connected to the core network; checking whether the user identifier of the connected user to the core network is present in the database among the authorized user identifiers; forming a secure connection between the application server and the serving gateway using the security credential associated to the authorized user identifier of the user connected to the core network; and forwarding all packets from the application network addressed to the user via the secure connection to the user and vice versa.

Abstract: A method for creating a secure communication session between a user and an application server is provided. The method includes: providing a database associating a plurality of authorized user identifiers with a plurality of security credentials approved by the application server; assigning an IP address to the user; providing the serving gateway with the IP address and the user identifier of the user connected to the core network; checking whether the user identifier of the connected user to the core network is present in the database among the authorized user identifiers; forming a secure connection between the application server and the serving gateway using the security credential associated to the authorized user identifier of the user connected to the core network; and forwarding all packets from the application network addressed to the user via the secure connection to the user and vice versa.

Abstract: A method for controlling media communication session between a user and a receiving equipment via a core network is disclosed. The method includes checking a database to retrieve policy rules applicable to the user. The method also includes identifying the establishment of a default bearer for the user and analyzing all traffic packets originating from or directed to the user. The method further includes checking the establishment of a requested media communication session and determining the type of media session requested and established, and the IP addresses and ports of the user and the receiving equipment. The method also includes creating a dedicated bearer between the IP addresses and related ports of the already established media session, on the basis of the information retrievable from the packets belonging to the established media session and the database.

Abstract: A method for controlling media communication session between a user and a receiving equipment via a core network is disclosed. The method includes checking a database to retrieve policy rules applicable to the user. The method also includes identifying the establishment of a default bearer for the user and analyzing all traffic packets originating from or directed to the user. The method further includes checking the establishment of a requested media communication session and determining the type of media session requested and established, and the IP addresses and ports of the user and the receiving equipment. The method also includes creating a dedicated bearer between the IP addresses and related ports of the already established media session, on the basis of the information retrievable from the packets belonging to the established media session and the database.