Abstract: A computer device may include a memory storing instructions and processor configured to execute the instructions to host a network function container that implements a microservice for a network function in a wireless communications network, wherein the network function container is deployed by a container orchestration platform; host a service proxy container associated with the network function container, wherein the service proxy container is deployed by the container orchestration platform; and configure the hosted service proxy container to apply a wireless network policy to the microservice for the network function. The processor may be further configured to intercept messages associated with the microservice for the network function using the configured service proxy container; and apply the wireless network policy to the intercepted messages using the configured service proxy container.

Abstract: A method, a network device, and a non-transitory computer-readable storage medium are described in relation to an EASDF secure service. The EASDF secure service may include a network-side service that may validate access and authorization to use a domain name system (DNS) resolver device, such as an edge application server discovery function. The network-side service may validate access and authorization of an end device based on tokens. The EASDF secure service may include an end device-side service that includes a token with a DNS query to the DNS resolver device. The end device-side service may further provide authorization regarding access and use of applications, networks, and application devices that host applications and/or assets by the end device at the end device. The end device-side service may determine access and/or authorization based on tokens and a validation procedure performed at the end device.

Abstract: Disclosure are techniques for allocating aggregation devices in a lawful intercept system. In an embodiment, a method includes maintaining a list of point of interception aggregation (PAG) functions in a network function repository function (NRF) of a cellular network upon instantiation of the PAG functions; receiving a lawful intercept (LI) request; querying the NRF to determine a respective PAG function; and associating a point of interception (POI) function with the respective PAG function.

Abstract: A network device may receive, from a user device, a request for data associated with network slices provided to a region or a network, and may provide, to the user device, network slice data, quality of service (QOS) levels, and a policy lookup table based on the request. The network device may receive, from the user device, priority data identifying a network slice for prioritization, a duration of the prioritization, and a policy for the prioritization, and may create, based on the priority data, a QoS policy table that includes a QoS level for the network slice. The network device may cause network functions to utilize the QoS policy table for a user equipment.

Abstract: In some implementations, a domain name system (DNS) server may receive, from a user equipment (UE), a DNS request message that indicates location information. The DNS server may select a node for the UE based on the location information. The DNS server may transmit, to the UE, an indication of the node.

Abstract: A device may include a processor configured to maintain a plurality of session management entities (SMEs) for a core network associated with a radio access network (RAN). The processor may be further configured to establish a communication session using a first SME, of the plurality of SMEs; store session data for the communication session in a communication session database accessible by each of the plurality of SMEs; receive, using a second SME of the plurality of SMEs, a message associated with the communication session; retrieve, using the second SME, session data for the communication session from the communication session database, based on receiving the message; and process, using the second SME, the message using the retrieved session data.

Abstract: A device may include a processor. The processor may be configured to receive, from the User Equipment device (UE), over a network, a registration request that includes a list of network slices requested by the UE; request a network component to provide a list of network slices to which the UE is subscribed; obtain a list of replacement network slices for replacing one or more of the list of network slices when one or more of the list of network slices become unavailable for a session with the UE; obtain a second list of network slices, which are allowed by the network to establish a session with the UE, based on the list of network slices and the list of replacement network slices; and send the second list of network slices to the UE.

Abstract: Systems and methods provide a selective network slice admission control (NSAC) service on a per user equipment (UE) device level, and include manage select NSAC criteria related to a first limit to a number of user equipment (UE) devices and a second limit to a number of protocol data unit (PDU) sessions supportable on a network slice; receive an indication that a first UE device requests a first PDU session on the network slice; apply at least one of the select NSAC criteria to the first UE device and/or the first PDU session; determine, based on the application, that the first UE device is countable toward the first limit and/or the first PDU session is countable toward the second limit; and generate an NSAC update response message indicating that the first UE device and/or the first PDU session is countable.

Abstract: Disclosure are techniques for allocating aggregation devices in a lawful intercept system. In an embodiment, a method includes maintaining a list of point of interception aggregation (PAG) functions in a network function repository function (NRF) of a cellular network upon instantiation of the PAG functions; receiving a lawful intercept (LI) request; querying the NRF to determine a respective PAG function; and associating a point of interception (POI) function with the respective PAG function.

Abstract: Systems and methods described herein enable network slice selection from different service providers using embedded Subscriber Identity Modules (eSIMs). A user equipment (UE) device stores a first eSIM associated with a first service provider of a first mobile network and a second eSIM associated with a second service provider of a second mobile network. The UE device also stores policy rules governing selection of the first eSIM and the second eSIM, wherein the policy rules limit use of second eSIM to a network slice on the second mobile network. The UE device initiates a session connection request associated with an application and directs the session connection request through one of the first eSIM or the second eSIM based on the policy rules.

Abstract: Systems and methods described herein enable distribution of a Charging Function group identifier (“CHF-Group-ID”) and other CHF selection data to CHF consumers during Protocol Data Unit (PDU) session establishment in a 5G network. A Unified Data Repository (UDR) is provisioned with CHF-Group-ID details for each subscriber of the network. In one aspect, during PDU session establishment, CHF consumers obtain CHF-Group-ID information as part of a subscriber profile that is provided to all CHF consumers. No additional step or hop is needed for the CHF consumers to obtain the CHF-Group-ID. Thus, regionally segmented CHFs can be implemented without replication of data between CHFs in different regional segments and without additional signaling between network functions.

Abstract: A system described herein may identify a requested communication session between a UE and a network, such as a core of a wireless network. The system may identify Quality of Service (“QoS”) information associated with the UE and/or the requested communication session. The QoS information may include or may be based on a network slice identifier, a QoS value, a Service Level Agreement (“SLA”), one or more models associated with UE attributes, or other suitable information. The system may determine a maximum transmission unit (“MTU”) configuration for the UE based on the identified QoS information and/or models that associate UE attributes to MTU configurations. The system may implement the determined MTU configuration, including providing the MTU configuration to one or more gateways or endpoints of the network and/or to the UE. The UE and the network may accordingly use the MTU configuration when communicating via the requested communication session.

Abstract: A network device of a network may receive a registration request from a user equipment, and may generate, based on the registration request, a request for a usage limit control associated with the user equipment. The network device may provide the request for the usage limit control to another network device of the network, and may receive, based on the request, the usage limit control from the other network device. The network device may determine a policy for the user equipment based on the usage limit control, and may cause the policy to be implemented for the user equipment.

Abstract: A device may receive performance requirements for a service, and may receive RAN factors that influence a RAN, core factors that influence a core network, and transport factors that influence a transport network. The device may determine a RAN capability to satisfy the performance requirements, and may determine a core capability to satisfy the performance requirements. The device may determine a transport capability to satisfy the performance requirements, and may determine RAN configuration settings, core configuration settings, and transport configuration settings based on the RAN capability, the core capability, and the transport capability, respectively. The device may generate a RAN SON based on the RAN configuration settings, a core SON based on the core configuration settings, and a transport SON based on the transport configuration settings. The device may create a network slice based service area based on the RAN SON, the core SON, and the transport SON.

Abstract: A system described herein may receive a communication session request associated with a particular User Equipment (“UE”) and a network that includes a plurality of network slices. The communication session request may include a particular identifier, such as a Data Network Name (“DNN”) or other type of identifier. The system may output a request for network slice information, wherein the request includes the particular identifier; and may receive network slice information that indicates multiple network slices that were selected based on the particular identifier. A Unified Data Management function (“UDM”), Unified Data Repository (“UDR”), and/or other element of the network may provide such information. The system may identify network slice priority information that indicates relative priorities of the network slices, may select a particular network slice based on the network slice priority information, and may respond to the communication session request in accordance with the selected first network slice.

Abstract: In some implementations, a network device may receive a subscription request to subscribe to receive notifications associated with context data related to a registered session associated with a user equipment (UE). The registered session may be associated with a reauthorization timer that is associated with triggering the network device to provide a request for reauthorization of the registered session. The network device may provide, based on an expiration of the reauthorization timer, the request for reauthorization of the registered session.

Abstract: Systems and methods described herein provide for User Equipment (UE)-initiated authentication and authorization updates to Network Slice-Specific Authentication and Authorization (NSSAA). A network device in a core network receives a message from a user device outside of the core network, wherein the message includes a request to initiate a NSSAA procedure. The network device initiates the NSSAA procedure in response to the request. The systems and methods also provide for UE-initiated authorization revocation of NSSAA.

Abstract: A system described herein, such as an Session Management Function (“SMF”) of a core network of a wireless network, may receive a request to associate a particular User Equipment (“UE”) with a plurality of Internet Protocol (“IP”) addresses. The UE may be associated with a communication session between the UE and the core network. The system may output an information request for IP address authorization information from a UE information repository associated with the wireless network, and may receive a response to the information request from the UE information repository. The system may identify a quantity of IP addresses based on the response to the information request, and may provide the identified quantity of IP addresses to the particular UE in response to the request to associate the particular UE with the plurality of IP addresses.

Abstract: A method, a network device, and a non-transitory computer-readable storage medium are described in relation to an EASDF secure service. The EASDF secure service may include a network-side service that may validate access and authorization to use a domain name system (DNS) resolver device, such as an edge application server discovery function. The network-side service may validate access and authorization of an end device based on tokens. The EASDF secure service may include an end device-side service that includes a token with a DNS query to the DNS resolver device. The end device-side service may further provide authorization regarding access and use of applications, networks, and application devices that host applications and/or assets by the end device at the end device. The end device-side service may determine access and/or authorization based on tokens and a validation procedure performed at the end device.

Abstract: A device in a network may be configured to: receive a request from a User Equipment (UE) device to establish a session with a network slice in the network; obtain a device type of the UE device; select, by using the device type, a Session Management Function (SMF), among a set of SMFs, which manages sessions for UE devices of the device type; and send a message to the selected SMF to create a session context. When the selected SMF receives the message, the selected SMF is configured to select a User Plane Function (UPF) based on the device type and cause the selected UPF to establish the session between the UE device and the network slice.