Abstract: A method and a device for determining a trajectory in off-road scenarios having a first sensor system for capturing a 2D image of an environment; a first computing unit for classifying 2D image points into at least three classes, wherein a first class is “intended for being driven on”, wherein a further class is “can be driven on if necessary” and another class is “cannot be driven on”; a second sensor system for determining a height profile of the environment; a second computing unit for projecting the classified image points into the height profile; and a third computing unit having a trajectory planning algorithm, wherein the third computing unit determines a trajectory using the image points of the first class, wherein the image points of the further class are additionally taken into account in response to an incomplete trajectory in the first class.

Abstract: A retail vendor application installed on a user device receives configuration parameters for a user interface button that can be used by a user of the device to purchase an item available for consumption. The application determines, based at least in part on the configuration parameters, an activity trigger that, if detected, causes the application to present the button to the user. The application monitors sensors and applications on the user device to obtain data that can be used to detect the activity trigger. In response to detection of the activity trigger, the application updates an interface of the user device to present the button. If the user selects the button, the application generates a purchase request for the item that is sent to a retail vendor service for processing.

Abstract: Apparatus and method are provided to enhance scheduling request to multiple schedulers with inter base station carrier aggregation. In one novel aspect, the UE monitors and detects one or more SR triggering event. The UE selects one or more base stations based on predefined criteria and sends the SR to the selected one or more base stations. In one embodiment, at least one radio bearer of the UE is associated with multiple cell groups (CGs) in different base stations with association priorities. The association priorities may be configured by the network, derived based on predefined UE configurations, derived from load information received by the UE, or derived from radio measurements. In one novel aspect, the UE upon detecting SR failure triggered on a triggering radio bearer, sends SR failure indication to a RRC layer or associates the triggering radio bearer with a different base station.

Abstract: Disclosed are various embodiments for replicating authentication data between computing devices. A computing device detects a change to a user account made by a first client device associated with the user account. The computing device then determines that a second client device associated with the user account comprises locally stored authentication data that fails to reflect the change. The computing device then sends an update to the second client device.

Abstract: There is provided mechanisms for enabling secure communication between a first communications device and a second communications device. A method is performed by the first communications device. The method comprises performing a network attachment procedure with an authentication server. The method comprises establishing, during the network attachment procedure, a shared secret between the first communications device and the authentication server. The shared secret is established by running an authentication and key agreement protocol as part of the network attachment procedure with a network access identity of the first communications device as input. The method comprises deriving an application level shared key for the first communications device from the shared secret. The shared key is to be used for secure communication between the first communications device and the second communications device.

Abstract: A method of high reliability and early data transmission (EDT) is proposed. EDT allows one uplink transmission (optionally) followed by one downlink data transmission during a random-access channel (RACH) procedure, which can reduce the signaling overhead and save UE power. To improve reliability, for uplink EDT, there would be different set of RACH reattempt parameters in the UE for different types of access. For downlink EDT, there would be an indication in the paging message to trigger whether the UE would use legacy RACH or not. Further, the configuration for PRACH resource for EDT can be independent to legacy PRACH resource configuration. Under certain conditions, UE can fallback to legacy RACH procedure for high reliability.

Abstract: Disclosed are various embodiments for providing multi-factor authentication credentials. In one embodiment, in response to a request from an application, a notification is generated in a notification area of a display. Entry of a user approval is facilitated via the notification. The security credential may be shown in the notification area so that a user may enter it in a form field of the application.

Abstract: Disclosed are various embodiments for malware detection by way of proxy servers. In one embodiment, a proxied request for a network resource from a network site is received from a client device by a proxy server application. The proxied request is analyzed to determine whether the proxied request includes protected information transmitted in an unsecured manner. It is then determined whether the network resource comprises malware based at least in part on an execution of the network resource or whether the proxied request includes the protected information transmitted in the unsecured manner. The proxy server application refrains from sending data generated by the network resource to the client device in response to the proxied request when the network resource is determined to comprise the malware.

Abstract: There is presented mechanisms for profile handling of a communications device (300). A method is performed by a local profile assistant (200a) of a proxy device (200). The method comprises obtaining an indication of handling a profile of the communications device (300). The method comprises establishing a first secure communications link with a local profile assistant of the communications device. The method comprises establishing a second secure communications link with a subscription management entity (430) of the communications device. The method comprises receiving information pertaining to handling of the profile by the local profile assistant of the communications device, the information being received from the subscription management entity over the second secure communications link. The method comprises providing the information to the local profile assistant of the communications device over the first secure communications link.

Abstract: An austenitic-ferritic stainless steel welding material, comprising in weight %: C: <0.02 Si: <0.45 Mn: 1.60-2.05 P: <0.03 S: <0.03 Cr: 18.5-25 Ni: 8.5-10.5 Mo: <0.75 10 Co: <0.2 Cu: <0.75 N: 0.12-0.3 the balance being Fe and incidental impurities.

Abstract: Apparatus and methods are provided to enhance BSR and LCP procedures for the dual connectivity system. In one novel aspect, the BSR is handled for each MAC entity according to one or more allocation rules. In one embodiment, the allocation rule is configured by the network. In another embodiment, the allocation rule is determined by the UE based on historic statics. In yet another embodiment, the allocation rule is determined by the UE based on information from the network. In one embodiment, the allocation rule indicates percentage of traffic allocated to each MAC entity. In another novel aspect, LCP is performed independently for each MAC entity if the split bearer is configured and the prioritized bit rate (PBR) and the bucket size duration (BSD) are signaled for each eNB. In one embodiment, separate sets of LCG variables are maintained independently for each MAC entity.

Abstract: Apparatus and methods are provided for on-demand system information (SI) delivery. In one novel aspect, an indicator in the minimum system information (MSI) indicates whether an SI or an SI group is delivered with broadcast or unicast. In one embodiment, the UE receives a MSI, obtains from the MSI the other SI (OSI) delivery mode indicator, and sends an on-demand SI request if the OSI delivery mode indicates the unicast delivery mode, otherwise acquires OSI information in a predefined or scheduled period if the OSI delivery mode indicates the broadcast delivery mode. In one embodiment, the delivery mode is unicast and the SI request is sent at a timing or resource explicitly configured in a SI change notification message. In another embodiment, the delivery mode is broadcast and updated SI is obtained based on the scheduling information included in the SI change notification message.

Abstract: A generic access control procedure is proposed. Every action that is subject to access control is associated with an access category, and each access category is in turn associated with a set of access control parameters. From the APP layer, a UE detects an action that is subject to access control. The UE obtains and stores access categorization rules. In NAS layer, the UE determines the access category for the action. The UE then determines the set of access control parameters for the action. In AS layer, the UE finally applies the set of access control parameters to the action and makes a barring decision for the action. By defining a generic access control procedure and separating access control functions into NAS layer and AS layer, the generic access control is simplified and extendible.

Abstract: This innovation describes methods for an NR-based, LEO Non-Terrestrial Networks (NTN) to improve handover process by sending broadcast or group-cast downlink handover (HO) Command message to all (or group of) UEs in the coverage area (cell or beam-spot) of the LEO satellite. Subsequently, on receiving the broadcast (or group-cast) HO Command message, all the UEs in the source cell transmit HO Complete message to the source cell of the LEO-NTN. In order to reduce or avoid heavy Random Access (RA), generating from all the UEs, the LEO-NTN can either send Contention Free Random Access (CFRA), or instruct the UE to perform a random backoff before sending the uplink HO Complete message. Moreover, improvements to configure Conditional Handover (CHO) and delaying the transmission of HO Complete message are also provided.

Abstract: A client establishes a network session with a server. The network session is used to establish an encrypted communications session. The client establishes another network session with another server, such as after terminating the first network session. The client resumes the encrypted communications session over the network session with the other server. The other server is configured to receive encrypted communications from the client and forward them to the appropriate server.

Abstract: Various examples and schemes pertaining to simple Ethernet header compression are described. A first network node transmits a first packet with a full header to a second network node. The first network node determines whether a header compression context for the full header has been established by the second network node. In response to determining that the header compression context for the full header has been established by the second network node, the first network node transmits a second packet with a compressed header to the second network node. In response to determining that the header compression context for the full header has not been established by the second network node, the first network node transmits the second packet or a third packet with the full header to the second network node.

Abstract: Disclosed are various embodiments for a social networking behavior-based identity system that employs social networking data that a user has elected to share through an opt-in procedure. An assertion of a user identity is received from a client. It is determined whether the assertion of the user identity specifies a correct security credential. Social networking data identifying a circle of friends is received. It is determined whether the user identity belongs to a user at the client based at least in part on a reputation of one or more members of the circle of friends and whether the assertion of the user identity specifies the correct security credential.

Abstract: A method of MDT information logging and problem event reporting is provided. The method supports provisioning of reference events to enable correlation of system time and the problem occurrence. In one embodiment, a problem event report includes time information directly or indirectly related to a reference event. A method of handling battery condition is also provided. The method supports autonomously suspending or resuming OAM activities in MDT based on predefined battery condition. In one embodiment, a testable battery condition handling is designed for MDT logging.

Abstract: Apparatus and methods are provided for RLM and RLF procedure in a wireless network. In one novel aspect, the UE generates radio link monitoring (RLM) measurement results for multiple physical downlink control channels (PDCCHs), groups the PDCCHs to multiple RLM groups based on a grouping rule to generate link status for each RLM group based on a RLM group status rule, wherein each RLM group contains one or more PDCCHs and belongs to a critical type or a non-critical type based on the one or more PDCCH types in the group and initiates a radio resource control (RRC) connection re-establishment procedure if the link status of a critical type of RLM group indicates link failure, otherwise, generates a radio link failure (RLF) report to the wireless network if the link status of a non-critical type of RLM group indicates link failure.

Abstract: An authorization device having an activation module and a wireless interface is configured in a non-enabled mode. In the non-enabled mode, the wireless interface is configured to receive data, and the authorization device is configured to block a request received via the wireless interface to interact with the authorization device. The activation module detects an activation operation. In response to detecting the activation operation, the activation module configures the authorization device in an enabled mode. In the enabled mode, the authorization device is configured to process a request to re-configure the authorization device received via the wireless interface, and to transmit authorization information to a reader device via the wireless interface.