Abstract: Disclosed herein is a method performed by one or more computing devices implementing a data readiness manager to proactively migrate and replicate user session data in a distributed edge cloud. The method includes receiving, from a local data management agent of a source data node, an indication to perform data readiness operations for a user session, wherein the source data node is associated with a service instance being accessed by a user associated with the user session, determining a predicted mobility of the user, determining one or more target data nodes based on the predicted mobility of the user, wherein each of the one or more target data nodes is associated with a service instance that is determined to have a sufficiently high probability of being accessed by the user at a future time, and causing data associated with the user session to be migrated and replicated from the source data node to each of the one or more target data nodes.

Abstract: A first data center receives a request, from a tenant, to access a first service. Responsive to determining that the tenant is not associated with a delegation contract, the first data center records a delegation contract for the tenant. A second data center receives a request, from the tenant, to access a second service, where the second data center is physically separate from the first data center. Responsive to determining that the tenant is associated with the delegation contract recorded in the blockchain database, the second data center causes an update of the delegation contract in the blockchain database; causes the second service to provide access to the tenant; transmits, to the tenant, a confirmation that the second service can be accessed, and transmits an update to the first data center indicating that the delegation contract has been updated to include a second service offer.

Abstract: A method, configuration controller, computer program, and computer program product are provided. Determining whether or not a configuration change in a service mesh data plane is needed is based on at least one parameter. Responsive to determining that the configuration change is needed, a set of possible configuration changes is identified. A configuration based on the set of possible configuration changes is generated. The configuration is applied to the service mesh data plane.

Abstract: A method is implemented by one or more network devices to identify an originating point of failure in a composite service executed in a cloud computing environment. The execution of the composite service includes execution of a plurality of atomic services in an ordered sequence, where for each atomic service that is executed, an execution trace for that atomic service is stored in a blockchain to form an ordered sequence of execution traces, where the execution trace for a given atomic service is signed using the private key associated with that atomic service and analyzing one or more of the ordered sequence of execution traces to determine which of the plurality of atomic services originated the failure, where each execution trace that is analyzed is authenticated using the public key that corresponds to the private key associated with the atomic service that generated that execution trace.

Abstract: Provided is a method for managing a network slice instance (NSI) in a communications network. A first performance of the NSI is monitored by a first network slice subnet instance (NSSI) associated with the NSI. A first node obtains, from a second node, a request to monitor a second performance of the NSI. The second performance is of one or more microservices to provide data on a sector of the network. The first node determines, based on one or more requirements of the request, to perform one of: i) initiating (303) a creation of a second NSSI adapted to monitor the second performance based on the requirements, and ii) modifying, based on the requirements, an existing second NSSI, to monitor the second performance. The created or modified second NSSI being: a) independent from, and b) sharable with, the first subnet slice instance.

Abstract: A method performed by a network node for handling one or more operations in a communications network comprising a plurality of computing devices performing one or more tasks. The network node obtains initial parameters relating to the plurality of computing devices, environment and the communications network; and generates a plan by taking one or more operation goals involving the plurality of computing devices into account as well as the obtained initial parameters, wherein the generated plan relates to operation of the plurality of computing devices. The network node further computes a number of back-up plans, wherein the number of back-up plans are taking one or more events into account wherein the one or more events relate to operation of the plurality of computing devices; and executes one or more operations using the generated plan, and in case the one or more events occur, using a computed back-up plan.

Abstract: A method and a network node for managing access, by a device, to a blockchain. The network node receives, a first request for creation of a first account. The first request includes information relating to a user of the device and a first hash value. The network node creates, based on the information and the first hash value, the first account on the blockchain, whereby a first address is obtained. The network node receives, a second request for recovering account information of the first account. The second request includes the first address of the first account, a source value from which the first hash value is derived and a second address of a second account. The network node generates a second hash value based on the source value. The network node initiates transfer of the account information of the first account to the second account.

Abstract: A method and a network device in a cloud computing system, including a first blockchain component that is one of a plurality of blockchain components forming a blockchain system, of dynamic discovery of another blockchain component of the blockchain system are described. A multicast address including a multicast group identifier is generated. The multicast group identifier is generated at least in part based on a genesis block identifier that uniquely identifies a blockchain serviced by the blockchain system. The network device joins a multicast group identified by the multicast group identifier; and transmits a message destined to the multicast address, where the message includes a request for a unicast address of another component of the blockchain system.

Abstract: Methods and systems for authorizing the access of a service are described. A server is operative to receive a request to subscribe to a service. The server is to receive from the requestor a selected service offer from the set of service offers, where the selected service offer is cryptographically signed with the private key of the requestor and the private key of the service. The server is further to record a delegation contract into a blockchain database, where the delegation contract includes an identification of the service, an identification of the requestor, and the service offer that is cryptographically signed with the private keys of the requestor and the service. The server is to transmit, to the requestor, a confirmation that the service can be accessed based on the selected service offer; and transmit to the service the delegation contract causing the service to provide access to the requestor.

Abstract: Methods and systems are disclosed for managing cloud services using smart contracts to facilitate various functions, such as tenant login, tenant enrollment, service registration, tenant usage charging, tenant usage tracking, tenant quota management, and tenant rights revocation. The proposed techniques allow tenant and service accounts to be represented as smart contracts, and for services to delegate authorization for bundles of service attributes to tenants and other services, for which the tenants and services are then charged. The business logic is implemented on a permissioned, distributed ledger (e.g., a private blockchain) and therefore is easily customized for specific classes of tenants and services.

Abstract: A method is implemented by one or more network devices to identify an originating point of failure in a composite service executed in a cloud computing environment. The execution of the composite service includes execution of a plurality of atomic services in an ordered sequence, where for each atomic service that is executed, an execution trace for that atomic service is stored in a blockchain to form an ordered sequence of execution traces, where the execution trace for a given atomic service is signed using the private key associated with that atomic service and analyzing one or more of the ordered sequence of execution traces to determine which of the plurality of atomic services originated the failure, where each execution trace that is analyzed is authenticated using the public key that corresponds to the private key associated with the atomic service that generated that execution trace.

Abstract: It is provided a method for managing a smart contract in real-time. The method is performed in a contract manager and comprises the steps of: obtaining a base version of the smart contract between the supplier and a first purchaser; recommending amendments to the base version of the smart contract, based on historic contract compliance data of the supplier, wherein the historic contract compliance data is based on smart contracts with the supplier and a plurality of purchasers; receiving a signal indicating an agreed smart contract between the first purchaser and the supplier; receiving a real-time monitoring signal relating to a compliance of the supplier in relation to at least one condition of a smart contract between the supplier and a second purchaser; and recommending amendments to the agreed smart contract, based on the monitoring signal.

Abstract: A first data center receives a request, from a tenant, to access a first service. Responsive to determining that the tenant is not associated with a delegation contract, the first data center records a delegation contract for the tenant. A second data center receives a request, from the tenant, to access a second service, where the second data center is physically separate from the first data center. Responsive to determining that the tenant is associated with the delegation contract recorded in the blockchain database, the second data center causes an update of the delegation contract in the blockchain database; causes the second service to provide access to the tenant; transmits, to the tenant, a confirmation that the second service can be accessed, and transmits an update to the first data center indicating that the delegation contract has been updated to include a second service offer.

Abstract: A method and a network node for managing access, by a device, to a blockchain. The network node receives, a first request for creation of a first account. The first request includes information relating to a user of the device and a first hash value. The network node creates, based on the information and the first hash value, the first account on the blockchain, whereby a first address is obtained. The network node receives, a second request for recovering account information of the first account. The second request includes the first address of the first account, a source value from which the first hash value is derived and a second address of a second account. The network node generates a second hash value based on the source value. The network node initiates transfer of the account information of the first account to the second account.

Abstract: Methods and systems are disclosed for managing cloud services using smart contracts to facilitate various functions, such as tenant login, tenant enrollment, service registration, tenant usage charging, tenant usage tracking, tenant quota management, and tenant rights revocation. The proposed techniques allow tenant and service accounts to be represented as smart contracts, and for services to delegate authorization for bundles of service attributes to tenants and other services, for which the tenants and services are then charged. The business logic is implemented on a permissioned, distributed ledger (e.g., a private blockchain) and therefore is easily customized for specific classes of tenants and services.

Abstract: Methods and systems for authorizing the access of a service are described. A server is operative to receive a request to subscribe to a service. The server is to receive from the requestor a selected service offer from the set of service offers, where the selected service offer is cryptographically signed with the private key of the requestor and the private key of the service. The server is further to record a delegation contract into a blockchain database, where the delegation contract includes an identification of the service, an identification of the requestor, and the service offer that is cryptographically signed with the private keys of the requestor and the service. The server is to transmit, to the requestor, a confirmation that the service can be accessed based on the selected service offer; and transmit to the service the delegation contract causing the service to provide access to the requestor.

Abstract: Provided is a method for managing a network slice instance (NSI) in a communications network. A first performance of the NSI is monitored by a first network slice subnet instance (NSSI) associated with the NSI. A first node obtains, from a second node, a request to monitor a second performance of the NSI. The second performance is of one or more microservices to provide data on a sector of the network. The first node determines, based on one or more requirements of the request, to perform one of: i) initiating (303) a creation of a second NSSI adapted to monitor the second performance based on the requirements, and ii) modifying, based on the requirements, an existing second NSSI, to monitor the second performance. The created or modified second NSSI being: a) independent from, and b) sharable with, the first subnet slice instance.

Abstract: A method and a network device in a cloud computing system, including a first blockchain component that is one of a plurality of blockchain components forming a blockchain system, of dynamic discovery of another blockchain component of the blockchain system are described. A multicast address including a multicast group identifier is generated. The multicast group identifier is generated at least in part based on a genesis block identifier that uniquely identifies a blockchain serviced by the blockchain system. The network device joins a multicast group identified by the multicast group identifier; and transmits a message destined to the multicast address, where the message includes a request for a unicast address of another component of the blockchain system.