Abstract: A method and apparatus for supporting artificial intelligence/machine learning (AI/ML) operating are provided herein. A network node may receive a request to subscribe for notifications indicating consent provided by one or more wireless transmit receive units (WTRUs) to AIML operation supporting service enhancement. The network node may receive a registration request message including an indication that the WTRU provides consent to AI/ML operation supporting at least one type of service enhancement, and a service capability container indicating one or more service capabilities of the WTRU. The network node may send a registration response message indicating that a consent status associated with the WTRU is active for one or more applications. The network node may send a notification message indicating consent provided by the randomly selected WTRU to AI/ML operation supporting service enhancement for at least one of the one or more applications.

Abstract: Systems, methods, and instrumentalities may be provided for application context relocation (ACR) selection and/or coordination. Configuration information associated with one or more of a first network node, a second network node, and an application client (AC) may be received. The first network node and the second network node may be determined using the configuration information. The second network node may provide a service and may be associated with the first network node. One or more application context relocation (ACR) procedures for providing continuity for the service may be determined. These procedures may be based on a WTRU capability, a first network node capability, and a second network node capability. A selection request message may be sent to the first network node. The selection request message indicates an identifier for the second network node, a WTRU identifier, and the determined one or more ACR procedures. A selection response message may be received from the first network node.

Abstract: Methods, protocols, systems and apparatus for the detection of violations of privacy rules for intermediate models in federated learning applications are described. One method may include receiving, from a network entity, a federated learning intermediate model, training the federated learning intermediate model using a training data set unique to the WTRU to generate a trained federated learning intermediate model, and determining, based on one more rules associated with a location of the WTRU, whether any one or more of the trained federated learning intermediate model and the training data set indicate one or more privacy violations. Based on whether any one or more of the trained federated learning intermediate model and the training data set indicate one or more privacy violations, the method may include transmitting a message or information to the network entity.

Abstract: Methods and apparatus for supporting artificial intelligence and machine learning operations in a 3GPP communication network are provided. A method may include receiving, by a WTRU, an indication of requirements and/or constraints associated with one or more WTRU applications. Based on the requirements and/or constraints associated with the one or more WTRU applications, the method may include determining one or more machine learning (ML) based analytics, data, and/or predictions to request from a network and/or internal WTRU ML modules. The method may then include transmitting, to the network and/or the internal WTRU ML modules, a request or subscription for the one or more ML based analytics, data, and/or predictions, and receiving a response or notification of the one or more ML based analytics, data, and/or predictions from the network and/or the internal WTRU ML modules.

Abstract: A network node may receive a message indicating one or more analytics parameters to be provided to a wireless transmit/receive unit (WTRU). The information may indicate a method for the network to provide the analytics information to the WTRU. The network node may determine whether to send the analytics information to the WTRU via a control plane or a user plane based on a reporting mode indicated in the message. The network node may send the analytics information to the WTRU via the control plane using a non-access stratum message if the network node determines to send the analytics information via the control plane. The network node may send the analytics information to the WTRU via one or more of a user plane function or an application function if the network node determines to send the analytics information via the user plane.

Abstract: The disclosure pertains to methods and apparatus for federated learning (FL) artificial intelligence machine learning (AIML) implemented in a first security entity associated with a Wireless Transmit/Receive Unit (WTRU), the method comprising: obtaining, by the first security entity, first information indicating security assessment data of the WTRU in a federated learning network; determining, by the first security entity, based on the security assessment data, an indication of a security vulnerability of a trained FL AIML intermediate model; sending based on the determined indication of the security vulnerability, by the first security entity to a second security entity associated with a network node, second information indicating the trained FL AIML intermediate model; and sending, by the first security entity to the network node, third information associated with a training of the trained FL AIML.

Abstract: A method implemented in a Wireless Transmit Receive Unit (WTRU) for controlling resource usage associated with delivery of training results for a machine learning (ML) operation includes receiving one-way packet delay measurements between the WTRU and an Application Server or Application Function (AS/AF), predicting one or more upcoming one-way packet delays using the one-way packet delay measurements, determining whether the WTRU is capable of processing and delivering training results of the ML operation to the AS/AF within a specified time period based on the predicted upcoming one-way packet delays, and initiating one of a packet data unit session (PDU) release procedure or a PDU session modification procedure.

Abstract: A WTRU may send a registration message to a first network node. The registration message may indicate a capability to perform a network performance prediction and may comprise information indicating AI operation types. The first network node which may determine whether the WTRU is permitted to request network performance prediction information. If the WTRU is permitted, the WTRU may send a packet data unit (PDU) session message that indicates a request to subscribe to network analytics associated with the AI operation types. A second network node may receive the PDU session message and may send a subscription message to a third network node. The subscription message may comprise, for example, the AI operation types. The second network node may receive a notification message that indicates information associated with the network analytics. The second network node may send to the WTRU a message indicating the information associated with the network analytics.

Abstract: In one or more embodiments, one or more devices, systems, and/or methods may address solutions and/or innovations for 5G System edge computing, edge applications, and/or other wireless systems. For example, one or more of the following techniques may be used to address shared-application vertical-session-based edge-application-instance discovery and selection: there may be an application vertical-session identifier; one or more application-vertical-session-based EAS registration, discovery, and selection procedures; application-vertical-session-based EDN/EES provisioning; and/or, application-vertical-session management.

Abstract: Procedures, methods, architectures, apparatuses, systems, devices, and computer program products directed to real-time quality of service (QOS) monitoring and prediction are described. A first QoS monitoring request indicating one or more WTRUs may be received from a server. A second QoS monitoring request may be sent, the second QoS monitoring request indicating a session to be monitored by a WTRU of the one or more WTRUS. A QOS monitoring response may be received, the QoS monitoring response indicating (i) the session to be monitored and (ii) performance measurement information associated with the session to be monitored. First performance measurement assistance information may be sent, based on the performance measurement information associated with the session to be monitored, and QoS report information may be received, the QoS report information indicating one or more Qos metrics measured by the WTRU in the session.

Abstract: A wireless transmit/receive unit (WTRU) may send a discovery request to a first edge enabler server (EES) instance to obtain edge application server (EAS) information. The WTRU may receive a discovery response from the first EES instance. The discovery response may indicate a list of EAS information and/or registrar EES information for one or more EAS instances in the list of EAS information. The WTRU may select an EAS instance based on one or more of the list of EAS information or the registrar EES information for the one or more EAS instances. A second EES instance of the plurality of EES instances may be the registrar EES of the selected EAS instance.

Abstract: Systems, methods, and instrumentalities are disclosed for service provisioning and providing access to a PALS hosting network. In examples, a WTRU may send a first message to a first network node if a configuration failure event is detected, wherein the first network node is associated with a first network, wherein the configuration failure event is associated with a second network, and wherein the first message indicates an update request for a network configuration for a local service. The WTRU may receive a second message from the first network node, wherein the second message indicates a response to the update request, indicates an updated network configuration, and indicates a slice identifier associated with the second network The WTRU may receive a third message from the first network node, wherein the third message indicates policy information associated with the local service.

Abstract: Procedures, methods, architectures, apparatuses, systems, devices, and computer program products for concealing a subscription identifier. The subscription identifier may be padded with a random number of characters. The padding may use characters not usable for the subscription identifier. The padded subscription identifier may be encrypted and output, possibly with an indication of the padding method used and, in an embodiment, an indication of the number of padding characters. The subscription identifier may be a user identifier, e.g., in a 5G network in which a wireless transmit/receive unit can conceal its identifier.

Abstract: A wireless transmit/receive unit (WTRU) may send a discovery request to a first edge enabler server (EES) instance to obtain edge application server (EAS) information. The WTRU may receive a discovery response from the first EES instance. The discovery response may indicate a list of EAS information and/or registrar EES information for one or more EAS instances in the list of EAS information. The WTRU may select an EAS instance based on one or more of the list of EAS information or the registrar EES information for the one or more EAS instances. A second EES instance of the plurality of EES instances may be the registrar EES of the selected EAS instance.

Abstract: A relay WTRU may receive, from a remote WTRU, a request for connection that includes a PRUK ID. The relay WTRU may transmit, to a PKMF associated with the relay WTRU, a key request message that includes the PRUK ID. The relay WTRU may receive, from the PKMF associated with the relay WTRU, a key response message that includes a GPI. The relay WTRU may transmit, to the remote WTRU, a direct security mode command message that includes the GPI. The relay WTRU may receive, from the remote WTRU, a direct security mode complete message. The relay WTRU may transmit, to the PKMF associated with the relay WTRU, a PRUK confirmation message. The relay WTRU, may receive, from the PKMF associated with the relay WTRU, an acknowledgement that the PRUK confirmation message was received, and transmit, to the second WTRU, an acceptance of the request for connection.

Abstract: Serving network authentication and validation by a UE includes encrypting an identifier associated with the UE using a first instance of a public key associated with a serving network to which the UE is attempting to gain access; transmitting the identifier to the serving network; receiving from the serving network an authentication vector containing a second instance of the public key, the second instance of the public key having been encrypted using a key shared by the UE and a home network associated with the UE; decrypting the second instance of the public key using the key shared by the UE and the home network; comparing the first instance of the public key to the second instance of the public key; and when the first instance and the second instance are the same, determining that the home network has authenticated the serving network.

Abstract: Serving network authentication and validation by a UE includes encrypting an identifier associated with the UE using a first instance of a public key associated with a serving network to which the UE is attempting to gain access; transmitting the identifier to the serving network; receiving from the serving network an authentication vector containing a second instance of the public key, the second instance of the public key having been encrypted using a key shared by the UE and a home network associated with the UE; decrypting the second instance of the public key using the key shared by the UE and the home network; comparing the first instance of the public key to the second instance of the public key; and when the first instance and the second instance are the same, determining that the home network has authenticated the serving network.

Abstract: A system and method of improving anomaly detection rate in a communication network. A server computer may receive a data set comprising traffic flows communicated over the communication network and group the traffic flows into data categories based on the type of network service such as transport control protocol (TCP) port numbers or User Datagram Protocol (UDP) port numbers of the traffic flows, or based on application layer protocols associated with the traffic flows. The server computer may further detect anomalies in each of the data categories based on inconsistencies between at least one common feature associated with a data category and traffic flows in the data category. Different data categories may be associated with different the at least one common feature. The anomaly detection may be supervised or unsupervised.

Abstract: A method for establishing a trust relationship in an ultra dense network is provided. The method comprises receiving, by a user equipment (UE), a reconfiguration request from a macrocell; deriving, by the UE, a user plane encryption key according to information in the reconfiguration request; transmitting, by the UE, a first user plane signaling message to a first microcell in a group of microcells when the UE is attached to the first microcell; and transmitting, by the UE, a second user plane signaling message to a second microcell in the group of microcells when the UE is attached to the second microcell, wherein the first user plane signaling message and the second user plane signaling message are both encrypted according to the user plane encryption key.

Abstract: A method for establishing a trust relationship in an ultra dense network is provided. The method comprises receiving, by a user equipment (UE), a reconfiguration request from a macrocell; deriving, by the UE, a user plane encryption key according to information in the reconfiguration request; transmitting, by the UE, a first user plane signaling message to a first microcell in a group of microcells when the UE is attached to the first microcell; and transmitting, by the UE, a second user plane signaling message to a second microcell in the group of microcells when the UE is attached to the second microcell, wherein the first user plane signaling message and the second user plane signaling message are both encrypted according to the user plane encryption key.