Abstract: Various aspects of the present disclosure include methods, network servers or components and user equipment devices configured to authorize network slices that are associated with services provided by external providers. Various aspects enable access and use of network slices by user equipment devices connected to a network (e.g., 5G or New Radio network) via network components associated with a service provider by generating an allowed network slice selection assistance information (Allowed NSSAI) and an Unauthorized NSSAI, and sending the Allowed NSSAI and Unauthorized NSSAI to a user equipment device.

Abstract: Disclosed herein are user equipment (UE) configured to communicate with a vehicle-to-everything (V2X) control function (CF) and a V2X Key Management Function (KMF). The UE includes processing circuitry configured to select a broadcast service from a plurality of available broadcast services and encode a key request message for transmission to the V2X KMF. The key request message includes a service identification (ID) of the selected broadcast service and identification of V2X security techniques supported by the UE. A key response message received from the V2X KMF in response to the key request message is decoded. The key response message identifies a V2X security technique of the V2X security techniques. The identified V2X security technique is execute to obtain security credentials provisioned by the V2X KMF. Data is encoded for transmission to a second UE during the selected broadcast service, where the encoding is based on the provisioned security credentials.

Abstract: A method for the broadcasting of sound to persons (10, 20, 30) with mobile hearing systems (11, 21, 31) at a meeting with a speaker (1) and with an audiovisual system (2, 3, 4), the audiovisual system having a computer (2), a screen (3) and a microphone (4).

Abstract: A device for controlling a communication interface and a method therefor are provided. The device includes a communication interface, a memory, and a processor to control the communication interface and the memory. The memory may store instructions that, when executed by the processor, cause the processor to perform the operations of connecting with an electronic apparatus via the communication interface by using first data stored in the memory, receiving identification information of an access point from the electronic apparatus, connecting with the access point by using the identification information of the access point, connecting with a server by using the identification information of the access point, receiving second identification information of the electronic apparatus from the server and storing the received second identification information in the memory, and when disconnected from the access point, connecting with the electronic apparatus by using the second identification information.

Abstract: A wearable device is used to authenticate a user into a user account at a user device of the user. In particular, the wearable device may include a sensor configured to detect whether the wearable device is worn by or is with the user. If so, the wearable device may send a signal to the user device and the user device may authenticate the user based on the signal received from the wearable device. For example, when the sensor detects that the wearable device is worn by the user, the wearable device may send a unique signal periodically, such as every five seconds or every 10 seconds. Based on whether the unique signal from the wearable device is received, the user device may authenticate the user.

Abstract: An electronic device is provided to include a user interface, a communication circuitry that supports Bluetooth (BT) communication and store a first BT address, a processor operatively connected with the user interface and the communication circuitry, and a memory operatively connected with the processor.

Abstract: Non-pre-provisioned cellular Internet of things (IoT) devices can be added to an existing user's subscription with an operator and a service provider. The procedure can include obtaining a security association between a device and a user's smartphone using the operator's network. The operator and the service provider can verify the device with a certificate authority. In one embodiment, the smartphone reads (302) a URL pointer to the device certification and sends it (304) to the MME. The MME forwards (306) the URL to the HSS. The HSS verifies (312) the certificate and derives security credentials including the Master key K?. The HSS also derives another key K? used to establish security context between the IoT device and the smartphone. The device uses its key deriving function KDF with K? and Rand to generate K?.

Abstract: A method and system for identifying and mitigating interference caused by a rogue Light Fidelity (Li-Fi) access point in a Li-Fi communication network is disclosed. The method includes detecting interference caused by the rogue Li-Fi access point in a first set of Light Emitting Diodes (LEDs) from a plurality of LEDs within the Li-Fi access point. The plurality of LEDs is arranged in a predefined pattern within the Li-Fi access point, and wherein a coverage area associated with the Li-Fi access point is equally divided amongst the plurality of LEDs. The method further includes disabling data transmission from the first set of LEDs in response to detecting the interference. The method further includes enabling data transmission from a second set of LEDs from the plurality of LEDs. The second set of LEDs is unaffected by interference caused by the rogue Li-Fi access point.

Abstract: A system for validating an authorization request to facilitate controlling access to content or computer commands, in which the access is requested by multiple entities operated on discrete computing environments. The techniques make use of a system including a switchboard and a rule engine that collect parameter sets required for validation from the entities and dynamically generate a lock and key combination based on the collected parameter sets. The key of the lock and key combination allows the system to validate each entity independently regardless of the required parameters specified in the lock and key combination.

Abstract: A multi-access edge computing (MEC) node of a MEC network may receive, from a user device a first request to communicate via a peer-to-peer connection routed through a MEC network. The MEC node may identify one or more candidate devices that are available to communicate with the user device via the peer-to-peer connection. The MEC node may provide, to a particular candidate device of the one or more candidate devices, a second request to communicate via the peer-to-peer connection. The MEC node may receive, from the particular candidate device, an acceptance to communicate via the peer-to-peer connection. The MEC node may route data between the user device and the particular candidate device via the peer-to-peer connection.

Abstract: A communication terminal (10) according to the present disclosure includes: a control unit (12) configured to, in a case of a movement from a communication area formed by the 5GS to a communication area formed by the EPS or a movement from a communication area formed by the EPS to a communication area formed by the 5GS, determine whether or not a communication system forming a communication area at a movement destination can satisfy requirements of services; and a communication unit (11) configured to, when it is determined that the communication system forming the communication area at the movement destination can satisfy the requirements of the services, send a connection request message to the communication system forming the communication area at the movement destination.

Abstract: A communication device includes a modem and circuitry. The modem communicates with a cellular network that is linked to a data network to which one or more target servers are coupled. The circuitry is configured to hold a token that identifies the communication device for assignment to a selected service plan in a management server of the cellular network, to trigger, based on the token, an onboarding request to the management server for assigning the selected service plan to the communication device, and, after the selected service plan has been assigned to the communication device in the management server, to communicate with a target server, via the cellular network and over the data network, in accordance with the selected service plan.

Abstract: An endpoint computing device network slice certificate provisioning and management system includes a core network system that is coupled to a Radio Access Network (RAN) system and configured to allocate a plurality of a network slices and make each of the network slices available for use in wireless communications via the RAN system. An endpoint computing device is configured to establish a first network connection with a first network slice included in the plurality of network slices and perform, via certificate provisioning wireless communications over the first network connection with the first network slice, certificate provisioning operations to provision a certificate for the endpoint computing device. The endpoint computing device may then use the certificate to verify at least one server device to provide at least one verified server device, and perform secure network communications with the at least one verified server device.

Abstract: Implementations disclose a handoff feature for a content sharing platform. A method includes maintaining a session history of a session that occurred at a first client device, the session history identified by a visit identifier (ID) and comprising a set of recently-watched content items on a content sharing platform, determining that a user associated with the session is active on a second client device, transmitting, to the second client device, a session continuation notification associated with the visit ID and a navigation end-point of the session, receiving, from the second client device, a request for a watch page user interface (UI) of a content item corresponding to the navigation end-point of the session, and transmitting, to the second client device, instructions to load the watch page UI and to request additional components of the watch page UI using the visit ID.

Abstract: During a communication technique, an access point provides a message that includes one or more public land mobile network identifiers of one or more cellular-telephone networks that are supported by the access point. Then, an electronic device, which received the message, provides a candidate list specifying one or more access points that support communication with a cellular telephone network to a radio node that is associated with this cellular-telephone network. By communicating with a wireless-local-area-network (WLAN) controller, the radio node validates the one or more access points, and selects a target access point based on performance feedback from the WLAN controller. Next, the radio node instructs the electronic device to associate with the target access point. Moreover, the radio node and the target access point establish a secure-communication pathway, which allows the radio node to communicate data to the electronic device via the access point using an LTE Wi-Fi aggregation protocol.

Abstract: A wireless telecommunication system comprises a base station and a terminal device (UE). The UE is configured to determine its mobility status and an associated reliability, e.g. an indication of the extent to which the UE is moving and the confidence in this determination. In some cases the reliability may be based on how the UE determined its mobility status. For example, if the UE determined itself to be of relatively low mobility because it has an internal configuration setting indicating it is deployed in a fixed position, the reliability of this mobility status may be considered to be greater than if the UE determined itself to be of relatively low mobility because it has not recently undergone many base station handovers. The UE is configured to convey an indication of the mobility status and the reliability to the base station.

Abstract: Techniques are provided to automatically generate and apply policy rules for IoT devices. Historical data associated with IoT behaviors is obtained, where the historical data describes the file systems and behavior trends for multiple different IoT devices. Groups of the IoT devices are generated by grouping together devices identified as being common with one another based on similarities between their identified behaviors. Policies are then automatically generated for each group, corresponding to the detected behavior trends. Each policy determines how to subsequently monitor any device categorized as belonging to that policy's group and also how to respond when a device is operating abnormally. After a device is characterized as belonging to a group, that device is monitored to determine whether it conforms with the group's policy. Optionally, mitigation operations may be performed when the device is non-conforming.

Abstract: A Fifth Generation Core (5GC) Long Term Evolution (LTE) network authenticates a wireless User Equipment (UE) for LTE data service using a 5GC Subscriber Concealed Identifier (SUCI). A Mobility Management Entity (MME) receives the 5GC SUCI and transfers the 5GC SUCI to a 5GC authentication system. The 5GC authentication system determines a 5GC Subscriber Permanent Identifier (SUPI) and authentication vector based on the 5GC SUCI. The 5GC authentication system transfers the 5GC SUPI and the 5GC authentication vector to the MME. The MME exchanges 5GC authentication data with the UE. The MME authenticates the UE based on the 5GC authentication vector and the 5GC authentication data. In response to the 5GC authentication, the MME initiates the LTE data service for the UE based on the 5GC SUPI.

Abstract: Systems and techniques enable an improved network selection procedure. Providers maintain preferred networks lists provisioned to UEs. The preferred networks lists include WLAN RATs, and for each entry coverage area and type of supported services. UEs include multiple credentials for connectivity via providers and potentially multiple transceivers supporting multiple active services. A UE triggers a network selection procedure whenever a new service is initiated. A credential is selected. The UE builds a list of network/RAT combinations from preferred networks lists and filters this list, removing entries that do not support the new service. The UE takes the context of the UE into consideration, further filtering the list. The remaining entries are scanned and a network/RAT combination selected. The UE determines whether registering with the selected network/RAT combination causes an interruption to an ongoing service. If not, the UE registers on the selection.

Abstract: Methods, systems, and devices for controlling mesh network devices are described. The method includes receiving, by an automation device, a first message from a control device, adding, by the automation device, the identifier of the first user device to a priority list of the automation device based on receiving the first message, and controlling, by the automation device, access to operations of the automation device based on the identifier in the priority list after adding the identifier of the first user device. In some cases, the first message includes an identifier of a first user device and an add command.

Abstract: In one example, a server obtains, from a device having an embedded Subscriber Identification Module (eSIM), a unique identifier of the eSIM. The server validates the device based on the unique identifier of the eSIM. The server provides, to the device, a unique credential for a profile of the eSIM. The profile of the eSIM corresponds to a network of an enterprise. The server provides, to a credential database, the unique credential for the profile of the eSIM. The credential database including the unique credential for the profile of the eSIM indicates that the device is permitted to access the network of the enterprise.

Abstract: A method for updating a key in an active state is disclosed according to the embodiments of the present invention. The method includes steps of: initiating a key update by a user equipment in the active state or a network side when a pre-defined condition is met; updating the key by the network side and the user equipment, and negotiating an activation time of the new keys. An apparatus for updating a key in an active state is also disclosed according to the present invention. With the present invention, the user equipment in an active state and the network side may actively initiate the key update procedure in different cases, thereby solving the problem concerning the key update for a session in an active state.

Abstract: A communication system has first terminal and second terminals, and a relay server that relays communication between the first and second terminals. When a login request is received including authentication information from the first terminal, the relay server associates and stores, in a storage, identification information of the first terminal corresponding to the authentication information and access information for accessing the relay server; and sends the access information to the first terminal. When a login request has been received including authentication information from the second terminal, the relay server sends to the second terminal the access information specified based on the identification information of the first terminal sent from the second terminal and information stored in the storage, and relays communication between the first and second terminals based on the access information.

Abstract: Disclosed are systems and methods for passively authenticating users of a native application running on a mobile communications device. The user may be applying for a service, product, access, etc. from a provider computing system. A unique device identifier of the device may be acquired and provided to a first computing system. A mobile telephone number associated with the device may be received at the device. User information may be accepted from the user via a user interface of the device for entry into a set of fields. The mobile telephone number may be verified by determining, via a second computing system that is different from the first computing system, that the mobile telephone number is associated with the user information. The service/product/access for the user may be approved in response to verification of the mobile telephone number. The user may be authenticated without challenge questions.

Abstract: A communication method and related device are disclosed. In at least one embodiment, a reference message authentication code is obtained by a terminal device based on a first message authentication code and a second message authentication code. The first message authentication code is used by an AMF to check a service request message, and the second message authentication code is used by an SMF to check the service request message. and sending, by the terminal device, first information and the service request message are sent by the terminal device to the AMF. The first information is used to instruct the AMF to send the service request message to the SMF. The service request message includes second information. The second information includes the reference message authentication code. The SMF can perform a security check on the service request message to ensure security of a communications network.

Abstract: The present disclosure provides a network access method, a smart device, a mobile terminal, a cloud server, a networking gateway and a network access system. The method is applied to a smart device and includes: sending relevant network access information to a mobile terminal, the relevant network access information being uploaded to a cloud server by the mobile terminal; receiving a unique network identifier ID from the mobile terminal, and establishing a communication link with a networking gateway via the unique network identifier ID, wherein the unique network identifier ID is acquired by the cloud server from the networking gateway and transferred from the cloud server to the mobile terminal; and sending network access identity information to the networking gateway via the communication link, and joining a network created by the networking gateway after the network access identity information passes verification of the networking gateway.

Abstract: An authentication system communicatively coupled to an electronic device stores registration information comprising associations between fingerprints and graphics. The authentication system presents a fingerprint-based personal identification pattern (FPIP) on a user interface communicatively coupled to the authentication system. The authentication system records a sequence of fingerprints and compares the sequence of fingerprints to the FPIP using the registration information. The authentication system executes a functionality associated with electronic device in response to matching the sequence of fingerprints to the FPIP according to the registration information.

Abstract: Systems, methods, and/or techniques for transferring ownership or rolling-over machine-to-machine (M2M) and/or internet of things (IoT) devices from a first owner to a second owner may be disclosed. For example, at a M2M and/or IoT device, a roll-over token and/or a message with the roll-over token may be received. The roll-over token may be configured to be used to transfer ownership and/or update credentials, and/or the roll-over token may be configured to be requested by a first device management server (DMS) associated with the first owner and/or may be generated by a reset server (RS), for example, in response to the request by the first DMS. A validity of the roll-over token may be checked or determined.

Abstract: In one embodiment, a network node of a multi-hop wireless network may receive, from a network management system associated with the multi-hop wireless network, a request for identifying information associated with the network node. The network node may then send, responsive to the request for identifying information, to the network management system, registration information associated with the network node, wherein the registration information includes cipher text encoded with a public key, wherein the encoded cipher text is configured to be decoded with a private key, and wherein the encoded cipher text includes a MAC address and an identifier assigned to the network node.

Abstract: Provided is a method for a terminal for carrying out access control according to one disclosure of the present specification. The method may comprise the steps of: an access stratum (AS) layer of the terminal transmitting, to a base station, a radio resource control (RRC) message comprising one or more from among an access category, call type, and setup reason if the determination is for no disconnection to occur as a result of carrying out a termination test for access control; and receiving an RRC reject message or RRC connection drop message from the base station if the network is overloaded or congested. One or more from among the access category, call type, and setup reason included in the RRC message can be utilized to determine whether the base station is to transmit the RRC reject message or RRC connection drop message when the network is overloaded or congested.

Abstract: The method of securing secure communication between a User Equipment (UE) and evolved NodeB (eNB), involves deriving a user plane (UP) encryption key (KUPenc) from a shared key (KeNB) associated with the UE for an ongoing communication session. At the UE, the UP encryption key (KUPenc) may be hashed with a number of random numbers to generate a plurality UP encryption keys(KUPenc(n)), wherein the random numbers are transmitted to the eNB through a Packet Data Convergence Protocol (PDCP) control message. One or more data packets sent from the UE to the eNB may be encrypted, by the UE, using the plurality of UP encryption keys (KUPenc(n)).

Abstract: Various aspects of the present disclosure generally relate to wireless communication. In some aspects, a user equipment (UE) may receive a message that indicates a change from an evolved universal mobile telecommunications system (UMTS) terrestrial radio access (E-UTRA) packet data convergence protocol (PDCP) to a New Radio (NR) PDCP, wherein the message includes an instruction to perform an intra-cell handover; generate one or more security keys based at least in part on receiving the message that includes the instruction to perform the intra-cell handover; and communicate using the one or more security keys after the intra-cell handover is performed. Numerous other aspects are provided.

Abstract: A permissioned blockchain can be a decentralized data store that maintains information indicating whether user equipment (UE) is SIM locked and/or should be disabled. A UE can access the blockchain during boot up to determine if it should be disabled and not booted into a normal operating environment, and/or whether it is SIM locked to a particular carrier. Authorized entities, such as carriers and UE manufacturers, can update the blockchain to indicate that certain UEs should be disabled, are SIM locked, are not SIM locked, and/or whether it is permissible to remove SIM locks from those UEs.

Abstract: Wireless pairing is automatically performed based on a purchase of a wireless product. When the wireless product is purchased, a unique product identifier and/or an account number (such as a credit card number) may be used to obtain one or more corresponding wireless network security credentials. Once the wireless network security credentials are identified, the wireless product may be paired to a wireless network based on the wireless network security credentials.

Abstract: Aspects of the subject disclosure may include, for example, storing subscription utilization information in the memory where the subscription utilization information is indicative of a history of subscription usage by the device and where registration information associated with a group of subscription agreements is stored in the memory, receiving location information from the device processor where the location information indicates a location of the device, and selecting a target subscription agreement from among the group of subscription agreements according to the history of subscription usage and the location information. Other embodiments are disclosed.

Abstract: Certain features relate to configuring a distributed antenna system (“DAS”) to interface with and manage components of facility control and monitoring systems while providing wireless communications in a cellular or public safety network. A communications module is configured for receiving facility control signals from facility control and monitoring centers and associated nodes and sensors. A signal processing module is configured to convert the facility control signals a format transportable in the DAS. The signal processing module is also configured to multiplex the facility control signals with mobile voice and data signals being transported in the DAS. The DAS configured to manage components of facility control and monitoring systems can route facility control signals to appropriate facility control centers or the nodes and sensors associated with the facility control centers.

Abstract: There is provided an electronic device for managing functionality of applications. The device including a processor which detects an input with respect to a graphical element displayed on a display of the electronic device, the graphical element representing a first application, generates at least one sub-graphical element from the graphical element, the at least one sub-graphical element representing a functional data item associated with the first application and controls the display to display the at least one sub-graphical element.

Abstract: A method of assembling a vehicular camera module includes providing a metal front housing having (i) a front portion, (ii) a rear portion opposite the front portion and (iii) a plurality of side walls extending between the front portion and the rear portion. A printed circuit board is disposed in a cavity of the metal front housing, and a lens holder is attached at the front portion of the metal front housing so that the lens is optically aligned with an imager of the printed circuit board. A metal rear housing has a connector portion having a coaxial connecting element. With the metal rear housing joined with the rear portion of the metal front housing, an inner portion of the coaxial connecting element extends inward into the cavity of the metal front housing and an outer portion of the coaxial connecting element extends outward from the metal rear housing.

Abstract: An apparatus for implementing a minimum toggle rate guarantee may comprise first, second, and third circuitries. The first circuitry may calculate a sequence of values for an internal bus inversion signal based upon a sequence of values for a plurality of internal Input/Output (IO) signals. The second circuitry may establish a sequence of values for an external bus inversion signal by selecting between the sequence of values for the internal bus inversion signal and a sequence of substantially random values. The third circuitry may set the values for a plurality of external IO signals to inverted values of the plurality of internal signals when respectively corresponding sequence of values for the external bus inversion signal have a first value, and to values of the plurality of internal signals when respectively corresponding sequence of values for the external bus inversion signal have a second value.

Abstract: Systems, methods and devices for provisioning a computerized device(s). The system may include a distributor computer that is connected to the computerized device, and is operable to receive a digital asset and transmit it to the device. The system may include a digital asset management server that is connected to the distributor computer, and is operable to transmit the digital asset to the distributor computer, and a provisioning controller that is connected to the distributor computer and the digital asset management server, and is operable to cause transmission of the digital asset to the distributor computer. The system can include a second distributor computer that is connected to the digital asset management server and the device (e.g., at a later time), and that receives a second digital asset and transmits it to the device, wherein the second digital asset causes the device to become partially or fully functional.

Abstract: The apparatus determines whether a subscriber identification module (SIM) card is a first network SIM card or a second network SIM card. The apparatus performs an unlock sequence for personalization based on a subscriber permanent identifier (SUPI) if the SIM card is determined to be a first network SIM card. The unlock sequence may include determining whether a SUPI of the first network SIM card matches with a SUPI stored in a secure file system (SFS) at the UE. The unlock sequence may further include initializing the UE to a network if the SUPI of the first network SIM card matches with the SUPI stored in the SFS at the UE.

Abstract: According to one or more embodiments described herein, a computer-implemented method includes detecting a trigger event occurring at a physical space. The method further includes generating, by the processing system, a temporary network and a temporary authorization code to permit access to the physical space based at least in part on an analysis of information associated with the detected trigger event. The method further includes transmitting, by the processing system, information about the temporary network and the temporary authorization code to a second processing system. The method further includes implementing, by the processing system, an automation routine responsive to detecting the trigger event.

Abstract: Systems and methods for determining an instant messaging (IM) status of a user wearing a smart watch are disclosed. A computing device includes: a processor; a memory; and sensors including at least one biometric sensor, at least one location sensor, and at least one orientation sensor. The memory stores a status application that is executed by the processor and is configured to: obtain real time data from at least one of the sensors; determine an instant messaging (IM) status based on the real time data; and transmit the IM status to a server for providing to other IM users.

Abstract: An eSIM-based card pool system is disclosed, the system comprising: a card pool unit comprising a plurality of eSIMs; an eSIM manager, comprising a database that stores corresponding relationships between a plurality of eSIM identifications and a plurality of eSIM addresses; and a connection manager, configured to request a first eSIM address from the eSIM manager based on a received download instruction, and write a specified eSIM profile into a first eSIM having the first eSIM address.

Abstract: A method and user equipment are provided. The method includes initiating a circuit-switched (CS) connection establishment procedure by transmitting a connection management (CM) service request message to a core network (CN). Mobility management (MM) connection establishment is aborted in response to failing to receive a CM service acceptance message within a time period. In response to subsequently receiving a CM service acceptance message after aborting the MM connection establishment, a circuit-switched (CS) signaling connection release action is performed.

Abstract: Described embodiments include a system and method. A system includes a tracking circuit configured to determine a location of a target device within a Fresnel region of an electronically reconfigurable beam-forming antenna. The antenna is configured to implement at least two selectable focused electromagnetic beams within its Fresnel region. The system includes a beam selector circuit configured to select from the at least two selectable focused electromagnetic beams a focused electromagnetic beam having a focal spot that covers at least a portion of the determined location of the target device. The system includes a beam definition circuit configured to determine an electromagnetic field distribution over an aperture of the electronically reconfigurable beam-forming antenna implementing the selected focused electromagnetic beam. The system includes an output circuit configured to transmit a signal indicative of the determined electromagnetic field distribution.

Abstract: A method for providing data to a user comprising communicating, from a radio access network to a Minimization of Drive Tests (“MDT”)-channel-communicative sensor device, at least one MDT signal selected from the group consisting of an MDT configuration signal and an MDT control signal. The method also comprises generating, at least in part in response to the MDT signal and using an onboard sensor of the MDT-channel-communicative sensor device, sensor data comprising non-MDT data. The method also comprises receiving at least a portion of the sensor data into the radio access network over an MDT channel and communicating at least the portion of the sensor data from the radio access network to the user.

Abstract: Apparatus and methods are disclosed for client-based control of revising caller identifications (IDs) for communications between a private network and a public network. An apparatus including a communications provider server and processing circuit that communicates client-specific sets of data over an interface protocol. The telecommunications-providing server revises a caller ID for a VoIP call based on the client-specific sets of data, an identifier that corresponds to a requesting endpoint, and a geographic region determined from the call request. Further, the telecommunications-providing server connects the VoIP call by accessing and passing a provisioned VoIP number. The provisioned VoIP includes the revised caller ID which is a local number identified by the determined geographic region that the endpoint is located.

Abstract: A method for integrating an email system based on Internet of Things Enabled Email Address (IoTEEA) with IoT devices to establish a standard. According to embodiments of the invention, a method for creating an email account, installing IoTEEA into the IoT device memory, connecting the IoT device to the email account by the information from IoTEEA, using IoTEEA to claim the ownership of the IoT device, gathering data, encrypting the data, and sending the data to the email account sub folder by the IoT device, decrypting the data by the IoTEEA owner, analyzing the data, providing controller, transferring the ownership of the IoT device to another owner from the email account, and making minimal configuration as Plug and Play.

Abstract: The present disclosure relates to mobile communications technologies, and in particular, to a mobile communication method, apparatus, and device. The method includes receiving, by user equipment (UE), a non-access stratum (NAS) security mode command message from a mobility management entity (MME), where the NAS security mode command message carries first verification matching information used to verify UE capability information received by the MME, determining, by the UE based on the first verification matching information, whether the UE capability information received by the MME is consistent with UE capability information sent by the UE to the MME, and, if the UE capability information received by the MME is consistent with the UE capability information sent by the UE to the MME, sending, by the UE, a NAS security mode complete message to the MME.