Service-based security per subscription and/or equipment identifiers in mobile networks
First Claim
1. A system, comprising:
- a processor configured to;
monitor network traffic on a service provider network at a security platform to identify a new session, wherein the service provider network includes a 5G network or a converged 5G network, wherein the monitoring of the network traffic comprises to;
identify a create context request service operation or a create service operation in the network traffic;
extract subscription and/or equipment identifier information for user traffic associated with the new session at the security platform, comprising to;
parse HTTP/2 messages to extract the subscription and/or equipment identifier information from the create context request service operation or the create service operation in the network traffic, and wherein the subscription and/or equipment identifier information is identified by a Subscription Permanent Identifier (SUPI), a General Public Subscription Identifier (GPSI), and/or a Permanent Equipment Identifier (PEI); and
determine a security policy to apply at the security platform to the new session based on the subscription and/or equipment identifier information; and
a memory coupled to the processor and configured to provide the processor with instructions.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for providing service-based security per subscription and/or equipment identifiers in mobile networks (e.g., service provider networks for mobile subscribers) are disclosed. In some embodiments, a system/process/computer program product for service-based security per subscription and/or equipment identifiers in mobile networks in accordance with some embodiments includes monitoring network traffic on a service provider network at a security platform to identify a new session, wherein the service provider network includes a 5G network or a converged 5G network; extracting subscription and/or equipment identifier information for user traffic associated with the new session at the security platform; and determining a security policy to apply at the security platform to the new session based on the subscription and/or equipment identifier information.
29 Citations
16 Claims
-
1. A system, comprising:
-
a processor configured to; monitor network traffic on a service provider network at a security platform to identify a new session, wherein the service provider network includes a 5G network or a converged 5G network, wherein the monitoring of the network traffic comprises to; identify a create context request service operation or a create service operation in the network traffic; extract subscription and/or equipment identifier information for user traffic associated with the new session at the security platform, comprising to; parse HTTP/2 messages to extract the subscription and/or equipment identifier information from the create context request service operation or the create service operation in the network traffic, and wherein the subscription and/or equipment identifier information is identified by a Subscription Permanent Identifier (SUPI), a General Public Subscription Identifier (GPSI), and/or a Permanent Equipment Identifier (PEI); and determine a security policy to apply at the security platform to the new session based on the subscription and/or equipment identifier information; and a memory coupled to the processor and configured to provide the processor with instructions. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
monitoring network traffic on a service provider network at a security platform to identify a new session, wherein the service provider network includes a 5G network or a converged 5G network, wherein the monitoring of the network traffic comprises to; identifying a create context request service operation or a create service operation in the network traffic; extracting subscription and/or equipment identifier information for user traffic associated with the new session at the security platform, comprising to; parsing HTTP/2 messages to extract the subscription and/or equipment identifier information from the create context request service operation or the create service operation in the network traffic, and wherein the subscription and/or equipment identifier information is identified by a Subscription Permanent Identifier (SUPI), a General Public Subscription Identifier (GPSI), and/or a Permanent Equipment Identifier (PEI); and determining a security policy to apply at the security platform to the new session based on the subscription and/or equipment identifier information. - View Dependent Claims (13, 14)
-
-
15. A computer program product, the computer program product being embodied in a tangible computer readable storage medium and comprising computer instructions for:
-
monitoring network traffic on a service provider network at a security platform to identify a new session, wherein the service provider network includes a 5G network or a converged 5G network, wherein the monitoring of the network traffic comprises to; identifying a create context request service operation or a create service operation in the network traffic; extracting subscription and/or equipment identifier information for user traffic associated with the new session at the security platform, comprising to; parsing HTTP/2 messages to extract the subscription and/or equipment identifier information from the create context request service operation or the create service operation in the network traffic, and wherein the subscription and/or equipment identifier information is identified by a Subscription Permanent Identifier (SUPI), a General Public Subscription Identifier (GPSI), and/or a Permanent Equipment Identifier (PEI); and determining a security policy to apply at the security platform to the new session based on the subscription and/or equipment identifier information. - View Dependent Claims (16)
-
Specification