A user equipment for a mobile telecommunications system, including circuitry configured to: communicate with a non-public network authentication-authorization-accounting server and initiate a registration procedure with the mobile telecommunications system; and provide an authentication interface between the non-public network authentication-authorization-accounting server and an authentication server function entity in the mobile tele-communications system.

Various communication systems may benefit from appropriate security measures. For example, mobile networks may benefit from the flexible selection of security features. A method can include receiving an attach request. The method can also include sending a response to the request. The response can include information configured to allow selection of a control plane integrity algorithm independently of a user plane integrity algorithm.

In various embodiments, the techniques and supporting systems implement a recursive routing mechanism in hierarchical topological addressed environments to analyze and determine the presence of packet-forwarding errors within an IP network comprising a plurality of network-connected devices. This includes receiving, at a software defined network device, an indication of a potential packet-forwarding error between a first and second device of the plurality of network-connected devices and injecting, by the software defined network device, a test packet at an ingress to the first device. The test packet includes an initial ingress interface location identifying the first device, an alternate ingress interface location identifying the software defined network device and an egress interface location identifying the second device. A determination may then be made as to whether the test packet is received at the second device, thus indicating the existence or lack of routing errors.

A computer-implemented method, computer program product and computing system for: obtaining hardware performance information concerning hardware deployed within a computing platform; obtaining platform performance information concerning the operation of the computing platform; obtaining application performance information concerning one or more applications deployed within the computing platform; and generating a holistic platform report concerning the computing platform based, at least in part, upon the hardware performance information, the platform performance information and the application performance information.

A customer premises device may include a memory configured to store day 0 configuration instructions, a first network interface to couple to an out-of-band network, a second network interface operatively coupled to a customer network, and at least one processor configured to automatically and without user input execute the day 0 configuration instructions. The at least one processor is configured to establish and maintain a secure tunnel connection with a security gateway device via the out-of-band network and to establish a connection with a configuration platform on the provider network via the secure tunnel connection. Orchestration instructions for configuring one or more VNFs are received from the configuration platform via the tunnel connection. The at least one processor is further configured to receive VNF management instructions via the secure tunnel connection, wherein the VNF management instructions include one of: updates, reconfigurations, or patches.

The present invention relates to methods and apparatus for providing backhaul communications. An exemplary method embodiment includes the steps of: determining, by a first wireless base station of a first wireless network, whether a first backhaul connection path between the first wireless base station and a core network entity of a first service provider includes a communications link which is part of a second network being operated by a different service provider; determining, by the first wireless base station, data transmission latency between the first wireless base station and the core network entity using the first backhaul connection path; establishing, by the first wireless base station, a second backhaul connection path between the first wireless base station and the core network entity, said second backhaul connection including a wireless connection to a second wireless base station which is part of the first wireless network.

The present disclosure provides technical solutions related to distributed IPSec gateway. A control plane and a data plane of the IPSec gateway are divided, a plurality of gateway processing nodes may be run in the data plane to process data packets of incoming ESP/AR traffic and/or data packets of outgoing IP traffic. IKE information interaction may be handled in the control plane and the traffic may be steered on each gateway processing node in the data plane.

An internet end-user device includes a processor, a network interface controller; and a memory including instructions that, when executed by the one or more processors cause the end-user device to configure the end-user device to use a red network and perform dependency verification of the end-user device. A method includes configuring an end-user device to use a red network; and performing dependency verification of the end-user device. A non-transitory computer readable medium includes program instructions that when executed, cause an internet end-user device for use by end users to configure the end-user device to use a red network and perform dependency verification of the end-user device.

An electronic device connects to another electronic device using a communication link, such as a Wi-Fi link as provided by a Wi-Fi access point. The electronic device includes a transport monitoring module that monitors outgoing communications (e.g., Transmission Control Protocol (TCP) packets) from the electronic device. When the other electronic device disconnects from the Wi-Fi access point, the transport monitoring module determines that a transport anomaly has occurred. In response to determining that the transport anomaly has occurred, a probe module of the electronic device sends a probe (e.g., an Internet Protocol Security (IPSec) dead peer detection probe) to determine whether the other electronic device is reachable.

The present invention relates to methods and apparatus for providing backhaul communications. An exemplary method embodiment includes the steps of: determining, by a first wireless base station of a first wireless network, whether a first backhaul connection path between the first wireless base station and a core network entity of a first service provider includes a communications link which is part of a second network being operated by a different service provider; determining, by the first wireless base station, data transmission latency between the first wireless base station and the core network entity using the first backhaul connection path; establishing, by the first wireless base station, a second backhaul connection path between the first wireless base station and the core network entity, said second backhaul connection including a wireless connection to a second wireless base station which is part of the first wireless network.