The present disclosure proposes network elements, methods at the network elements for facilitating reuse of IP address, a telecommunications system comprising the network elements. The method at a first network element for facilitating reuse of an IP address at multiple UEs comprising a first UE comprises: transmitting, to a second network element, a first request message associated with the first UE, the first request message comprising the IP address and a first indicator which, in conjunction with the IP address, uniquely identifies the first UE.

The present disclosure proposes network elements, methods at the network elements for facilitating reuse of IP address, a telecommunications system comprising the network elements. The method at a first network element for facilitating reuse of an IP address at multiple UEs comprising a first UE comprises: transmitting, to a second network element, a first request message associated with the first UE, the first request message comprising the IP address and a first indicator which, in conjunction with the IP address, uniquely identifies the first UE.

A system and method for generating and representing a consolidated resolution tree of a network are provided. The method includes receiving a target fully qualified domain name (FQDN); creating at least one tentative equivalence class (TEC) containing all the internet root domain name servers (DNS); processing the at least one TEC to determine respective consolidated edges and vertices; retrieving nameservers from domain registration records; determining whether additional TECs are to be generated for the retrieved nameserver(s); processing all new TECs to determine respective consolidated edges and vertices, when it is determined that new TECs are to be generated; and generating a resolution tree for display based on the consolidated edges and vertices.

A system and method for generating and representing a consolidated resolution tree of a network are provided. The method includes receiving a target fully qualified domain name (FQDN); creating at least one tentative equivalence class (TEC) containing all the internet root domain name servers (DNS); processing the at least one TEC to determine respective consolidated edges and vertices; retrieving nameservers from domain registration records; determining whether additional TECs are to be generated for the retrieved nameserver(s); processing all new TECs to determine respective consolidated edges and vertices, when it is determined that new TECs are to be generated; and generating a resolution tree for display based on the consolidated edges and vertices.

A network operator can partition network elements, including elements of an IP Multimedia Subsystem (IMS) or Policy and Charging Rules Functions (PCRFs) into groups reserved for specific types of subscribers. When a user equipment (UE) registers with an IMS, elements of the IMS can contact a Home Subscriber Server (HSS) to determine a subscriber type associated with the UE. Based on the UE's subscriber type, an IMS element can determine an application server or other IMS element to contact about the UE based on identifying application servers or IMS elements that are also associated with the same subscriber type as the UE. Similarly, an IMS element can determine a PCRF to contact about the UE based on identifying a PCRF that is associated with the same subscriber type as the UE.

A network operator can partition network elements, including elements of an IP Multimedia Subsystem (IMS) or Policy and Charging Rules Functions (PCRFs) into groups reserved for specific types of subscribers. When a user equipment (UE) registers with an IMS, elements of the IMS can contact a Home Subscriber Server (HSS) to determine a subscriber type associated with the UE. Based on the UE's subscriber type, an IMS element can determine an application server or other IMS element to contact about the UE based on identifying application servers or IMS elements that are also associated with the same subscriber type as the UE. Similarly, an IMS element can determine a PCRF to contact about the UE based on identifying a PCRF that is associated with the same subscriber type as the UE.

A network controller configured to provide network access to client devices, receives a network access request from a client device. The network access request includes a media access control (MAC) address of the client device and information about a first private key. The network controller sends to a server an authentication request, which includes the MAC address of the client device. The network controller receives an authentication response from the server, which includes a second private key. The network controller determines whether the first private key is the same as the second private key. In response to determining that the first private key is different from the second private key, network access is denied to the client device, and in response to determining that the first private key is the same as the second private key, network access is granted to the client device.

A network controller configured to provide network access to client devices, receives a network access request from a client device. The network access request includes a media access control (MAC) address of the client device and information about a first private key. The network controller sends to a server an authentication request, which includes the MAC address of the client device. The network controller receives an authentication response from the server, which includes a second private key. The network controller determines whether the first private key is the same as the second private key. In response to determining that the first private key is different from the second private key, network access is denied to the client device, and in response to determining that the first private key is the same as the second private key, network access is granted to the client device.

This application provides a key distribution method, an apparatus, and a system, includes: determining, by an identity management server based on AAA authentication information, whether AAA authentication on the terminal succeeds; if the AAA authentication succeeds, sending the ID of the terminal to a key management server; and generating, by the key management server, a private key of the terminal and returning the private key to the management server. After negotiating with the terminal to generate a first key, the identity management server encrypts the ID and the private key of the terminal, and sends an encrypted ID and an encrypted private key to the terminal. The terminal obtains the ID and the private key of the terminal. According to the key distribution method, apparatus, and system provided in this application, communication security performance of the terminal during ID-based registration authentication is improved.

At a core system of a carrier, obtain, from a carrier application on a mobile device of a subscriber of the carrier, a registration request including a unique internet protocol address of the mobile device and a public key generated by the carrier application from an application certificate of the carrier application. Based on the unique internet protocol address, the core system accesses a database record to retrieve a unique application identifier corresponding to the unique internet protocol address of the mobile device. Send, from the core system of the carrier, to the carrier application on the mobile device of the subscriber of the carrier, a registration request response including the unique application identifier and the public key.