CPC Class H04W

A method to provide secure operation of a lighting network, the lighting network comprising a lighting device arranged for illuminating an environment and a local controller for controlling the lighting device, wherein the lighting network is further controllable by an external controller, external to the lighting network, wherein the method comprises: determining a configuration status of the lighting network, analyzing the determined configuration status, switching an operational mode of the lighting network between a normal mode and a secured mode based on the analysis; wherein in the normal mode, the lighting network is operably connected to the external controller, and a light rendering function of the lighting device is being controlled by the external controller according to a predetermined set of functions, and wherein in the secured mode, the light rendering function of the lighting device is being controlled by the external controller according to a subset of the predetermined set of functions.

Implementations relate to a method for establishing an end-to-end encrypted data communication link between a portable medical apparatus and a data-management device. The method comprises at least the following steps: out-of-band transmission of a public key from the medical apparatus to the data-management device, wherein the transmission does not take place via Bluetooth; setting up an encrypted Bluetooth data communication link between the medical apparatus and the data-management device; transmitting a public key from the data-management device to the medical apparatus via the Bluetooth link that has been set up; calculating a combined key on the data-management device and on the medical apparatus; setting up an end-to-end encrypted link between the medical apparatus and the data-management device using the combined key, such as a symmetrical, key.

Techniques and architecture are described for determining an identity of a client device and utilizing security policies associated with the client device provided by a device identity entity. For example, a tag associated with security policies is created for use in enforcing the security policies by a security policy enforcement entity associated with a cloud network. The techniques and architecture also allow for identification of a particular user on a client device that may be shared by multiple users based at least in part on the user accessing an application. Also, the techniques and architecture described herein provide a generic and agnostic approach to enforcing security policies for users and/or client devices.

A user equipment (UE) is configured with operations to determine whether a network supports non-voice IP Multimedia Subsystem (IMS) services. The UE determines whether a network with which the UE is communicating supports a non-voice IP Multimedia Subsystem (IMS) service and when the network supports the non-voice IMS service, initiates an IMS Protocol Data Unit (PDU) session establishment with the network.