Security for ai / ML models
Secure authorization procedures using access tokens and authorization servers address the lack of authorization in AI/ML model management, reducing security vulnerabilities and enhancing system integrity.
Patent Information
- Authority / Receiving Office
- WO · WO
- Patent Type
- Applications
- Current Assignee / Owner
- LENOVO UNITED STATES INC
- Filing Date
- 2026-03-24
- Publication Date
- 2026-06-25
AI Technical Summary
Existing wireless communications systems lack sufficient authorization and verification mechanisms for AI/ML model management, leading to security vulnerabilities such as data breaches, model theft, and operational disruptions due to unauthorized access and malicious training.
Implement secure authorization procedures using access tokens and authorization servers to control access to AI/ML services and resources, verifying client permissions for tasks like model retrieval, training, and storage.
Reduces unauthorized access and security threats, enhancing the security and integrity of AI/ML model management in wireless communications systems.
Smart Images

Figure IB2026052854_25062026_PF_FP_ABST
Abstract
Description
Lenovo Ref. No. SMM920240310-WO-PCT1SECURITY FOR AI / ML MODELSRELATED APPLICATION
[0001] This application claims priority to U.S. Non-Provisional Application Serial No. 19 / 091,661 filed 26 March 2025 entitled “SECURITY FOR AI / ML MODELS,” the disclosure of which is incorporated by reference herein in its entirety.TECHNICAL FIELD
[0002] The present disclosure relates to wireless communications, and more specifically to artificial intelligence (Al) and machine learning (ML) in wireless communications.BACKGROUND
[0003] A wireless communications system may include one or multiple network communication devices, which may be otherwise known as network equipment (NE), supporting wireless communications for one or multiple user communication devices, which may be otherwise known as UE, or other suitable terminology. The wireless communications system may support wireless communications with one or multiple user communication devices by utilizing resources of the wireless communication system (e.g., time resources (e.g., symbols, slots, subframes, frames, or the like) or frequency resources (e.g., subcarriers, carriers, or the like)). Additionally, the wireless communications system may support wireless communications across various radio access technologies including third generation (3G) radio access technology, fourth generation (4G) radio access technology, fifth generation (5G) radio access technology, among other suitable radio access technologies beyond 5G (e.g., sixth generation (6G)).SUMMARY
[0004] An article “a” before an element is unrestricted and understood to refer to “at least one” of those elements or “one or more” of those elements. The terms “a,” “at least one,” “one or more,” and “at least one of one or more” may be interchangeable. As used herein, including in the claims, “or” as used in a list of items (e.g., a list of items prefaced by a phrase such as “at least one of’ orAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT2“one or more of’ or “one or both of’) indicates an inclusive list such that, for example, a list of at least one of A, B, or C means A or B or C or AB or AC or BC or ABC (i.e., A and B and C). Also, as used herein, the phrase “based on” shall not be construed as a reference to a closed set of conditions. For example, an example step that is described as “based on condition A” may be based on both a condition A and a condition B without departing from the scope of the present disclosure. In other words, as used herein, the phrase “based on” shall be construed in the same manner as the phrase “based at least in part on”. Further, as used herein, including in the claims, a “set” may include one or more elements.
[0005] An apparatus (UE, NE) for wireless communication is described. The apparatus may be configured to, capable of, or operable to perform one or more operations as described herein. For example, the apparatus may be configured to, capable of, or operable to transmit a first message including a request for an access token, wherein the first message includes first AI / ML model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
[0006] A processor (e.g., a standalone processor chipset, or a component of an apparatus (UE, NE)) for wireless communication is described. The processor may be configured to, capable of, or operable to perform one or more operations as described herein. For example, the processor may be configured to, capable of, or operable to transmit a first message including a request for an access token, wherein the first message includes first AI / ML model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
[0007] A method performed or performable by an apparatus (UE, NE) for wireless communication is described. The method may include transmitting a first message including a request for an access token, wherein the first message includes first AI / ML model information; and receiving a second message including the access token, wherein the access token includes second AI / ML model information.
[0008] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the first AI / ML model information includes an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML modelAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT3 retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request.
[0009] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the first AI / ML model information includes one or more of: an authorization scope parameter associated with the access token; an identifier for an AI / ML server; or an identifier for an AI / ML model repository.
[0010] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the authorization scope parameter includes one or more of: AI / ML service information associated with AI / ML model management; one or more of vertical application layer (VAL) service information, a VAL server identifier (ID), a VAL UE ID, AI / ML enabler (AIMLE) client ID, or AI / ML client ID; or one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID.
[0011] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the AI / ML service information associated with AI / ML model management includes information for one or more AI / ML model retrieval services.
[0012] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the apparatus includes an AI / ML client, an AIMLE client, a VAL server, or a VAL UE.
[0013] An apparatus (UE, NE) for wireless communication is described. The apparatus may be configured to, capable of, or operable to perform one or more operations as described herein. Lor example, the apparatus may be configured to, capable of, or operable to receive a first message including a request for an access token, wherein the first message includes first AI / ML model information; and transmit a second message including the access token, wherein the access token includes second AI / ML model information.
[0014] A processor (e.g., a standalone processor chipset, or a component of an apparatus (UE, NE)) for wireless communication is described. The processor may be configured to, capable of, or operable to perform one or more operations as described herein. Lor example, the processor may be configured to, capable of, or operable to receive a first message including a request for an access token, wherein the first message includes first AI / ML model information; and transmit a secondAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT4 message including the access token, wherein the access token includes second Al / ML model information.
[0015] A method performed or performable by an apparatus (UE, NE) for wireless communication is described. The method may include receiving a first message including a request for an access token, wherein the first message includes first Al / ML model information; and transmitting a second message including the access token, wherein the access token includes second Al / ML model information.
[0016] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the first Al / ML model information includes an indication of one or more of an Al / ML model training service request, an Al / ML model storage service request, an Al / ML model retrieval service request, an Al / ML model management service request, or an Al / ML model discovery service request; and the second Al / ML model information includes one or more of Al / ML model training information, Al / ML model storage information, or Al / ML model discovery information.
[0017] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the second Al / ML model information includes one or more of: authorization scope information for Al / ML model management; one or more of an Al / ML server ID, AIMLE client ID, or an Al / ML model repository ID; one or more of VAL service information or VAL server information; one or more allowed Al / ML model retrieval filters; one or more of an Al / ML model ID, an Al / ML model address, or an analytics ID; or an authorization server ID.
[0018] An apparatus (UE, NE) for wireless communication is described. The apparatus may be configured to, capable of, or operable to perform one or more operations as described herein. Lor example, the apparatus may be configured to, capable of, or operable to transmit a first message including an Al / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the Al / ML model request.
[0019] A processor (e.g., a standalone processor chipset, or a component of an apparatus (UE, NE)) for wireless communication is described. The processor may be configured to, capable of, or operable to perform one or more operations as described herein. Lor example, the processor may beAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT5 configured to, capable of, or operable to transmit a first message including an Al / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the Al / ML model request.
[0020] A method performed or performable by an apparatus (UE, NE) for wireless communication is described. The method may include transmitting a first message including an Al / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receiving a second message including a response to the Al / ML model request.
[0021] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the Al / ML model request includes a request for Al / ML model retrieval, and wherein the one or more of the security information, the authorization information, or the access token includes Al / ML model retrieval information.
[0022] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the request for Al / ML model retrieval is associated with one or more of a request to subscribe to Al / ML model retrieval, a request to subscribe to Al / ML model retrieval notification, a request to subscribe to Al / ML model update, or a request to unsubscribe to Al / ML model retrieval.
[0023] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the Al / ML model request includes a request for Al / ML model training or Al / ML model training notification, and wherein the one or more of the authorization information or the access token includes Al / ML model training information.
[0024] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the Al / ML model request includes a request for Al / ML model storage management, and wherein the one or more of the authorization information or the access token includes Al / ML model storage management information.
[0025] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the apparatus includes an Al / ML client, an AIMLE client, or a VAL server.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT6
[0026] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0027] An apparatus (UE, NE) for wireless communication is described. The apparatus may be configured to, capable of, or operable to perform one or more operations as described herein. For example, the apparatus may be configured to, capable of, or operable to receive a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message including a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information, or the access token.
[0028] A processor (e.g., a standalone processor chipset, or a component of an apparatus (UE, NE)) for wireless communication is described. The processor may be configured to, capable of, or operable to perform one or more operations as described herein. For example, the processor may be configured to, capable of, or operable to receive a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message including a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information, or the access token.
[0029] A method performed or performable by an apparatus (UE, NE) for wireless communication is described. The method may include receiving a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmitting a second message including a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information, or the access token.
[0030] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the AI / ML model request includes a request for AI / ML model retrieval, and the apparatus, the processor, and the method may further be configured to, capable of, operable to, performed to, or performable to perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, whereinAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT7 the response to the AI / ML model request includes a response to the request for AI / ML model retrieval that is generated based at least in part on a result of the authorization procedure.
[0031] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval.
[0032] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the AI / ML model request includes a request for AI / ML model training, and the apparatus, the processor, and the method may further be configured to, capable of, operable to, performed to, or performable to perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model training that is generated based at least in part on a result of the authorization procedure.
[0033] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the AI / ML model request includes a request for AI / ML model storage management, and the apparatus, the processor, and the method may further be configured to, capable of, operable to, performed to, or performable to perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model storage management that is generated based at least in part on a result of the authorization procedure.
[0034] In some implementations of the apparatus (UE, NE), the processor, and the method described herein, the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.BRIEE DESCRIPTION OE THE DRAWINGS
[0035] Eigure 1 illustrates an example of a wireless communications system in accordance with aspects of the present disclosure.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT8
[0036] Figure 2 illustrates an example system in accordance with aspects of the present disclosure.
[0037] Figure 3 illustrates an example system in accordance with aspects of the present disclosure.
[0038] Figure 4 illustrates an example system in accordance with aspects of the present disclosure.
[0039] Figure 5 illustrates an example system in accordance with aspects of the present disclosure.
[0040] Figure 6 illustrates an example system in accordance with aspects of the present disclosure.
[0041] Figure 7 illustrates an example system in accordance with aspects of the present disclosure.
[0042] Figure 8 illustrates an example system in accordance with aspects of the present disclosure.
[0043] Figure 9 illustrates a system in accordance with aspects of the present disclosure.
[0044] Figure 10 illustrates a system in accordance with aspects of the present disclosure.
[0045] Figure 11 illustrates an example of a UE in accordance with aspects of the present disclosure.
[0046] Figure 12 illustrates an example of a processor in accordance with aspects of the present disclosure.
[0047] Figure 13 illustrates an example of an NE in accordance with aspects of the present disclosure.
[0048] Figure 14 illustrates a flowchart of a method in accordance with aspects of the present disclosure.
[0049] Figure 15 illustrates a flowchart of a method in accordance with aspects of the present disclosure.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT9
[0050] Figure 16 illustrates a flowchart of a method in accordance with aspects of the present disclosure.
[0051] Figure 17 illustrates a flowchart of a method in accordance with aspects of the present disclosure.DETAILED DESCRIPTION
[0052] In a wireless communications system, a UE and an NE (e.g., a base station, gNB) may support wireless communication (e.g., reception and / or transmission of wireless communication) using time-frequency resources. A wireless communications system can utilize AI / ML (which may also be referred to herein as “Al” or “ML”) for a variety of different purposes, such as for network operation, network optimization, automated processing (e.g., self-driving cars in vehicle to everything (V2X) scenarios), network planning, security information and event management (SIEM), etc. AI / ML can leverage AI / ML models (which may be referred to herein as “models”), which represent programs and / or algorithms trained on a set of data to provide outputs, such as to recognize patterns, make decisions, generate content, etc. AI / ML models, for instance, can apply different algorithms to data inputs to provide data output for performing different tasks.
[0053] In some wireless communications systems, an AI / ML enabler service framework supports ML model retrieval, ML model training, and ML model management procedures where an AIMLE client or VAL server can retrieve ML models from an AIMLE server. The VAL server can train the ML models based on a request to the AIMLE server. Based on a request from an AI / ML consumer, the AIMLE server can store the ML model information in a ML repository, e.g., an AIMLE consumer-initiated ML model information storage. AI / ML model management procedures implemented by some wireless communications systems may not support sufficient authorization and verification, which may result in different security vulnerabilities.
[0054] In one example, an unauthorized AIMLE client or VAL server can request and obtain an ML model from the AIMLE server for which the AIMLE client / VAL server does not have permission to access, which can cause different security threats, including data breaches, intellectual property theft, model compromise, and disruption of operations, which can potentially impact sensitive data and applications. In another example, an unauthorized VAL server involved in ML model training can cause malicious ML model training, which can cause different security threatsAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT10 such as data poisoning, model theft, and compromised accuracy, which can in turn lead to security vulnerabilities, ethical concerns, and potential harm. In another example, an unauthorized AIMLE consumer (e.g., an AIMLE consumer such as an AIMLE client or a VAL server) can perform ML model information storage and access, which can lead to risks such as data breaches, model theft, data poisoning, and adversarial attacks, which may result in security and operational disruptions.
[0055] Aspects of the present disclosure are described in the context of a wireless communications system, and include implementations that provide a secure environment in which different ML model tasks can be performed. In some implementations, procedures are described to authorize a client (AIMLE client, VAL server, VAL UE) to perform ML model management of ML model information related to one or more of the ML model ID(s) or analytics ID(s). Examples of ML model management include ML model retrieval services and related service operations such as ML model retrieval request / response, ML model retrieval subscribe request / response, ML model retrieval notification, ML model retrieval subscription update request / response, ML model retrieval unsubscribe request / response, etc. In some examples, client authorization can be performed by an authorization server (SEAL identity management (SIM) server, AIMLE server, service enabler architecture layer (SEAL) server) by issuing an access token or authorization information.
[0056] In some implementations, an authorization server can verify the authorization of a client and provide access to AIMLE services related to ML model retrieval based on a client request to access ML model services for one or more ML model IDs / analytics IDs. Examples of ML model services include ML model retrieval services, ML model training services, and ML model storage services.
[0057] By performing the described techniques, a wireless communications system can implement secure procedures for controlling access to different AI / ML services and resources. The described techniques can reduce unauthorized access to AI / ML services and resources, which can reduce security threats and reduce unauthorized resource usage in wireless communications systems that utilize AI / ML functionality.
[0058] Reference is made herein to communicating data or information, such as signaling communication resources and / or communications that are transmitted or received between devices.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT11It is to be appreciated that other terms may be used interchangeably with communicating, such as signaling, transmitting, receiving, outputting, forwarding, retrieving, obtaining, and so forth.
[0059] Aspects of the present disclosure are described in the context of a wireless communications system.
[0060] Figure 1 illustrates an example of a wireless communications system 100 in accordance with aspects of the present disclosure. The wireless communications system 100 may include one or more NEs 102, one or more UEs 104, and a core network (CN) 106. The wireless communications system 100 may support various radio access technologies. In some implementations, the wireless communications system 100 may be a 4G network, such as an LTE network or an LTE- Advanced (LTE-A) network. In some other implementations, the wireless communications system 100 may be a NR network, such as a 5G network, a 5G-Advanced (5G-A) network, or a 5G ultrawideband (5G-UWB) network. In other implementations, the wireless communications system 100 may be a combination of a 4G network and a 5G network, or other suitable radio access technology including Institute of Electrical and Electronics Engineers (IEEE) 802.11 (Wi-Fi), IEEE 802.16 (WiMAX), IEEE 802.20. The wireless communications system 100 may support radio access technologies beyond 5G, for example, 6G. Additionally, the wireless communications system 100 may support technologies, such as time division multiple access (TDMA), frequency division multiple access (FDMA), or code division multiple access (CDMA), etc.
[0061] The one or more NEs 102 may be dispersed throughout a geographic region to form the wireless communications system 100. One or more of the NEs 102 described herein may include, or may be referred to as a network node, a base station, an access point (AP), a network element, a network function, a network entity, a radio access network (RAN), a NodeB, an eNodeB (eNB), a next-generation NodeB (gNB), or other suitable terminology. An NE 102 and a UE 104 may communicate via a communication link, which may be a wireless or wired connection. For example, an NE 102 and a UE 104 may perform wireless communication (e.g., receive signaling, transmit signaling) over a Uu interface.
[0062] An NE 102 may provide a geographic coverage area for which the NE 102 may support services for one or more UEs 104 within the geographic coverage area. For example, an NE 102 and a UE 104 may support wireless communication of signals related to services (e.g., voice, video,Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT12 packet data, messaging, broadcast, etc.) according to one or multiple radio access technologies. In some implementations, an NE 102 may be moveable, for example, a satellite associated with a non-terrestrial network (NTN). In some implementations, different geographic coverage areas associated with the same or different radio access technologies may overlap, but the different geographic coverage areas may be associated with different NE 102.
[0063] The one or more UEs 104 may be dispersed throughout a geographic region of the wireless communications system 100. A UE 104 may include or may be referred to as a remote unit, a mobile device, a wireless device, a remote device, a subscriber device, a transmitter device, a receiver device, or some other suitable terminology. In some implementations, the UE 104 may be referred to as a unit, a station, a terminal, or a client, among other examples. Additionally, or alternatively, the UE 104 may be referred to as an Internet-of-Things (loT) device, an Internet-of- Everything (loE) device, or a machine-type communication (MTC) device, among other examples.
[0064] A UE 104 may be able to support wireless communication directly with other UEs 104 over a communication link. For example, a UE 104 may support wireless communication directly with another UE 104 over a device-to-device (D2D) communication link. In some implementations, such as vehicle-to-vehicle (V2V) deployments, vehicle-to-everything (V2X) deployments, or cellular-V2X deployments, the communication link may be referred to as a sidelink. For example, a UE 104 may support wireless communication directly with another UE 104 over a PC5 interface.
[0065] An NE 102 may support communications with the CN 106, or with another NE 102, or both. For example, an NE 102 may interface with other NE 102 or the CN 106 through one or more backhaul links (e.g., SI, N2, N6, or other network interface). In some implementations, the NE 102 may communicate with each other directly. In some other implementations, the NE 102 may communicate with each other indirectly (e.g., via the CN 106). In some implementations, one or more NEs 102 may include subcomponents, such as an access network entity, which may be an example of an access node controller (ANC). An ANC may communicate with the one or more UEs 104 through one or more other access network transmission entities, which may be referred to as radio heads, smart radio heads, or transmission-reception points (TRPs).
[0066] The CN 106 may support user authentication, access authorization, tracking, connectivity, and other access, routing, or mobility functions. The CN 106 may be an evolvedAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT13 packet core (EPC), or a 5G core (5GC), which may include a control plane entity that manages access and mobility (e.g., a mobility management entity (MME), an access and mobility management function (AMF)) and a user plane entity that routes packets or interconnects to external networks (e.g., a serving gateway (S-GW), a packet data network (PDN) gateway (P-GW), or a user plane function (UPF)). In some implementations, the control plane entity may manage non-access stratum (NAS) functions, such as mobility, authentication, and bearer management (e.g., data bearers, signal bearers, etc.) for the one or more UEs 104 served by the one or more NEs 102 associated with the CN 106.
[0067] The CN 106 may communicate with a packet data network over one or more backhaul links (e.g., via an SI, N2, N6, or other network interface). The packet data network may include an application server. In some implementations, one or more UEs 104 may communicate with the application server. A UE 104 may establish a session (e.g., a protocol data unit (PDU) session, or the like) with the CN 106 via an NE 102. The CN 106 may route traffic (e.g., control information, data, and the like) between the UE 104 and the application server using the established session (e.g., the established PDU session). The PDU session may be an example of a logical connection between the UE 104 and the CN 106 (e.g., one or more network functions of the CN 106).
[0068] In the wireless communications system 100, the NEs 102 and the UEs 104 may use resources of the wireless communications system 100 (e.g., time resources (e.g., symbols, slots, subframes, frames, or the like) or frequency resources (e.g., subcarriers, carriers)) to perform various operations (e.g., wireless communications). In some implementations, the NEs 102 and the UEs 104 may support different resource structures. For example, the NEs 102 and the UEs 104 may support different frame structures. In some implementations, such as in 4G, the NEs 102 and the UEs 104 may support a single frame structure. In some other implementations, such as in 5G and among other suitable radio access technologies, the NEs 102 and the UEs 104 may support various frame structures (i.e., multiple frame structures). The NEs 102 and the UEs 104 may support various frame structures based on one or more numerologies.
[0069] One or more numerologies may be supported in the wireless communications system 100, and a numerology may include a subcarrier spacing and a cyclic prefix. A first numerology (e.g., / r=0) may be associated with a first subcarrier spacing (e.g., 15 kHz) and a normal cyclic prefix. In some implementations, the first numerology (e.g., / r=0) associated with theAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT14 first subcarrier spacing (e.g., 15 kHz) may utilize one slot per subframe. A second numerology (e.g., / r=l) may be associated with a second subcarrier spacing (e.g., 30 kHz) and a normal cyclic prefix. A third numerology (e.g., / r=2) may be associated with a third subcarrier spacing (e.g., 60 kHz) and a normal cyclic prefix or an extended cyclic prefix. A fourth numerology (e.g., / r=3) may be associated with a fourth subcarrier spacing (e.g., 120 kHz) and a normal cyclic prefix. A fifth numerology (e.g., / r=4) may be associated with a fifth subcarrier spacing (e.g., 240 kHz) and a normal cyclic prefix.
[0070] A time interval of a resource (e.g., a communication resource) may be organized according to frames (also referred to as radio frames). Each frame may have a duration, for example, a 10 millisecond (ms) duration. In some implementations, each frame may include multiple subframes. For example, each frame may include 10 subframes, and each subframe may have a duration, for example, a 1 ms duration. In some implementations, each frame may have the same duration. In some implementations, each subframe of a frame may have the same duration.
[0071] Additionally, or alternatively, a time interval of a resource (e.g., a communication resource) may be organized according to slots. For example, a subframe may include a number (e.g., quantity) of slots. The number of slots in each subframe may also depend on the one or more numerologies supported in the wireless communications system 100. For instance, the first, second, third, fourth, and fifth numerologies (i.e., / r=0, / =l , / r=2, / r=3, / r=4) associated with respective subcarrier spacings of 15 kHz, 30 kHz, 60 kHz, 120 kHz, and 240 kHz may utilize a single slot per subframe, two slots per subframe, four slots per subframe, eight slots per subframe, and 16 slots per subframe, respectively. Each slot may include a number (e.g., quantity) of symbols (e.g., OFDM symbols). In some implementations, the number (e.g., quantity) of slots for a subframe may depend on a numerology. For a normal cyclic prefix, a slot may include 14 symbols. For an extended cyclic prefix (e.g., applicable for 60 kHz subcarrier spacing), a slot may include 12 symbols. The relationship between the number of symbols per slot, the number of slots per subframe, and the number of slots per frame for a normal cyclic prefix and an extended cyclic prefix may depend on a numerology. It should be understood that reference to a first numerology (e.g., / r=0) associated with a first subcarrier spacing (e.g., 15 kHz) may be used interchangeably between subframes and slots.
[0072] In the wireless communications system 100, an electromagnetic (EM) spectrum may be split, based on frequency or wavelength, into various classes, frequency bands, frequency channels,Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT15 etc. By way of example, the wireless communications system 100 may support one or multiple operating frequency bands, such as frequency range designations FR1 (410 MHz - 7.125 GHz), FR2 (24.25 GHz - 52.6 GHz), FR3 (7.125 GHz - 24.25 GHz), FR4 (52.6 GHz - 114.25 GHz), FR4a or FR4-1 (52.6 GHz - 71 GHz), and FR5 (114.25 GHz - 300 GHz). In some implementations, the NEs 102 and the UEs 104 may perform wireless communications over one or more of the operating frequency bands. In some implementations, FR1 may be used by the NEs 102 and the UEs 104, among other equipment or devices for cellular communications traffic (e.g., control information, data). In some implementations, FR2 may be used by the NEs 102 and the UEs 104, among other equipment or devices for short-range, high data rate capabilities.
[0073] FR1 may be associated with one or multiple numerologies (e.g., at least three numerologies). For example, FR1 may be associated with a first numerology (e.g., / r=0), which includes 15 kHz subcarrier spacing; a second numerology (e.g., / r=l), which includes 30 kHz subcarrier spacing; and a third numerology (e.g., / r=2), which includes 60 kHz subcarrier spacing. FR2 may be associated with one or multiple numerologies (e.g., at least 2 numerologies). For example, FR2 may be associated with a third numerology (e.g., / r=2), which includes 60 kHz subcarrier spacing; and a fourth numerology (e.g., / r=3), which includes 120 kHz subcarrier spacing.
[0074] According to implementations, an apparatus (e.g., the NE 102, UE 104) is operable to implement various aspects of the techniques described with reference to the present disclosure. For example, the apparatus can transmit a first message including a request for an access token, wherein the first message includes first AI / ML model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
[0075] According to implementations, an apparatus (e.g., the NE 102, UE 104) is operable to implement various aspects of the techniques described with reference to the present disclosure. For example, the apparatus can receive a first message including a request for an access token, wherein the first message includes first AI / ML model information; and transmit a second message including the access token, wherein the access token includes second AI / ML model information.
[0076] According to implementations, an apparatus (e.g., the NE 102, UE 104) is operable to implement various aspects of the techniques described with reference to the present disclosure. ForAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT16 example, the apparatus can transmit a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the AI / ML model request.
[0077] According to implementations, an apparatus (e.g., the NE 102, UE 104) is operable to implement various aspects of the techniques described with reference to the present disclosure. For example, the apparatus can receive a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message including a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information or the access token.
[0078] Reference is made herein to communicating data or information, such as signaling communication resources and / or communications that are transmitted or received between devices. It is to be appreciated that other terms may be used interchangeably with communicating, such as signaling, transmitting, receiving, outputting, forwarding, retrieving, obtaining, and so forth.
[0079] Figure 2 illustrates an example system 200 in accordance with aspects of the present disclosure. The system 200 represents an example on-network functional model of AI / ML enablement (AIMLE). In a VAL 202, a VAL client 204 (e.g., as part of a UE 104) communicates via a 3GPP network system 206 with VAL servers 208 over a VAL-UU reference point 210. VAL- UU can support unicast and multicast delivery modes. The AIMLE functional entities on the UE 104 and the server are grouped into AIMLE clients 212 and AIMLE servers 214, respectively.
[0080] At a SEAL 216 for verticals, the system 200 includes a common set of services for AIML functionality, including federated learning (FL) and distributed learning (e.g., FL client registration management, FL client discovery and selection), and reference points. The AIMLE services can be provided to the VAL 202. The AIMLE clients 212 can communicate with the AIMLE servers 214 over AIML-UU reference points 218. The AIMLE clients 212 can provide functionality to the VAL client 204 over an AIML-C reference point 220. The VAL servers 208 can communicate with the AIMLE servers 214 over AIML-S reference points 222. The AIMLE servers 214 communicate with the 3GPP network system 206 using 3GPP network interfaces 224 specified by the 3GPP network system 206. An AIML-E reference point 228 enables interactions betweenAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT17 multiple AIMLE servers 214, e.g., between central and edge AIMLE servers 214. An AIMLE server 214 can interact with an AI / ML repository 230, which serves as a repository for AI / ML models and AI / ML participants over AIML-R 232.
[0081] Figure 3 illustrates an example system 300 in accordance with aspects of the present disclosure. The system 300 represents an example off-network functional model of AIMLE. In a VAL 302, a VAL client 304a at a VAL UE 306a communicates with a VAL client 304b at a VAL UE 306b over VAL-PC5 reference point 308. VAL-PC5 can support unicast and multicast delivery modes. The VAL UE 306a, if connected to the network via a Uu reference point, can also act as a UE-to-network relay to enable the VAL UE 306b to access VAL servers over a VAL-UU reference point. An AIMLE client 310a at the VAL UE 306a can communicate with an AIMLE client 310b at the VAL UE 306b over AIML-PC5 reference points 312. An AIMLE client 310 can provide functionality to the VAL clients 304 over AIML-C reference points 314. Such communication can support local AI / ML operations (training, distribution, inference) in a coordinated manner.
[0082] Figure 4 illustrates an example system 400 in accordance with aspects of the present disclosure. The system 400 represents an example for AI / ML model retrieval. In the system 400: At step (1), a requestor 402 (e.g., AIMLE client or VAL server) sends an ML model retrieval request to an AIMLE server 404. The request includes the requestor identifier along with security credentials and may include ML model retrieval filters. At step (2), upon receiving the request from the requestor 402, the AIMLE server 404 validates whether the requestor 402 is authorized for the request. If the requestor 402 is authorized, the AIMLE server 404 may determine if the requested ML model is available with the AIMLE server 404 based on ML model retrieval filters. If the ML model is not available with the AIMLE server 404, the AIMLE server 404 can perform an ML model information discovery procedure with an ML repository. If the request is received from an AIMLE client that has registered with the AIMLE server 404, the AIMLE server 404 can determine the ML model based on an AIMLE client profile, e.g., supported AI / ML model types and / or application layer AIMLE client capabilities.
[0083] At step (3), the AIMLE server 404 sends an ML model retrieval response to the requestor 402. If the AIMLE server 404 has determined ML models (e.g., locally, or from the ML repository), the response includes an indication of success and may include the ML models. Otherwise, the response includes an indication of failure and may include a reason for failure. UponAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT18 receiving a response including ML models, the requestor 402 can store the ML models and may provide the ML model to the VAL clients, e.g., if the requestor 402 is the AIMLE client.
[0084] This ML model retrieval procedure may not support authorization and related verification, therefore, an unauthorized AIMLE client or VAL server can request and obtain the ML model from the AIMLE for which the AIMLE client / VAL server has no permission to access. Such scenarios can lead to threats, including data breaches, intellectual property theft, model compromise, and disruption of operations, potentially impacting sensitive data and applications.
[0085] Figure 5 illustrates an example system 500 in accordance with aspects of the present disclosure. The system 500 represents an example for AI / ML model training. In the system 500: At step (1) a VAL server 502 sends an ML model training request to an AIMLE server 504 requesting to assist in ML model training. The request includes ML model information or ML model requirement information. At step (2), the AIMLE server 504 checks whether the VAL server 502 is authorized to perform the ML model training request. If no model information is provided but only the model requirement information is provided at (1), the AIMLE server 504 can identify and select an ML model for training based on the ML model requirement information. At step (3), if the VAL server 502 is authorized, the AIMLE server 504 returns a success response; otherwise a failure response indicating the reason for failure. At step (4), the AIMLE server 504 notifies the VAL server 502 to update the list of FL / ML clients selected or de-selected for the ML model training or to share the training output or any errors during the training process.
[0086] This ML model training procedure may not support authorization and related verification; therefore, an unauthorized VAL server involving in ML model training can cause malicious ML model training. Such scenarios can lead to threats such as data poisoning, model theft, and compromised accuracy, leading to security vulnerabilities, ethical concerns, and potential harm.
[0087] Figure 6 illustrates an example system 600 in accordance with aspects of the present disclosure. The system 600 represents an example for AI / ML model information storage. In the system 600: At step (1), an AIMLE client or a VAL server 602 (AIMLE client / VAL server) sends an ML model information storage request to an AIMLE server 604 to store an ML model in an ML repository 606. At step (2), the AIMLE server 604 sends an ML model information storage requestAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT19 to store the ML model in the ML repository 606. At step (3), the AIMLE server 604 sends an ML model information storage response to the AIMLE client / VAL server 602 with information elements.
[0088] This AIMLE ML model information storage procedure may not support authorization and related verification; therefore, an unauthorized AIMLE consumer (e.g., AIMLE consumer such as AIMLE client or VAL server) performing ML model information storage and access can lead to risks such as data breaches, model theft, data poisoning, and adversarial attacks, leading to security and operational disruptions.
[0089] Aspects of the present disclosure include solutions for security for AI / ML models. Implementations, for example, provide solutions to enable a wireless communications system to implement secure procedures for performing different tasks associated with AI / ML model management.
[0090] Figure 7 illustrates an example system 700 in accordance with aspects of the present disclosure. The system 700 can be implemented to authorize a client 702 (e.g., AIMLE client, VAL server, VAL UE) to perform AI / ML model management. Examples of AI / ML model management include AI / ML model retrieval services related service operations such as ML model retrieval request / response, ML model retrieval subscribe request / response, AI / ML model retrieval notification, ML model retrieval subscription update request / response, AI / ML model retrieval unsubscribe request / response, etc. AI / ML model management may involve AI / ML model information related to one or more of ML model IDs or analytics IDs. The authorization of the client 702 can be performed via interaction with an authorization server 704 (e.g., a SIM server, an AIMLE server, a SEAL server) by issuing an access token or authorization information.
[0091] In the system 700: At step (0), the client 702 and the authorization server perform mutual authentication. At step (1), the client 702 communicates (e.g., transmits, sends) an access token request including a requestor identifier for the client 702 and AI / ML model information. At step (2), and based on the access token request, the authorization server 704 generates an access token with claims that are specific to the AI / ML model information. At step (3), the authorization server 704 communicates an access token response to the client 702 that includes the generated access token.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT20
[0092] In some implementations, to obtain an access token (and optionally a refresh token), the client 702 can communicate a constrained application protocol (CoAP) request to the authorization server 704 token endpoint by sending parameters from Table 1 below using the “application / ace+cbor” content format and with a concise binary object representation (CBOR) map in the CoAP payload. Alternatively, or in addition, the access token request can be one of an AIMLE service access token request or an AIMLE AI / ML model retrieval access token request.Table 1
[0093] For an access token response, if the access token request is valid and authorized, the authorization server 704 can return an access token (and optionally a refresh token) to the client 702 in an access token response message; otherwise, it will return an error. Table 2 includes example access token response parameters.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT21Table 2
[0094] The client 702 may use the access token to make protected and authorized requests to the authorization server 704. Implementations such as described with reference to the system 700 can be used for an access request related to AI / ML model training request with the following adaptations. The client 702 can obtain, in the step (3) access token response message, the authorization information and / or access token which includes token claims such as requestor ID as subject, ML model training service as scope, allowed training type (vertical FL (VFL) or horizontalAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT22FL (HFL), or both VFL and HFL), allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model information for training, allowed ML model training notification target address, ML model selection filtering criteria, issuer claim as authorization server ID, AIMLE server ID / SEAL server ID etc.) from the authorization server 704 when the access token request in step (1) indicates an ML model training service in the access token request message.
[0095] In such implementations, the access token request can include information such as training type, list of member clients, member selection criteria, ML model information, ML model requirement information, members update notification, and notification target address. Based on local configuration or authorization information, the authorization information or access token claims can additionally include the received information from the access token request such as training type, list of member clients, member selection criteria, ML model information, ML model requirement information, members update notification, and / or notification target address.
[0096] In some implementations, for ML model storage service, the client 702 can obtain the access token from the authorization server 704 as described with reference to the system 700. The client 702 can obtain in step (3) the authorization information or access token which includes claims such as requestor ID as subject, ML model storage service as scope, allowed ML information (model ID, model type, or ML model identified by analytics ID or ML model address from where ML model can be downloaded), allowed AIMLE client ID or ML model source identifier (e.g., VAL server ID, VAL client ID, target ML repository information), related VAL service ID(s), ML model address, base Model ID, analytics ID, model size, domain information, related vendor ID(s), issuer claim as authorization server ID, AIMLE server ID / SEAL server ID, etc., from the authorization server 704 when the access token request in step (1) indicates ML model storage service in the access token request message.
[0097] In some implementations, for ML model discovery service, the client 702 can obtain the access token from the authorization server 704 as described with reference to the system 700. The client 702 can obtain in step (3) the authorization information or access token, which includes claims such as requestor ID as subject, ML model discovery service as scope, VAL service ID, ML model source identifier, allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model Information for discovery, MLAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT23 model address, base model ID, analytics ID, allowed ML model training notification target address, ML model selection filtering criteria, domain information, required accuracy level, issuer claim as authorization server ID, AIMLE server ID / SEAL server ID, etc., from the authorization server 704 when the access token request in step (1) indicates ML model discovery service in the access token request message.
[0098] Implementations provide for secure ML model retrieval procedures by authorization / access permission verification for access control. For instance, the authorization server 704 (e.g., a SIM server, AIMLE server, SEAL server) can verify the authorization of the client 702 (e.g., AIMLE client, VAL Server, VAL UE) and provide access to AIMLE services related to ML model retrieval when the client 702 requests access to the ML model retrieval services for one or more ML model IDs / analytics IDs respectively as illustrated in the system 800 described below.
[0099] ML model retrieval enables applications consuming services from the AI / ML application enablement layer to retrieve ML models available with the enablement layer. ML model retrieval enables the client 702 to obtain target ML models. Retrieving ML models can be based on matching ML model retrieval filters provided in the request. ML model retrieval subscription enables the client 702 to receive notifications about target ML models. The subscription can be based on matching ML model retrieval filters provided in the subscription request.
[0100] Example procedures that are supported for ML model retrieval include: Enhanced ML model retrieval request-response procedure; enhanced ML model subscribe-notify procedures for retrieval of ML models, including: Enhanced Subscription procedure; enhanced subscription update procedure; and enhanced unsubscribe procedure.
[0101] Figure 8 illustrates an example system 800 in accordance with aspects of the present disclosure. The system 800 can be operable to implement procedures for the client 702 to discover and obtain ML models from the AIMLE server. In at least some implementations, for operation of the system 800, the client 702 has received information (e.g., URI, IP address) related to the authorization server 704. The client 702 has received security credentials (e.g., authorization token / information or access token as described herein) authorizing the client 702 to communicate with the authorization server 704.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT24
[0102] In some implementations, authorization information or an access token can include claims such as requestor ID as subject, ML model retrieval service as scope, ML model ID list / ML model information, and ML model filtering criteria as part of scope claim, resource claim, or other related claim, issuer claim as authorization server ID, AIMLE server ID / SEAL server ID.
[0103] Alternatively, or in addition, authorization information or an access token can include claims such as requestor ID as subject, AIMLE service-related information related to ML model management such as ML model retrieval services related service operations such as ML model retrieval request / response, ML model retrieval subscribe request / response, ML model retrieval notification, ML model retrieval subscription update request / response, ML model retrieval unsubscribe request / response etc., audience claim as AIMLE server / AIMLE model repository for the AIMLE related services, VAL service ID / information, VAL server ID / VAL UE ID / AIMLE Client ID etc., allowed ML model retrieval filters, and model information such as ML Model ID(s) / address or Analytics IDs, issuer claim as authorization server ID, and / or AIMLE server ID / SEAL server ID.
[0104] In the system 800: At step (1), the client 702 communicates a ML model retrieval request to the authorization server 704. The request includes the requestor identifier along with security credentials, e.g., authentication information such as certificates and / or authorization token / information or access token as described herein, and may include ML model retrieval filters and / or ML Model ID(s). At step (2), upon receiving the request from the requestor, the authorization server 704 validates whether the client 702 is authorized for the request. If the client 702 is authorized, the authorization server 704 may determine if the requested ML model is available with the authorization server 704 based on ML model retrieval filters and / or ML model ID(s). If the ML model is not available with the authorization server 704, the authorization server 704 may perform a ML model information discovery procedure with an ML repository as described herein. If the client 702 has registered with the authorization server 704, the authorization server 704 verifies the received security credentials, e.g., authentication information such as certificates, authorization information or access token and if the verification is successful. The authorization server 704 may determine the ML model based on the client 702 profile, e.g. supported AI / ML model types and / or application layer AIMLE client capabilities.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT25
[0105] In the system 800, at step (3) the authorization server 704 sends an ML model retrieval response to the client 702. If the authorization server 704 has determined ML models (e.g., locally, or from the ML repository) and based on the claims in the authorization information or access token, the response may include an indication of success and may include the ML models. Otherwise, the response includes an indication of failure and may include a reason for failure. Upon receiving a response including ML models, the client 702 can store the ML models and may provide the ML model to the VAL client(s), e.g., if the client 702 is an AIMLE client.
[0106] Implementations can provide for ML model retrieval subscription. The client 702 can subscribe with the authorization server 704 to be notified of retrieval of ML models. In some examples, the client 702 has received information (e.g. URI, IP address) related to the authorization server 704, and the client 702 has received security credentials authorizing it to communicate with the authorization server 704. The client 702 can communicate a ML model retrieval subscribe request to the authorization server 704. The request may include a requestor identifier, security credentials (e.g., authentication information such as certificates, authorization token / information, or access token as described herein) and may include ML model retrieval filters, ML Model ID(s), and / or expiration time.
[0107] Upon receiving the request from the requestor, the authorization server 704 validates if the client 702 is authorized for the request. For example, the authorization server 704 verifies the received security credentials, e.g., authentication information such as certificates, authorization information or access token, and determines whether the verification is successful. If the client 702 is authorized if the security credentials are valid, the authorization server 704 creates a subscription based on the claims in the authorization information or access token and stores the subscription information. The authorization server 704 can send a ML model retrieval subscribe response to the client 702. If the authorization server 704 has created the subscription based on the claims in the authorization information or access token, the response includes an indication of success and the subscription identity, and may include an expiration time. To maintain the subscription, the client 702 can send a subscription update request before the expiration time, otherwise the ML model retrieval subscription may expire. If the authorization server 704 has not created the subscription, the response may include an indication of failure and a reason for failure.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT26
[0108] Implementations may include ML model retrieval notify operations between the authorization server 704 and the client 702. The client 702 may have subscribed for ML model retrieval with the authorization server 704. An event may occur at the authorization server 704 that satisfies trigger conditions for notifying a subscriber, e.g., the client 702. The event may be the detection of availability of new ML model(s) (e.g., new ML model or new revision of a ML model) that satisfies the ML model retrieval filters of the subscription, or changes in the client 702 profile. For example, the authorization server 704 receives an updated AIMLE client profile with updated “supported AI / ML model type” which indicates the existing model is no longer supported and a new model is to be retrieved. The authorization server 704 may send an ML model retrieval notification to the client 702 indicating newly available ML models. The notification may include a subscription identity and newly available ML model(s).
[0109] Implementations may include procedures for the client 702 to update a subscription with the authorization server 704. The client 702 may have subscribed for ML model retrieval with the authorization server 704. The client 702 may communicate a ML model retrieval update request to the authorization server 704. The request may include the requestor identifier, security credentials (e.g., authentication information such as certificates, authorization token / information, or access token as described herein) and the subscription identifier and may include ML model retrieval filters, ML model ID(s), and expiration time. Upon receiving the request from the client 702, the authorization server 704 may validate whether the requestor is authorized for the request. For example, the authorization server 704 may verify the received security credentials (e.g., authentication information such as certificates, authorization information, or access token), and determine whether the verification is successful. If the client 702 is authorized (e.g., if the security credentials verification is successful), the authorization server 704 may update the subscription information.
[0110] The authorization server 704 may send a ML model retrieval subscription update response to the client 702. If the authorization server 704 has updated the subscription based on the claims in the authorization information or access token, the response may include an indication of success and may include an expiration time. To maintain the subscription, the client 702 may send a subscription update request before the expiration time, otherwise the ML model retrievalAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT27 subscription may expire. If the authorization server 704 has not updated the subscription, the response may include an indication of failure and may include a reason for failure.
[0111] Implementations may provide procedures for the client 702 to unsubscribe with the authorization server 704. The client 702 may have subscribed for ML model retrieval with the AIMLE Server, and the client 702 may send a ML model retrieval unsubscribe request to the authorization server 704. The request may include the requestor identifier, security credentials as described herein, and the subscription identifier. Upon receiving the request from the client 702, the authorization server 704 may validate whether the client 702 is authorized for the request. For example, the authorization server 704 verifies the received security credentials and whether the verification is successful. If the client 702 is authorized (e.g., if security credentials verification is successful), the authorization server 704 may cancel the subscription. The authorization server 704 may communicate a ML model retrieval unsubscribe response to the client 702. If the authorization server 704 has canceled the subscription based on the claims in the authorization information or access token, the response may include an indication of success. If the authorization server 704 has not canceled the subscription, the response may include an indication of failure and may include a reason for failure.
[0112] Table 3 describes example information elements for an ML model retrieval request from the client 702 to the authorization server 704. In some examples, authorization information or an access token can be part of security credentials. In some examples, if security credentials and authorization information / access token are in a separate information element (IE), then security credentials can include a client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT28Table 3Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT29
[0113] Table 4 describes example IES for a ML model retrieval response from the authorization server 704.Table 4
[0114] Table 5 describes example IEs for the ML model retrieval subscription request from the client 702 to the authorization server 704.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT30Table 5Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT31
[0115] Table 6 describes example IES for the ML model retrieval subscription response from the authorization server 704 to the client 702.Table 6
[0116] Table 7 describes example IEs for the ML model retrieval subscription response from the authorization server 704 to the client 702.Table 7Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT32
[0117] Table 8 describes example IES for the ML model retrieval subscription update request from the client 702 to the authorization server 704. In some examples, authorization information or an access token can be part of security credentials. In some examples, if security credentials and authorization information / access token are in a separate IE, then security credentials can include client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT33Table 8Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT34
[0118] Table 9 describes example IES for a ML model retrieval subscription update response from the authorization server 704 to the client 702.Table 9
[0119] Table 10 describes example IEs for the ML model retrieval unsubscribe request from the client 702 to the authorization server 704. In some examples, authorization information or an access token can be part of security credentials. In some implementations, if security credentials and authorization information / access token are in a separate IE, then security credentials can include a client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT35Table 10
[0120] Table 11 describes example IES for the ML model retrieval unsubscribe response from the authorization server 704 to the client 702.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT36Table 11
[0121] Implementations provide for secure ML model training procedures by authorization / access permission verification for access control. The authorization server 704 (e.g., AIMLE server, SEAL server) can verify the authorization of the client 702 (e.g., AIMLE client, VAL server, VAL UE) and provide services related to AIML model training when the client 702 requests access to the ML model training services for one or more ML model IDs / analytics IDs respectively as illustrated in a system 900.
[0122] In some implementations, the client 702 communicates a request to the authorization server 704 for ML model training with the security credentials, e.g., authorization token / information or an access token. The client 702 may request that the AIMLE server train a ML model by specifying the type of learning, details about the ML model to be trained, or parameters to select a ML model for training and criteria for selecting the members who can participate in the ML model training. The authorization information or access token can include claims such as requestor ID as subject, ML model training service as scope, allowed training type (VFL or HFL or both VFL and HFL), allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model Information for training, allowed ML model training notification target address, ML model selection filtering criteria etc. The client 702 may obtain the authorization information or access token (which includes claims such as ML model training service as scope, allowed training type (VFL or HFL or both VFL and HFL), allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model Information for training, allowed ML model training notification target address, ML model selection filtering criteria, issuer claim as authorization server ID, AIMLE server ID / SEAL server ID etc.) from the authorization server 704 as described herein when the access token request indicates ML model training service in the access token request message.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT37
[0123] Figure 9 illustrates a system 900 in accordance with aspects of the present disclosure. The system 900, for example, is operable to request ML model training. In the system 900: At step (1), the client 702 sends an ML model training request to the authorization server 704 requesting assistance for ML model training. The request may include ML model information or ML model parameter information and security credentials, e.g., authentication information such as certificates, authorization token / information, access token, etc.
[0124] At step (2), the authorization server 704 checks whether the client 702 is authorized to perform the ML model training request. For example, the authorization server 704 verifies the received security credentials (e.g., authentication information such as certificates, authorization information, access token). If the verification is successful, the authorization server 704 determines that the client 702 is authorized to perform the ML model training request. If no model information is provided and model parameter information is provided in step (1), the authorization server 704 may identify and select an ML model for training based on the verified claims in the authorization information or access token and based on the ML model parameter information.
[0125] At step (3), if the client 702 is authorized (e.g., the authorization server 704 verifies the received security credentials and if the verification is successful), the authorization server 704 may return a success response, otherwise a failure response indicating a reason for failure. At step (4), the authorization server 704 notifies the client 702 to update a list of FL / ML clients selected or deselected for the ML model training or to share the training output or errors during the training process.
[0126] Table 12 describes example IES for an example information flow from the client 702 to the authorization server 704 for requesting the ML model training. In some examples, authorization information or an access token can be part of security credentials. In some examples, if security credentials and authorization information / access token are in a separate IE, then security credentials can include a client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT38Table 11Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT39
[0127] Table 12 describes example IEs for an example information flow of ML model training response from the authorization server 704 to the client 702.Table 12
[0128] Table 13 describes example IES for an example information flow of ML model training notification from the authorization server 704 to the client 702.Table 13Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT40
[0129] Implementations can provide for how the authorization server 704 or an ML repository can verify the authorization of the client 702 and provide services related to AIML model storage when the client 702 requests access to the ML model storage services for one or more ML model IDs / Analytics IDs respectively, e.g., as illustrated in a system 1000.
[0130] In some implementations associated with a procedure of ML model information storage initiated by the authorization server 704, the authorization server 704 has either received application specific model details from an AIML consumer or produced an analytics model. The authorization server 704 can send a ML model information storage request to the ML repository to store an ML model. The ML model included in the request can be trained by the ML repository consumer. In such scenarios, the authorization information or access token specific to the AIML model storage service access, e.g., security credentials (e.g., authentication information such as certificates, authorization information or access token or its information) can be provisioned to the ML repository consumer. The request may include information elements as described in Table 14. The request message may contain an indication of continuous training and a continuous training model parameter.
[0131] Upon receiving the ML model information storage request, the ML repository can verify whether the authorization server 704 is authorized to store the ML model identified by an analytics ID and / or list of the allowed vendors provided within the ML model profile attribute. For example, the authorization server 704 may verify the received security credentials, and if the verification is successful, the ML repository may determine that the authorization server 704 is authorized. If the authorization server 704 is authorized, the ML repository may process the request and record information of the ML model (e.g., by creating a ML model profile) along with the authorization server 704 ID / information and if applicable, AIMLE client / VAL server ID / information. The ML repository may send an ML model information storage response to the authorization server 704 with an identifier of the created ML model profile.
[0132] Figure 10 illustrates a system 1000 in accordance with aspects of the present disclosure. The system 1000 illustrates an example implementation for AIMLE consumer-initiated ML model information storage. In the system 1000: At step (1), the client 702 sends an ML model information storage request to the authorization server 704 to store an ML model in an ML repository 1002. The request includes the security credentials, e.g., authentication information such as certificates,Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT41 authorization token / information or an access token and information elements as described in Table 14. Alternatively, or in addition, the access token includes the claims such as requestor ID as subject, ML model storage service as scope, allowed ML information (model ID, model Type, or ML model identified by analytics ID or ML model address from where ML model can be downloaded), allowed AIMLE client ID (or) ML model source identifier (e.g., VAL server ID, VAL client ID, target ML repository information), related VAL service ID(s), ML model address, base Model ID, analytics ID, model size, domain information, related vendor ID(s), issuer claim as authorization server ID, and / or AIMLE server ID / SEAL server ID.
[0133] At steps (2a) and (2b), the authorization server 704 verifies the received security credentials, and if the verification is successful, the authorization server 704 sends an ML model information storage request to the ML repository 1002 to store the ML model in the ML repository 1002. Alternatively, or in addition, the client 702 forwards the received security credentials to the ML repository 1002 in an ML model information storage request. In such scenarios, the ML repository 1002 may verify the received authorization information or access token, and if the verification is successful, the ML repository 1002 may store the received ML model information. At step (3), the authorization server 704 sends an ML model information storage response to the client 702 with the information elements as described in Table 14.
[0134] Implementations provide for ML model information discovery. In some implementations, an AIMLE consumer has requested to discover an ML model or the authorization server 704 determines to discover an ML model for training. The authorization server 704 may send an ML model information discovery request to the ML repository 1002. The request includes the security credentials and information elements as described in Table 18, below. An access token in the security credentials includes the claims such as requestor ID as subject, ML model discovery service as scope, VAL service ID, ML model source identifier, allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model information for discovery, ML model address, base model ID, analytics ID, allowed ML model training notification target address, ML model selection filtering criteria, domain information, required accuracy level, issuer claim as authorization Server ID, and / or AIMLE server ID / SEAL server ID.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT42
[0135] The client 702 may obtain the authorization information or access token (which includes claims such as requestor ID as subject, ML model discovery service as scope, VAL service ID, ML model source identifier, allowed list of AIMLE member client IDs, allowed location information for member client selection, allowed ML model ID list / ML model information for discovery, ML model address, base Model ID, analytics ID, allowed ML model training notification target address, ML model selection filtering criteria, domain information, required accuracy level, issuer claim as authorization server ID, AIMLE server ID / SEAL server ID, etc.) from the authorization server 704 as described herein, when the access token request indicates ML Model discovery service in the access token request message.
[0136] Upon receiving the ML model information discovery request, the ML repository 1002 may verify if the requestor is authorized. The ML repository 1002, for example, verifies the received security credentials, and if the verification is successful, the ML repository 1002 considers the requestor as authorized to discover the ML model(s) identified by the ML model ID. Further, the ML repository 1002 verifies whether the requestor is present in the list of allowed vendors. If the ML repository consumer is authorized (e.g., security credentials verification is successful), the ML repository 1002 may process the request and discover the model based on ML model ID, analytics ID, base Model ID, and / or ML model interoperability information. If the discovery request is for transfer of learning, the ML repository 1002 may identify candidate models matching the domain and required accuracy level.
[0137] After the authorization server 704 receives the response from the ML repository 1002, the authorization server 704 may determine whether the received ML model satisfies the ML model parameter of the authorization server 704 and whether the authorization server 704 is to continuously train the model. The determination for continuous training may be based on the authorization server 704 capability for continuous training, parameters for the ML model, and ML model profile, e.g., indication of continuous model training, continuous training model parameter. The ML repository 1002 may send the response message to the ML repository consumer. The response may include information of the discovered ML model. When the ML model is within training or re-training phase, the ML model may not be available for discovery. Examples of such details are indicated within the Result IE in Table 19, below. The training and re-training phase canAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT43 be used during federated learning to enable the AIMLE consumer to trust the ML repository 1002 to obtain the model details.
[0138] Table 14 describes example IES for an information flow from the authorization server 704 to the ML repository 1002, or from the client 702 to the authorization server 704 as a request for the ML model information storage. In some implementations, authorization information or an access token can be part of security credentials. Alternatively, or in addition, if security credentials and authorization information / access token are in a separate IE, then security credentials can include a client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT44Table 14
[0139] Table 15 describes example IES for ML model information in accordance with aspects of the present disclosure.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT45Table 15Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT46
[0140] Table 16 describes example IES in an example information flow from the ML repository 1002 to the authorization server 704, or from the authorization server 704 to the client 702 as a response for the ML model information storage request.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT47Table 16
[0141] Table 17 describes example IES in an example ML model profile in accordance with aspects of the present disclosure.Table 17
[0142] Table 18 describes example IEs in an example information flow from the authorization server 704 to the ML repository 1002 as a request for the ML model information discovery. In some implementations, authorization information or an access token can be part of security credentials. Alternatively, or in addition, if security credentials and an authorization information / access token are in a separate IE, then security credentials can include a client certificate and / or root certificate to validate the client certificate.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT48Table 18
[0143] Table 19 describes example IES in an example information flow from the ML repository 1002 to the authorization server 704 as a response to the ML model information discovery request.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT49Table 19
[0144] Figure 11 illustrates an example of a UE 1100 in accordance with aspects of the present disclosure. The UE 1100 may include a processor 1102, a memory 1104, a controller 1106, and a transceiver 1108. The processor 1102, the memory 1104, the controller 1106, or the transceiver 1108, or various combinations thereof or various components thereof may be examples of means for performing various aspects of the present disclosure as described herein. These components may be coupled (e.g., operatively, communicatively, functionally, electronically, electrically) via one or more interfaces.
[0145] The processor 1102, the memory 1104, the controller 1106, or the transceiver 1108, or various combinations or components thereof may be implemented in hardware (e.g., circuitry). The hardware may include a processor, a digital signal processor (DSP), an application-specific integrated circuit (ASIC), or other programmable logic device, or any combination thereof configured as or otherwise supporting a means for performing the functions described in the present disclosure.
[0146] The processor 1102 may include an intelligent hardware device (e.g., a general-purpose processor, a DSP, a CPU, an ASIC, an FPGA, or any combination thereof). In some implementations, the processor 1102 may be configured to operate the memory 1104. In some other implementations, the memory 1104 may be integrated into the processor 1102. The processor 1102Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT50 may be configured to execute computer-readable instructions stored in the memory 1104 to cause the UE 1100 to perform various functions of the present disclosure.
[0147] The memory 1104 may include volatile or non-volatile memory. The memory 1104 may store computer-readable, computer-executable code including instructions when executed by the processor 1102 cause the UE 1100 to perform various functions described herein. The code may be stored in a non-transitory computer-readable medium such as the memory 1104 or another type of memory. Computer-readable media includes both non-transitory computer storage media and communication media including any medium that facilitates transfer of a computer program from one place to another. A non-transitory storage medium may be any available medium that may be accessed by a general-purpose or special-purpose computer.
[0148] In some implementations, the UE 1100 may support at least one memory (e.g., the memory 1104) and at least one processor (e.g., the processor 1102) coupled with the at least one memory and configured to cause the UE to transmit a first message including a request for an access token, wherein the first message includes first AI / ML model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
[0149] Additionally, the UE 1100 may be configured to support any one or combination of where the first AI / ML model information includes an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML model retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request; the first AI / ML model information includes one or more of: an authorization scope parameter associated with the access token; an identifier for an artificial intelligence AI / ML server; or an identifier for an AI / ML model repository; the authorization scope parameter includes one or more of: AI / ML service information associated with AI / ML model management; one or more of VAL service information, a VAL server ID, a VAL UE ID, AIMLE client ID, or AI / ML client ID; or one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID; the AI / ML service information associated with AI / ML model management includes information for one or more AI / ML model retrieval services; the apparatus includes an AI / ML client, an AIMLE client, a VAL server, or a VAL UE.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT51
[0150] In some implementations, the UE 1100 may support at least one memory (e.g., the memory 1104) and at least one processor (e.g., the processor 1102) coupled with the at least one memory and configured to cause the UE to transmit a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the AI / ML model request.
[0151] Additionally, the UE 1100 may be configured to support any one or combination of where the AI / ML model request includes a request for AI / ML model retrieval, and wherein the one or more of the security information, the authorization information, or the access token includes AI / ML model retrieval information; the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval; the AI / ML model request includes a request for AI / ML model training or AI / ML model training notification, and wherein the one or more of the authorization information or the access token includes AI / ML model training information; the AI / ML model request includes a request for AI / ML model storage management, and wherein the one or more of the authorization information or the access token includes AI / ML model storage management information; the apparatus includes an AI / ML client, an AIMLE client, or a VAL server; the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0152] The controller 1106 may manage input and output signals for the UE 1100. The controller 1106 may also manage peripherals not integrated into the UE 1100. In some implementations, the controller 1106 may utilize an operating system such as iOS®, ANDROID®, WINDOWS®, or other operating systems. In some implementations, the controller 1106 may be implemented as part of the processor 1102.
[0153] In some implementations, the UE 1100 may include at least one transceiver 1108. In some other implementations, the UE 1100 may have more than one transceiver 1108. The transceiver 1108 may represent a wireless transceiver. The transceiver 1108 may include one or more receiver chains 1110, one or more transmitter chains 1112, or a combination thereof.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT52
[0154] A receiver chain 1110 may be configured to receive signals (e.g., control information, data, packets) over a wireless medium. For example, the receiver chain 1110 may include one or more antennas to receive a signal over the air or wireless medium. The receiver chain 1110 may include at least one amplifier (e.g., a low-noise amplifier (LNA)) configured to amplify the received signal. The receiver chain 1110 may include at least one demodulator configured to demodulate the received signal and obtain the transmitted data by reversing the modulation technique applied during transmission of the signal. The receiver chain 1110 may include at least one decoder for decoding the demodulated signal to receive the transmitted data.
[0155] A transmitter chain 1112 may be configured to generate and transmit signals(e.g., control information, data, packets). The transmitter chain 1112 may include at least one modulator for modulating data onto a carrier signal, preparing the signal for transmission over a wireless medium. The at least one modulator may be configured to support one or more techniques such as amplitude modulation (AM), frequency modulation (FM), or digital modulation schemes like phase-shift keying (PSK) or quadrature amplitude modulation (QAM). The transmitter chain 1112 may also include at least one power amplifier configured to amplify the modulated signal to an appropriate power level suitable for transmission over the wireless medium. The transmitter chain 1112 may also include one or more antennas for transmitting the amplified signal into the air or wireless medium.
[0156] Figure 12 illustrates an example of a processor 1200 in accordance with aspects of the present disclosure. The processor 1200 may be an example of a processor configured to perform various operations in accordance with examples as described herein. The processor 1200 may include a controller 1202 configured to perform various operations in accordance with examples as described herein. The processor 1200 may optionally include at least one memory 1204, which may be, for example, an L1 / L2 / L3 cache. Additionally, or alternatively, the processor 1200 may optionally include one or more arithmetic-logic units (ALUs) 1206. One or more of these components may be in electronic communication or otherwise coupled (e.g., operatively, communicatively, functionally, electronically, electrically) via one or more interfaces (e.g., buses).
[0157] The processor 1200 may be a processor chipset and include a protocol stack (e.g., a software stack) executed by the processor chipset to perform various operations (e.g., receiving, obtaining, retrieving, transmitting, outputting, forwarding, storing, determining, identifying,Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT53 accessing, writing, reading) in accordance with examples as described herein. The processor chipset may include one or more cores, one or more caches (e.g., memory local to or included in the processor chipset (e.g., the processor 1200) or other memory (e.g., random access memory (RAM), read-only memory (ROM), dynamic RAM (DRAM), synchronous dynamic RAM (SDRAM), static RAM (SRAM), ferroelectric RAM (FeRAM), magnetic RAM (MRAM), resistive RAM (RRAM), flash memory, phase change memory (PCM), and others).
[0158] The controller 1202 may be configured to manage and coordinate various operations (e.g., signaling, receiving, obtaining, retrieving, transmitting, outputting, forwarding, storing, determining, identifying, accessing, writing, reading) of the processor 1200 to cause the processor 1200 to support various operations in accordance with examples as described herein. For example, the controller 1202 may operate as a control unit of the processor 1200, generating control signals that manage the operation of various components of the processor 1200. These control signals include enabling or disabling functional units, selecting data paths, initiating memory access, and coordinating timing of operations.
[0159] The controller 1202 may be configured to fetch (e.g., obtain, retrieve, receive) instructions from the memory 1204 and determine subsequent instruction(s) to be executed to cause the processor 1200 to support various operations in accordance with examples as described herein. The controller 1202 may be configured to track memory addresses of instructions associated with the memory 1204. The controller 1202 may be configured to decode instructions to determine the operation to be performed and the operands involved. For example, the controller 1202 may be configured to interpret the instruction and determine control signals to be output to other components of the processor 1200 to cause the processor 1200 to support various operations in accordance with examples as described herein. Additionally, or alternatively, the controller 1202 may be configured to manage flow of data within the processor 1200. The controller 1202 may be configured to control transfer of data between registers, ALUs 1206, and other functional units of the processor 1200.
[0160] The memory 1204 may include one or more caches (e.g., memory local to or included in the processor 1200 or other memory, such as RAM, ROM, DRAM, SDRAM, SRAM, MRAM, flash memory, etc.). In some implementations, the memory 1204 may reside within or on aAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT54 processor chipset (e.g., local to the processor 1200). In some other implementations, the memory 1204 may reside external to the processor chipset (e.g., remote to the processor 1200).
[0161] The memory 1204 may store computer-readable, computer-executable code including instructions that, when executed by the processor 1200, cause the processor 1200 to perform various functions described herein. The code may be stored in a non-transitory computer-readable medium such as system memory or another type of memory. The controller 1202 and / or the processor 1200 may be configured to execute computer-readable instructions stored in the memory 1204 to cause the processor 1200 to perform various functions. For example, the processor 1200 and / or the controller 1202 may be coupled with or to the memory 1204, the processor 1200, and the controller 1202, and may be configured to perform various functions described herein. In some examples, the processor 1200 may include multiple processors and the memory 1204 may include multiple memories. One or more of the multiple processors may be coupled with one or more of the multiple memories, which may, individually or collectively, be configured to perform various functions herein.
[0162] The one or more ALUs 1206 may be configured to support various operations in accordance with examples as described herein. In some implementations, the one or more ALUs 1206 may reside within or on a processor chipset (e.g., the processor 1200). In some other implementations, the one or more ALUs 1206 may reside external to the processor chipset (e.g., the processor 1200). One or more ALUs 1206 may perform one or more computations such as addition, subtraction, multiplication, and division on data. For example, one or more ALUs 1206 may receive input operands and an operation code, which determines an operation to be executed. One or more ALUs 1206 may be configured with a variety of logical and arithmetic circuits, including adders, subtractors, shifters, and logic gates, to process and manipulate the data according to the operation. Additionally, or alternatively, the one or more ALUs 1206 may support logical operations such as AND, OR, exclusive-OR (XOR), not-OR (NOR), and not-AND (NAND), enabling the one or more ALUs 1206 to handle conditional operations, comparisons, and bitwise operations.
[0163] The processor 1200 may support wireless communication in accordance with examples as disclosed herein. The processor 1200 may be configured to or operable to support at least one controller (e.g., the controller 1202) coupled with at least one memory (e.g., the memory 1204) and configured to cause the processor to transmit a first message including a request for an access token,Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT55 wherein the first message includes first AI / ML model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
[0164] Additionally, the processor 1200 may be configured to or operable to support any one or combination of where the first AI / ML model information includes an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML model retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request; the first AI / ML model information includes one or more of: an authorization scope parameter associated with the access token; an identifier for an AI / ML server; or an identifier for an AI / ML model repository; the authorization scope parameter includes one or more of: AI / ML service information associated with AI / ML model management; one or more of VAL service information, a VAL server ID, a VAL UE ID, AIMLE client ID, or AI / ML client ID; or one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID; the AI / ML service information associated with AI / ML model management includes information for one or more AI / ML model retrieval services; the apparatus includes an AI / ML client, an AIMLE client, a VAL server, or a VAL UE.
[0165] The processor 1200 may support wireless communication in accordance with examples as disclosed herein. The processor 1200 may be configured to or operable to support at least one controller (e.g., the controller 1202) coupled with at least one memory (e.g., the memory 1204) and configured to cause the processor to receive a first message including a request for an access token, wherein the first message includes first AI / ML model information; and transmit a second message including the access token, wherein the access token includes second AI / ML model information.
[0166] Additionally, the processor 1200 may be configured to or operable to support any one or combination of where the first AI / ML model information includes an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML model retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request; and the second AI / ML model information includes one or more of AI / ML model training information, AI / ML model storage information, or AI / ML model discovery information; the second AI / ML model information includes one or more of: authorization scope information for AI / ML model management; one or more of an AI / ML server ID, AIMLE client ID, or an AI / ML model repository ID; one or more of VAL service information or VAL serverAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT56 information; one or more allowed AI / ML model retrieval filters; one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID; or an authorization server ID.
[0167] The processor 1200 may support wireless communication in accordance with examples as disclosed herein. The processor 1200 may be configured to or operable to support at least one controller (e.g., the controller 1202) coupled with at least one memory (e.g., the memory 1204) and configured to cause the processor to transmit a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the AI / ML model request.
[0168] Additionally, the processor 1200 may be configured to or operable to support any one or combination of where the AI / ML model request includes a request for AI / ML model retrieval, and wherein the one or more of the security information, the authorization information, or the access token includes AI / ML model retrieval information; the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval; the AI / ML model request includes a request for AI / ML model training or AI / ML model training notification, and wherein the one or more of the authorization information or the access token includes AI / ML model training information; the AI / ML model request includes a request for AI / ML model storage management, and wherein the one or more of the authorization information or the access token includes AI / ML model storage management information; the apparatus includes an AI / ML client, an AIMLE client, or a VAL server; the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0169] The processor 1200 may support wireless communication in accordance with examples as disclosed herein. The processor 1200 may be configured to or operable to support at least one controller (e.g., the controller 1202) coupled with at least one memory (e.g., the memory 1204) and configured to cause the processor to receive a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message including a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information, or the access token.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT57
[0170] Additionally, the processor 1200 may be configured to or operable to support any one or combination of where the AI / ML model request includes a request for AI / ML model retrieval, and wherein the at least one controller is configured to cause the processor to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model retrieval that is generated based at least in part on a result of the authorization procedure; the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval; the AI / ML model request includes a request for AI / ML model training, and wherein the at least one controller is configured to cause the processor to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model training that is generated based at least in part on a result of the authorization procedure; the AI / ML model request includes a request for AI / ML model storage management, and wherein the at least one controller is configured to cause the processor to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model storage management that is generated based at least in part on a result of the authorization procedure; the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0171] Figure 13 illustrates an example of an NE 1300 in accordance with aspects of the present disclosure. The NE 1300 may include a processor 1302, a memory 1304, a controller 1306, and a transceiver 1308. The processor 1302, the memory 1304, the controller 1306, or the transceiver 1308, or various combinations thereof or various components thereof may be examples of means for performing various aspects of the present disclosure as described herein. These components may be coupled (e.g., operatively, communicatively, functionally, electronically, electrically) via one or more interfaces.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT58
[0172] The processor 1302, the memory 1304, the controller 1306, or the transceiver 1308, or various combinations or components thereof may be implemented in hardware (e.g., circuitry). The hardware may include a processor, a digital signal processor (DSP), an application-specific integrated circuit (ASIC), or other programmable logic device, or any combination thereof configured as or otherwise supporting a means for performing the functions described in the present disclosure.
[0173] The processor 1302 may include an intelligent hardware device (e.g., a general-purpose processor, a DSP, a CPU, an ASIC, an FPGA, or any combination thereof). In some implementations, the processor 1302 may be configured to operate the memory 1304. In some other implementations, the memory 1304 may be integrated into the processor 1302. The processor 1302 may be configured to execute computer-readable instructions stored in the memory 1304 to cause the NE 1300 to perform various functions of the present disclosure.
[0174] The memory 1304 may include volatile or non-volatile memory. The memory 1304 may store computer-readable, computer-executable code including instructions when executed by the processor 1302 cause the NE 1300 to perform various functions described herein. The code may be stored in a non-transitory computer-readable medium such as the memory 1304 or another type of memory. Computer-readable media includes both non-transitory computer storage media and communication media including any medium that facilitates transfer of a computer program from one place to another. A non-transitory storage medium may be any available medium that may be accessed by a general-purpose or special-purpose computer.
[0175] In some implementations, the processor 1302 and the memory 1304 coupled with the processor 1302 may be configured to cause the NE 1300 to perform one or more of the functions described herein (e.g., executing, by the processor 1302, instructions stored in the memory 1304). For example, the processor 1302 may support wireless communication at the NE 1300 in accordance with examples as disclosed herein.
[0176] The NE 1300 may support at least one memory (e.g., the memory 1304) and at least one processor (e.g., the processor 1302) coupled with the at least one memory and configured to cause the NE to transmit a first message including a request for an access token, wherein the first messageAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT59 includes first Al / ML model information; and receive a second message including the access token, wherein the access token includes second Al / ML model information.
[0177] Additionally, the NE 1300 may be configured to support any one or combination of where the first Al / ML model information includes an indication of one or more of an Al / ML model training service request, an Al / ML model storage service request, an Al / ML model retrieval service request, an Al / ML model management service request, or an Al / ML model discovery service request; the first Al / ML model information includes one or more of: an authorization scope parameter associated with the access token; an identifier for an artificial intelligence Al / ML server; or an identifier for an Al / ML model repository; the authorization scope parameter includes one or more of: Al / ML service information associated with Al / ML model management; one or more of VAL service information, a VAL server ID, a VAL UE ID, an AIMLE client ID, or Al / ML client ID; or one or more of an Al / ML model ID, an Al / ML model address, or an analytics ID; the Al / ML service information associated with Al / ML model management includes information for one or more Al / ML model retrieval services; the apparatus includes an Al / ML client, an AIMLE client, a VAL server, or a VAL UE.
[0178] The NE 1300 may support at least one memory (e.g., the memory 1304) and at least one processor (e.g., the processor 1302) coupled with the at least one memory and configured to cause the NE to receive a first message including a request for an access token, wherein the first message includes first Al / ML model information; and transmit a second message including the access token, wherein the access token includes second Al / ML model information.
[0179] Additionally, the NE 1300 may be configured to support any one or combination of where the first Al / ML model information includes an indication of one or more of an Al / ML model training service request, an Al / ML model storage service request, an Al / ML model retrieval service request, an Al / ML model management service request, or an Al / ML model discovery service request; and the second Al / ML model information includes one or more of Al / ML model training information, Al / ML model storage information, or Al / ML model discovery information; the second Al / ML model information includes one or more of: authorization scope information for Al / ML model management; one or more of an Al / ML server ID, AIMLE client ID, or an Al / ML model repository ID; one or more of VAL service information or VAL server information; one or moreAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT60 allowed AI / ML model retrieval filters; one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID; or an authorization server ID.
[0180] The NE 1300 may support at least one memory (e.g., the memory 1304) and at least one processor (e.g., the processor 1302) coupled with the at least one memory and configured to cause the NE to transmit a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message including a response to the AI / ML model request.
[0181] Additionally, the NE 1300 may be configured to support any one or combination of where the AI / ML model request includes a request for AI / ML model retrieval, and wherein the one or more of the security information, the authorization information, or the access token includes AI / ML model retrieval information; the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval; the AI / ML model request includes a request for AI / ML model training or AI / ML model training notification, and wherein the one or more of the authorization information or the access token includes AI / ML model training information; the AI / ML model request includes a request for AI / ML model storage management, and wherein the one or more of the authorization information or the access token includes AI / ML model storage management information; the apparatus includes an AI / ML client, an AIMLE client, or a VAL server; the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0182] The NE 1300 may support at least one memory (e.g., the memory 1304) and at least one processor (e.g., the processor 1302) coupled with the at least one memory and configured to cause the NE to receive a first message including an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message including a response to the AI / ML model request, wherein the response is generated based on at least in part on one or more of the security credentials, authorization information or the access token.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT61
[0183] Additionally, the NE 1300 may be configured to support any one or combination of where the AI / ML model request includes a request for AI / ML model retrieval, and wherein the at least one processor is configured to cause the NE to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model retrieval that is generated based at least in part on a result of the authorization procedure; the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval; the AI / ML model request includes a request for AI / ML model training, and wherein the at least one processor is configured to cause the NE to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model training that is generated based at least in part on a result of the authorization procedure; the AI / ML model request includes a request for AI / ML model storage management, and wherein the at least one processor is configured to cause the NE to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request includes a response to the request for AI / ML model storage management that is generated based at least in part on a result of the authorization procedure; the security credentials include one or more of a client certificate or a root certificate configured to validate a client certificate.
[0184] The controller 1306 may manage input and output signals for the NE 1300. The controller 1306 may also manage peripherals not integrated into the NE 1300. In some implementations, the controller 1306 may utilize an operating system such as iOS®, ANDROID®, WINDOWS®, or other operating systems. In some implementations, the controller 1306 may be implemented as part of the processor 1302.
[0185] In some implementations, the NE 1300 may include at least one transceiver 1308. In some other implementations, the NE 1300 may have more than one transceiver 1308. TheAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT62 transceiver 1308 may represent a wireless transceiver. The transceiver 1308 may include one or more receiver chains 1310, one or more transmitter chains 1312, or a combination thereof.
[0186] A receiver chain 1310 may be configured to receive signals (e.g., control information, data, packets) over a wireless medium. For example, the receiver chain 1310 may include one or more antennas to receive a signal over the air or wireless medium. The receiver chain 1310 may include at least one amplifier (e.g., a low-noise amplifier (LNA)) configured to amplify the received signal. The receiver chain 1310 may include at least one demodulator configured to demodulate the received signal and obtain the transmitted data by reversing the modulation technique applied during transmission of the signal. The receiver chain 1310 may include at least one decoder for decoding the demodulated signal to receive the transmitted data.
[0187] A transmitter chain 1312 may be configured to generate and transmit signals(e.g., control information, data, packets). The transmitter chain 1312 may include at least one modulator for modulating data onto a carrier signal, preparing the signal for transmission over a wireless medium. The at least one modulator may be configured to support one or more techniques such as amplitude modulation (AM), frequency modulation (FM), or digital modulation schemes like phase-shift keying (PSK) or quadrature amplitude modulation (QAM). The transmitter chain 1312 may also include at least one power amplifier configured to amplify the modulated signal to an appropriate power level suitable for transmission over the wireless medium. The transmitter chain 1312 may also include one or more antennas for transmitting the amplified signal into the air or wireless medium.
[0188] Figure 14 illustrates a flowchart of a method 1400 in accordance with aspects of the present disclosure. The operations of the method may be implemented by a UE or an NE as described herein. In some implementations, the UE or the NE may execute a set of instructions to control the functional elements of the UE or the NE to perform the described functions. It should be noted that the method described herein describes a possible implementation, and that the operations and the steps may be rearranged or otherwise modified and that other implementations are possible.
[0189] At 1402, the method may include transmitting a first message comprising a request for an access token, wherein the first message includes first AI / ML model information. The operations of 1402 may be performed in accordance with examples as described herein. In someAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT63 implementations, aspects of the operations of 1402 may be performed by a UE as described with reference to Figure 11 or an NE as described with reference to Figure 13.
[0190] At 1404, the method may include receiving a second message including the access token, wherein the access token includes second AI / ML model information. The operations of 1404 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1404 may be performed by a UE as described with reference to Figure 11 or an NE as described with reference to Figure 13.
[0191] Figure 15 illustrates a flowchart of a method 1500 in accordance with aspects of the present disclosure. The operations of the method may be implemented by an NE as described herein. In some implementations, the NE may execute a set of instructions to control the functional elements of the NE to perform the described functions. It should be noted that the method described herein describes a possible implementation, and that the operations and the steps may be rearranged or otherwise modified and that other implementations are possible.
[0192] At 1502, the method may include receiving a first message comprising a request for an access token, wherein the first message includes first AI / ML model information. The operations of 1502 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1502 may be performed by an NE as described with reference to Figure 13.
[0193] At 1504, the method may include transmitting a second message including the access token, wherein the access token includes second AI / ML model information. The operations of 1504 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1504 may be performed by an NE as described with reference to Figure 13.
[0194] Figure 16 illustrates a flowchart of a method 1600 in accordance with aspects of the present disclosure. The operations of the method may be implemented by a UE or an NE as described herein. In some implementations, the UE or the NE may execute a set of instructions to control the functional elements of the UE or the NE to perform the described functions. It should be noted that the method described herein describes a possible implementation, and that the operations and the steps may be rearranged or otherwise modified and that other implementations are possible.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT64
[0195] At 1602, the method may include transmitting a first message comprising an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token. The operations of 1602 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1602 may be performed by a UE as described with reference to Figure 11 or an NE as described with reference to Figure 13.
[0196] At 1604, the method may include receiving a second message comprising a response to the AI / ML model request. The operations of 1604 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1604 may be performed by a UE as described with reference to Figure 11 or an NE as described with reference to Figure 13.
[0197] Figure 17 illustrates a flowchart of a method 1700 in accordance with aspects of the present disclosure. The operations of the method may be implemented by an NE as described herein. In some implementations, the NE may execute a set of instructions to control the functional elements of the NE to perform the described functions. It should be noted that the method described herein describes a possible implementation, and that the operations and the steps may be rearranged or otherwise modified and that other implementations are possible.
[0198] At 1702, the method may include receiving a first message comprising an AI / ML model request, wherein the first message includes one or more of security credentials, authorization information, or an access token. The operations of 1702 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1702 may be performed by an NE as described with reference to Figure 13.
[0199] At 1704, the method may include transmitting a second message comprising a response to the AI / ML model request, wherein the response is generated based at least in part on one or more of the security credentials, authorization information or the access token. The operations of 1704 may be performed in accordance with examples as described herein. In some implementations, aspects of the operations of 1704 may be performed by an NE as described with reference to Figure 13.
[0200] The description herein is provided to enable a person having ordinary skill in the art to make or use the disclosure. Various modifications to the disclosure will be apparent to a personAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT65 having ordinary skill in the art, and the generic principles defined herein may be applied to other variations without departing from the scope of the disclosure. Thus, the disclosure is not limited to the examples and designs described herein but is to be accorded the broadest scope consistent with the principles and novel features disclosed herein.Attorney Ref. No. SMM920240310-WO-PCT
Claims
Lenovo Ref. No. SMM920240310-WO-PCT66CLAIMSWhat is claimed is:
1. An apparatus for wireless communication, comprising: at least one memory; and at least one processor coupled with the at least one memory and operable to cause the apparatus to: transmit a first message comprising a request for an access token, wherein the first message includes first artificial intelligence (Al) machine learning (ML) model information; and receive a second message including the access token, wherein the access token includes second AI / ML model information.
2. The apparatus of claim 1, wherein the first AI / ML model information comprises an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML model retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request.
3. The apparatus of claim 1 , wherein the first AI / ML model information comprises one or more of: an authorization scope parameter associated with the access token; an identifier for an artificial intelligence AI / ML server; or an identifier for an AI / ML model repository.
4. The apparatus of claim 3, wherein the authorization scope parameter comprises one or more of:AI / ML service information associated with AI / ML model management; one or more of vertical application layer (VAL) service information, a VAL server identifier (ID), a VAL user equipment (UE) ID, AI / ML enabler (AIMLE) client ID, or AI / ML client ID; or one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT675. The apparatus of claim 4, wherein the AI / ML service information associated with AI / ML model management comprises information for one or more AI / ML model retrieval services.
6. An apparatus for wireless communication, comprising: at least one memory; and at least one processor coupled with the at least one memory and operable to cause the apparatus to: receive a first message comprising a request for an access token, wherein the first message includes first artificial intelligence (Al) machine learning (ML) model information; and transmit a second message including the access token, wherein the access token includes second AI / ML model information.
7. The apparatus of claim 6, wherein: the first AI / ML model information comprises an indication of one or more of an AI / ML model training service request, an AI / ML model storage service request, an AI / ML model retrieval service request, an AI / ML model management service request, or an AI / ML model discovery service request; and the second AI / ML model information comprises one or more of AI / ML model training information, AI / ML model storage information, or AI / ML model discovery information.
8. The apparatus of claim 6, wherein the second AI / ML model information comprises one or more of: authorization scope information for AI / ML model management; one or more of an AI / ML server identifier (ID), AI / ML enabler (AIMLE) client ID, or an AI / ML model repository ID; one or more of vertical application layer (VAL) service information or VAL server information; one or more allowed AI / ML model retrieval filters; one or more of an AI / ML model ID, an AI / ML model address, or an analytics ID; orAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT68 an authorization server ID.
9. An apparatus for wireless communication, comprising: at least one memory; and at least one processor coupled with the at least one memory and operable to cause the apparatus to: transmit a first message comprising an artificial intelligence (Al) machine learning (ML) model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and receive a second message comprising a response to the AI / ML model request.
10. The apparatus of claim 9, wherein the AI / ML model request comprises a request for AI / ML model retrieval, and wherein the one or more of the security information, the authorization information, or the access token comprises AI / ML model retrieval information.
11. The apparatus of claim 10, wherein the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval.
12. The apparatus of claim 9, wherein the AI / ML model request comprises a request for AI / ML model training or AI / ML model training notification, and wherein the one or more of the authorization information or the access token comprises AI / ML model training information.
13. The apparatus of claim 9, wherein the AI / ML model request comprises a request for AI / ML model storage management, and wherein the one or more of the authorization information or the access token comprises AI / ML model storage management information.
14. The apparatus of claim 9, wherein the apparatus comprises an AI / ML client, an AI / ML enabler (AIMLE) client, or a vertical application layer (VAL) server.Attorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT6915. The apparatus of claim 9, wherein the security credentials comprise one or more of a client certificate or a root certificate configured to validate a client certificate.
16. An apparatus for wireless communication, comprising: at least one memory; and at least one processor coupled with the at least one memory and operable to cause the apparatus to: receive a first message comprising an artificial intelligence (Al) machine learning (ML) model request, wherein the first message includes one or more of security credentials, authorization information, or an access token; and transmit a second message comprising a response to the AI / ML model request, wherein the response is generated based on at least in part on one or more of the security credentials, authorization information or the access token.
17. The apparatus of claim 16, wherein the AI / ML model request comprises a request for AI / ML model retrieval, and wherein the at least one processor is configured to cause the apparatus to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request comprises a response to the request for AI / ML model retrieval that is generated based at least in part on a result of the authorization procedure.
18. The apparatus of claim 17, wherein the request for AI / ML model retrieval is associated with one or more of a request to subscribe to AI / ML model retrieval, a request to subscribe to AI / ML model retrieval notification, a request to subscribe to AI / ML model update, or a request to unsubscribe to AI / ML model retrieval.
19. The apparatus of claim 16, wherein the AI / ML model request comprises a request for AI / ML model training, and wherein the at least one processor is configured to cause the apparatus to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / MLAttorney Ref. No. SMM920240310-WO-PCTLenovo Ref. No. SMM920240310-WO-PCT70 model request comprises a response to the request for AI / ML model training that is generated based at least in part on a result of the authorization procedure.
20. The apparatus of claim 16, wherein the Al / ML model request comprises a request for AI / ML model storage management, and wherein the at least one processor is configured to cause the apparatus to: perform an authorization procedure using at least a portion of the one or more of the security credentials, the authorization information, or the access token, wherein the response to the AI / ML model request comprises a response to the request for AI / ML model storage management that is generated based at least in part on a result of the authorization procedure.Attorney Ref. No. SMM920240310-WO-PCT