Patent search ap:("CISCO TECHNOLOGY Page INC.") AND inv:"Navindra Yadav"

111.

发明授权
Host route convergence based on sequence values 有权
Title translation: 基于序列值的主机路由收敛

公开(公告)号：US09270588B2

公开(公告)日：2016-02-23

申请号：US14255182

申请日：2014-04-17

Applicant: Cisco Technology, Inc.

Inventor： Suresh Katukam , Navindra Yadav , Venkata Tanikella , Abhay Roy

IPC: H04L12/721 , H04W40/36

CPC classification number: H04L45/70 , H04W40/36

Abstract: In an example embodiment, a method is provided that assigns a sequence value to a host. The host is identified by a host network layer address. After the assignment, the host network layer address and the sequence value are included in an advertisement for transmission. In another example embodiment, another method is provided. Here, a first sequence value associated with the host network layer address is received from a network device. In addition, a second sequence value associated with the same host network layer address is received from a different network device. The first sequence value is ranked relative to the second sequence value and data is transmitted to the network device based on the ranking.

Abstract translation: 在示例实施例中，提供了向主机分配序列值的方法。主机由主机网络层地址标识。在分配之后，主机网络层地址和序列值被包括在用于传输的广告中。在另一示例实施例中，提供了另一种方法。这里，从网络设备接收与主机网络层地址相关联的第一序列值。此外，从不同的网络设备接收与相同主机网络层地址相关联的第二序列值。第一序列值相对于第二序列值排序，并且基于排名将数据发送到网络设备。

112.

发明申请
MISCABLING DETECTION PROTOCOL 有权
Title translation: 错误检测协议

公开(公告)号：US20150124643A1

公开(公告)日：2015-05-07

申请号：US14448733

申请日：2014-07-31

Applicant: Cisco Technology, Inc.

Inventor： Ayaskant Pani , Navindra Yadav , Krishna Doddapaneni

IPC: H04L12/947 , H04L12/931 , H04L12/24 , H04L12/18

CPC classification number: H04L12/18 , H04L12/4633 , H04L41/082 , H04L41/12 , H04L41/22 , H04L43/0811 , H04L43/50 , H04L45/02 , H04L45/12 , H04L45/16 , H04L45/18 , H04L45/20 , H04L45/28 , H04L45/48 , H04L45/64 , H04L49/201 , H04L49/25 , H04L61/103 , H04L61/2007 , H04L61/2061 , H04L61/6004 , H04L69/22

Abstract: Systems, methods, and non-transitory computer-readable storage media for a miscabling detection protocol. One or more switches can periodically send miscabling protocol (MCP) packets on non-fabric ports on all configured EPG VLANs. A first switch located at a network fabric receives a miscabling protocol (MCP) packet indicating an identity of an originating switch and a port number of an originating port of the MCP packet via a receiving port on the first switch, wherein the MCP packet is received from an external network connected to the receiving port, and wherein the originating switch and originating port are also located at the network fabric and connected to the external network. Based on the MCP packet, the first switch then detects a loop between the receiving port, the originating port, and the external network. Next, the first switch blocks the receiving port or the originating port in response to detecting the loop.

Abstract translation: 系统，方法和非暂时的计算机可读存储介质，用于混合检测协议。一个或多个交换机可以在所有配置的EPG VLAN上的非Fabric端口周期性地发送miscable协议（MCP）数据包。位于网络结构的第一交换机经由第一交换机上的接收端口接收指示发起交换机的标识和MCP分组的始发端口的端口号的混合协议（MCP）分组，其中接收到该MCP分组来自连接到接收端口的外部网络，并且其中始发交换机和始发端口也位于网络结构处并连接到外部网络。基于MCP分组，第一交换机然后检测接收端口，始发端口和外部网络之间的环路。接下来，响应于检测到环路，第一交换机阻塞接收端口或始发端口。

113.

发明申请
SUBNET SCOPED MULTICAST/BROADCAST PACKET DISTRIBUTION OVER A ROUTED NETWORK 审中-公开
Title translation: 分布式网络上的SUBNET SCOPED MULTICAST / BROADCAST PACKET DISTRIBUTION

公开(公告)号：US20140192806A1

公开(公告)日：2014-07-10

申请号：US14204938

申请日：2014-03-11

Applicant: Cisco Technology, Inc

Inventor： Navindra Yadav , James Rivers , Guanaprakasam Pandian , Pauline Shuen , Scott Emery

IPC: H04L12/761

CPC classification number: H04L12/56 , H04L12/1868 , H04L12/1886 , H04L45/16

Abstract: In one embodiment, a subnet-scoped multicast packet is received on an interface of a forwarding device that is connected to a host device of a subnet of a forwarding domain. The received subnet-scoped multicast packet is transmitted from one or more other interfaces of the forwarding device that are connected to one or more other host devices of the subnet. The received subnet-scoped multicast packet is also encapsulated with an additional header. The encapsulated subnet-scoped multicast packet is forwarded from the forwarding device to an intermediate router which routes the encapsulated subnet-scoped multicast packet to one or more other forwarding devices configured to decapsulate the encapsulated subnet-scoped multicast packet and transmit the decapsulated subnet-scoped multicast packet to one or more connected host devices of an additional portion of the subnet.

Abstract translation: 在一个实施例中，在连接到转发域的子网的主机设备的转发设备的接口上接收子网范围的组播分组。接收到的子网范围的组播数据包是从连接到子网的一个或多个其他主机设备的转发设备的一个或多个其他接口传送的。接收到的子网范围的组播数据包也封装了一个额外的头。封装的子网范围组播数据包从转发设备转发到中间路由器，路由器将封装的子网范围组播数据包路由到一个或多个其他转发设备，该转发设备配置为对封装的子网范围组播数据包进行解封装，并发送解封装的子网范围组播分组到子网的附加部分的一个或多个连接的主机设备。

114.

发明授权
Security policies for software call stacks 有权

公开(公告)号：US12277211B2

公开(公告)日：2025-04-15

申请号：US18646114

申请日：2024-04-25

Applicant: Cisco Technology, Inc.

Inventor： Ashutosh Kulshreshtha , Andy Sloane , Hiral Shashikant Patel , Uday Krishnaswamy Chettiar , Oliver Kempe , Bharathwaj Sankara Viswanathan , Navindra Yadav

IPC: G06F21/52 , G06F18/214 , G06F21/51 , G06F21/57 , G06N20/00

Abstract: The present disclosure provides systems, methods, and computer-readable media for implementing security polices at software call stack level. In one example, a method includes generating a call stack classification scheme for an application, detecting a call stack during deployment of the application; using the call stack classification scheme during runtime of the application, classifying the detected call stack as one of an authorized call stack or an unauthorized call stack to yield a classification; and applying a security policy based on the classification.

115.

发明授权
Technologies for managing compromised sensors in virtualized environments 有权

公开(公告)号：US12224921B2

公开(公告)日：2025-02-11

申请号：US18429022

申请日：2024-01-31

Applicant: Cisco Technology, Inc.

Inventor： Navindra Yadav , Abhishek Ranjan Singh , Anubhav Gupta , Shashidhar Gandham , Jackson Ngoc Ki Pang , Shih-Chun Chang , Hai Trong Vu

IPC: G06F21/53 , G06F3/0482 , G06F3/04842 , G06F3/04847 , G06F9/455 , G06F16/11 , G06F16/13 , G06F16/16 , G06F16/17 , G06F16/174 , G06F16/23 , G06F16/2457 , G06F16/248 , G06F16/28 , G06F16/29 , G06F16/9535 , G06F21/55 , G06F21/56 , G06N20/00 , G06N99/00 , G06T11/20 , H04J3/06 , H04J3/14 , H04L1/24 , H04L7/10 , H04L9/08 , H04L9/32 , H04L9/40 , H04L41/046 , H04L41/0668 , H04L41/0803 , H04L41/0806 , H04L41/0816 , H04L41/0893 , H04L41/12 , H04L41/16 , H04L41/22 , H04L43/02 , H04L43/026 , H04L43/04 , H04L43/045 , H04L43/062 , H04L43/08 , H04L43/0805 , H04L43/0811 , H04L43/0829 , H04L43/0852 , H04L43/0864 , H04L43/0876 , H04L43/0882 , H04L43/0888 , H04L43/10 , H04L43/106 , H04L43/12 , H04L43/16 , H04L45/00 , H04L45/302 , H04L45/50 , H04L45/74 , H04L47/11 , H04L47/20 , H04L47/2441 , H04L47/2483 , H04L47/28 , H04L47/31 , H04L47/32 , H04L61/5007 , H04L67/01 , H04L67/10 , H04L67/1001 , H04L67/12 , H04L67/51 , H04L67/75 , H04L69/16 , H04L69/22 , H04W72/54 , H04W84/18 , H04L67/50

Abstract: Systems, methods, and computer-readable media for managing compromised sensors in multi-tiered virtualized environments. In some embodiments, a system can receive, from a first capturing agent deployed in a virtualization layer of a first device, data reports generated based on traffic captured by the first capturing agent. The system can also receive, from a second capturing agent deployed in a hardware layer of a second device, data reports generated based on traffic captured by the second capturing agent. Based on the data reports, the system can determine characteristics of the traffic captured by the first capturing agent and the second capturing agent. The system can then compare the characteristics to determine a multi-layer difference in traffic characteristics. Based on the multi-layer difference in traffic characteristics, the system can determine that the first capturing agent or the second capturing agent is in a faulty state.

116.

发明授权
Determining application attack surface for network applications 有权

公开(公告)号：US12050698B2

公开(公告)日：2024-07-30

申请号：US18327276

申请日：2023-06-01

Applicant: Cisco Technology, Inc.

Inventor： Supreeth Hosur Nagesh Rao , Navindra Yadav , Prasannakumar Jobigenahally Malleshaiah , Tapan Shrikrishna Patwardhan , Umamaheswaran Arumugam , Darshan Shrinath Purandare , Aiyesha Ma , Songlin Li

IPC: G06F21/00 , G06F21/57 , H04L9/40

CPC classification number: G06F21/577 , H04L63/1433 , H04L63/20 , G06F2221/033

Abstract: Systems, methods, and computer-readable media for attack surface score computation can include the following processes. An attack surface score service receives information identifying open ports associated with an application. The attack surface score service determines an attack surface score for the application based on the information and common attack ports. A policy engine determines whether to implement a policy for reducing vulnerability of the application to attacks to yield a determination. The policy engine implements a vulnerability reduction policy based on the determination.