公开(公告)号：US11778463B2

公开(公告)日：2023-10-03

申请号：US17069047

申请日：2020-10-13

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi

IPC: H04L29/00 ,  H04W12/06 ,  H04W8/24 ,  H04W12/0471 ,  H04W84/12

CPC classification number: H04W12/06 ,  H04W8/24 ,  H04W12/0471 ,  H04W84/12

Abstract: Presented herein are techniques to provide for the ability to utilize 3GPP-generated Session Keys that can be generated via a primary authentication or a secondary authentication process for a user equipment (UE) via a private wireless wide area (WWA) access network in which the keys can be leveraged to facilitate connection of the UE to a wireless local area (WLA) access network. In one example, a method may include obtaining a request to authenticate a UE for connection to a WWA access network; determining that the UE is capable of a Fast Transition (FT) capability; authenticating the UE for connection to the WWA access in which, based on the FT capability, the authenticating includes generating a root security key for the UE; and upon determining that the UE is attempting to access the WLA access network, providing the root security key for the UE to the WLA access network.

公开(公告)号：US11777935B2

公开(公告)日：2023-10-03

申请号：US16743630

申请日：2020-01-15

Applicant: Cisco Technology, Inc.

Inventor： Indermeet Singh Gandhi ,  Srinath Gundavelli

IPC: H04L29/06 ,  H04L9/40

CPC classification number: H04L63/0892 ,  H04L63/062 ,  H04L63/0876 ,  H04L63/18

Abstract: Methods are provided for generating an enterprise key for access to an enterprise network via another access network, as part of a secondary authentication to an external data network through another access network. In these methods, an enterprise authentication device obtains, via a first access network, a request to authenticate a user device onto an enterprise network. The user device is connected to the first access network. The method further includes the enterprise authentication device authenticating the user device to obtain access to the enterprise network via the first access network and generating the enterprise key for the user device to provide access to the enterprise network via a second access network.

公开(公告)号：US11678402B2

公开(公告)日：2023-06-13

申请号：US17142914

申请日：2021-01-06

Applicant: Cisco Technology, Inc.

Inventor： Abhishek Dhammawat ,  Mahesh Satyanarayana ,  Srinath Gundavelli

IPC: H04W80/00 ,  H04W80/10 ,  H04L67/14 ,  H04W76/12 ,  H04W76/11

CPC classification number: H04W80/10 ,  H04L67/14 ,  H04W76/11 ,  H04W76/12

Abstract: A network function is configured to initiate a bulk session cleanup with a single release request. The network function detects a configuration change to a wireless network system that affects multiple user sessions for multiple user devices. The network function generates a single bulk session release request identifying the affected user sessions and provides the single bulk session release request to at least one other network function responsible for the user sessions.

公开(公告)号：US20230103179A1

公开(公告)日：2023-03-30

申请号：US17488392

申请日：2021-09-29

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi

IPC: H04W24/04 ,  H04W76/10

Abstract: In an enterprise network environment where there is deployment of two (or more) types of access network technologies, when a terminal device is unable to connect to one of the access networks, techniques are presented herein that the terminal device and the network can use for sharing error conditions/cause codes/remedial hints on the access technology that the terminal device is able to connect. With this approach, self-healing, proactive reporting and diagnostic actions are brought to terminal device access connectivity issues.

公开(公告)号：US11582066B2

公开(公告)日：2023-02-14

申请号：US16720755

申请日：2019-12-19

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Sangram Kishore Lakkaraju ,  Alberto Rodriguez Natal ,  Fabio R. Maino ,  Timothy Peter Stammers

IPC: H04L12/46 ,  H04L45/74 ,  H04L47/24 ,  H04L49/25 ,  H04L61/2592 ,  H04L69/22 ,  H04L101/622

Abstract: Techniques are described for extending a cellular quality of service bearer through an enterprise fabric network. In one example, a method obtaining, by a first switch of a network, a packet to be delivered to a client connected to the network via a cellular access point; identifying quality of service (QoS) bearer information associated with the packet, wherein the QoS bearer information is associated with a radio access bearer for the client and the QoS bearer information comprises a bearer indicator and a QoS class identifier; providing a fabric tunnel encapsulation for the packet, wherein the bearer indicator and the QoS class identifier are included within the fabric tunnel encapsulation of the packet; and forwarding the packet within the fabric tunnel encapsulation toward a second switch of the network via a fabric tunnel, wherein the cellular access point is connected to the network via the second switch.

公开(公告)号：US20230017423A1

公开(公告)日：2023-01-19

申请号：US17375765

申请日：2021-07-14

Applicant: Cisco Technology, Inc.

Inventor： Ravi Kiran Guntupalli ,  Srinath Gundavelli ,  Abhishek Dhammawat

IPC: H04W76/10 ,  H04W48/20 ,  H04W68/00

Abstract: Disclosed are embodiments that leverage a central control plane of a managed 5G network service architecture across multiple serviced tenants by deploying tenant specific user plane function (UPF) and gNB components within tenant managed compute infrastructure. To enable this architecture, the disclosed embodiments assign gNBs and UPF instances to specific tenants and communicate those assignments to core components. Policies can be defined and applied to specific tenants from the central control plane. Inbound data routing to a specific tenant is accomplished by referencing a data store in the control plane that identifies which gNBs are assigned to a tenant associated with the incoming data. Those gNBs are then paged to service the incoming data.

公开(公告)号：US11553371B2

公开(公告)日：2023-01-10

申请号：US17084150

申请日：2020-10-29

Applicant: Cisco Technology, Inc.

Inventor： Abhishek Dhammawat ,  Srinath Gundavelli ,  Mahesh Satyanarayana

IPC: H04W28/02 ,  H04W28/24 ,  H04W76/20

Abstract: In one illustrative example, a user plane function (UPF) may detect initial traffic for an application for a user equipment (UE) for which no current dedicated Quality of Service (QoS) flow is established. In response, the UPF may send, to a control plane function, a message which indicates a request for creating a dedicated QoS Flow for traffic for the application for the UE. The message may include flow metadata and an application identifier obtained in detecting the initial traffic. A QoS Flow may then be created for the traffic based on a selected QoS policy associated with the application identifier. Subsequently, the UPF may determine that a measured time period of traffic inactivity for the QoS Flow is outside a limit set by a threshold. Based on the determining, the UPF may send, to the control plane function, a message which indicates a request for deleting the QoS Flow.

公开(公告)号：US20220385571A1

公开(公告)日：2022-12-01

申请号：US17332264

申请日：2021-05-27

Applicant: Cisco Technology, Inc.

Inventor： Abhishek Dhammawat ,  Srinath Gundavelli

IPC: H04L12/721 ,  H04L12/725 ,  H04L29/08

Abstract: A user plane function (UPF) node may receive a packet for traffic associated with a user equipment (UE). During packet classification, the UPF node may identify that a packet filter for the packet is not found in a packet filter set of an existing Quality of Service (QoS) Flow. In response, the UPF node may configure the packet filter in the packet filter set of the QoS Flow based on a flow tuple of the packet. The UPF node may send, to a control plane function node, a message which indicates a request for adding the flow tuple to the QoS Flow. The message may be for triggering communication of a message which indicates a session modification command for receipt by the UE, for adding an uplink packet filter that is based on the flow tuple for the QoS Flow.

公开(公告)号：US20220369163A1

公开(公告)日：2022-11-17

申请号：US17321841

申请日：2021-05-17

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi ,  Mark Grayson ,  Arun G. Khanna

IPC: H04W28/08 ,  H04W28/02 ,  H04W28/24 ,  H04W72/04 ,  H04W88/06

Abstract: Presented herein are techniques to facilitate dynamic switching for user equipment between unique cell and shared cell operating modes based on application traffic. In one example, a method may include determining, a quality of service (QoS) to be provided for a traffic flow of a user equipment (UE) in which the mobile network includes a radio access network (RAN) including a plurality of radio units (RUs) in which at least two RUs provides a shared cell and each RU provides a unique cell; identifying an operating mode for the UE based on the QoS in which the operating mode indicates whether the traffic flow is to be communicated using a shared cell or a unique cell operating mode; and causing the UE to communicate the traffic flow using the shared cell the unique cell operating mode.

公开(公告)号：US11496888B2

公开(公告)日：2022-11-08

申请号：US16718895

申请日：2019-12-18

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Indermeet Singh Gandhi ,  Sudhir Kumar Jain ,  Louis Gwyn Samuel

IPC: H04W4/00 ,  H04W8/26 ,  H04W36/14 ,  H04W80/04 ,  H04L61/5007

Abstract: In one example, a Network Policy Function (NPF) obtains a first identifier for a User Equipment (UE) based on communications between the UE and a first access network of a system, and an Internet Protocol (IP) address used by the UE to communicate over the first access network. The NPF obtains a second identifier for the UE based on communications between the UE and a second access network of the system. The NPF determines that the UE used the IP address to communicate over the first access network of the system based on a correlation between the first identifier for the UE and the second identifier for the UE. The NPF provides the IP address to the UE, and the UE uses the IP address to communicate over the second access network.