公开(公告)号：US20230262097A1

公开(公告)日：2023-08-17

申请号：US17673310

申请日：2022-02-16

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert E. Barton ,  Stephen Michael Orr

IPC: H04L9/40 ,  H04L61/50 ,  H04L101/622 ,  H04W12/00

CPC classification number: H04L63/205 ,  H04L61/20 ,  H04L61/6022 ,  H04W12/009

Abstract: Techniques are provided for client-driven Randomized and Changing Media Access Control (MAC) address (RCM) mechanisms. In one example, a wireless client is configured to wirelessly communicate with a wireless network. The wireless client obtains data relating to a level of security for one or more MAC addresses of the wireless client. Based on the data, the wireless client computes a score that represents the level of security for the one or more MAC addresses. Using the score, the wireless client determines when or how frequently to rotate the one or more MAC addresses. Based on determining when or how frequently to rotate the one or more MAC addresses, the wireless client rotates the one or more MAC addresses.

公开(公告)号：US11729220B2

公开(公告)日：2023-08-15

申请号：US17301928

申请日：2021-04-19

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Bart A. Brinckman ,  Jerome Henry ,  Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Matthew MacPherson

IPC: H04L9/40

CPC classification number: H04L63/20 ,  H04L63/08

Abstract: A method includes receiving, at an access node of a local network, a connection request from a device and in response to the connection request, establishing a connection with an identity provider. The device, the access node, the local network, and the identity provider are members of an identity federation. The method further includes receiving an indication that the device previously violated a network policy of a network different from the local network and after the device is authenticated with the identity provider, determining, by the access node and based on the indication, whether to allow the device to communicate over the access node.

公开(公告)号：US20230199559A1

公开(公告)日：2023-06-22

申请号：US18171462

申请日：2023-02-20

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Vinay Saini ,  Sowbhagya Hanumaiah Sowmya

IPC: H04W28/086 ,  H04W16/14 ,  H04W24/08

CPC classification number: H04W28/0804 ,  H04W16/14 ,  H04W24/08 ,  H04W72/52

Abstract: Load balancing for saturated wireless may be provided. A computing device may determine that an Access Point (AP) has reached a saturation point. A first Service Device (SD) having a first SD coverage area that overlaps an AP coverage area associated with the AP may be identified. Then a license to operate within a frequency spectrum segment for the first SD coverage area may be obtained. A plurality of user devices may be moved from the AP to the first SD. The first SD may then service the plurality of user devices using at least a portion of the frequency spectrum segment.

公开(公告)号：US11677859B2

公开(公告)日：2023-06-13

申请号：US17445159

申请日：2021-08-16

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Jerome Henry ,  Vinay Saini ,  Vishal S. Desai

IPC: G06F15/16 ,  H04L67/60 ,  H04L12/46

CPC classification number: H04L67/60 ,  H04L12/4633

Abstract: Techniques for federated service registries are provided. A first access server determines a first plurality of services available within a local network associated with the first access server, as well as a second plurality of services available at one or more remote networks. A request for a first service is received from a client device, where the first service is not included in the first plurality of services and is included in the second plurality of services. A tunnel is established from the client device to one or more remote networks.

公开(公告)号：US20230180049A1

公开(公告)日：2023-06-08

申请号：US18103881

申请日：2023-01-31

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Jerome Henry ,  Patrick Wetterwald ,  Jean-Philippe Vasseur

IPC: H04W28/02 ,  H04W28/086 ,  H04W28/08

CPC classification number: H04W28/0236 ,  H04W28/0812 ,  H04W28/0975 ,  H04W28/0268

Abstract: In one embodiment, a method comprises causing, by a network controller device, a first access point (AP) device to initiate a reverse sounding operation comprising wireles sly requesting a mobile constrained network device to transmit a null data packet (NDP) at a first transmission interval, wirelessly receiving the NDP at the first transmission interval, and generating a reception report describing reception of the NDP and including beamforming information; causing, by the network controller device, a second AP device to generate a corresponding reception report describing a corresponding wireless detection of the NDP at the first transmission interval; and causing, by the network controller device, the mobile constrained network device to connect to a selected one of the first AP device or the second AP device for an identified data flow based on the respective reception reports from the first and second AP devices.

公开(公告)号：US11671331B2

公开(公告)日：2023-06-06

申请号：US17482408

申请日：2021-09-22

Applicant: Cisco Technology, Inc.

Inventor： Shankar Ramanathan ,  Muhilan Natarajan ,  Gonzalo Salgueiro ,  Jerome Henry ,  Robert Edgar Barton

IPC: H04L41/147 ,  G06N3/08 ,  H04L41/22 ,  H04L41/16

CPC classification number: H04L41/147 ,  G06N3/08 ,  H04L41/16 ,  H04L41/22

Abstract: Aggregated health information for a managed network may be retrieved and processed in response to changes to the managed network topology, configuration, or software. In response to receiving notification that a change to a component of the managed network has occurred, a change audit analysis engine can retrieve performance indicator information from components along a traceroute including the component which underwent the change. The retrieved performance indicator information can be processed by a memory based neural network to predict an impact of the change on the aggregated health of the managed network. The predicted impact can be compared to network health information retrieved through an ongoing basis and issues can be determined based on a comparison of the predict impact and the retrieved health information.

公开(公告)号：US20230164710A1

公开(公告)日：2023-05-25

申请号：US17533987

申请日：2021-11-23

Applicant: Cisco Technology, Inc.

Inventor： Malcolm Muir Smith ,  Jerome Henry

IPC: H04W56/00

CPC classification number: H04W56/001 ,  H04W56/0035

Abstract: A reverse time synchronization may be performed between a sending device and a receiving device. Then a Time Error (TE) between the sending device and the receiving device may be determined based on the reverse time synchronization. A gate time on the receiving device may be scheduled based on the determined TE.

公开(公告)号：US11653206B2

公开(公告)日：2023-05-16

申请号：US17301971

申请日：2021-04-20

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Robert E. Barton ,  Bart A. Brinckman

IPC: H04W12/08 ,  H04W12/06 ,  H04W36/00 ,  H04W60/06 ,  H04W76/11 ,  H04W12/0431

CPC classification number: H04W12/08 ,  H04W12/0431 ,  H04W12/06 ,  H04W36/0022 ,  H04W60/06 ,  H04W76/11

Abstract: Techniques for trusted roaming between identity federation based networks. A first wireless access point (AP) receives a roaming request from a wireless station (STA), to roam from the first AP to a second AP. The first AP is associated with a first access network provider (ANP), the second AP is associated with a second ANP, and the first ANP is different from the second ANP. Authentication information relating to the STA is transmitted from the first ANP to the second ANP using a trusted connection. The trusted connection was previously established between the first ANP and the second ANP based on a query to an identity federation to which both the first and second ANP belong. The STA is de-associated from the first AP. The STA is re-associated at the second AP using the transmitted authentication information.

公开(公告)号：US11641635B2

公开(公告)日：2023-05-02

申请号：US17445060

申请日：2021-08-13

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Matthew A. Silverman ,  John M. Swartz ,  Vishal S. Desai ,  Robert E. Barton

IPC: H04W4/06 ,  H04W64/00 ,  G01S13/74

Abstract: Coordinated radio fine time measurement is provided via sending, from a client device, a ranging request to a first radio; receiving a first response sent at a first time from the first radio over a first channel; receiving a second response sent at the first time from a second radio over a second channel; and calculating, based on times of flight for the first response and the second response, a location of the client device relative to the first radio and to the second radio. Coordinated radio fine time measurement is also proved via in response to receiving, at an Access Point (AP), a ranging request from a client device and determining to respond using multiple channels: sending, both at a first time, a first response from a first radio over a first channel a second response from a second radio over a different channel.

公开(公告)号：US11632671B2

公开(公告)日：2023-04-18

申请号：US17215138

申请日：2021-03-29

Applicant: Cisco Technology, Inc.

Inventor： John Martin Graybeal ,  Jerome Henry ,  Paul Anthony Polakos ,  Louis Gwyn Samuel ,  John George Apostolopoulos

IPC: H04W8/02 ,  H04W84/12 ,  H04W8/26

Abstract: Correlating devices and clients across addresses may be provided. A first address associated with a client device may be received. When the client device is not connected to a network, first location data associated with the first address may be obtained using a passive technique. A second address and second location data associated with the second address may then be obtained using an active technique. It may then be determined that the first location data and the second location data correlate. In response to determining that the first location data and the second location data correlate, it may be determined that the client device has changed from the first address to the second address.