公开(公告)号：US10826803B2

公开(公告)日：2020-11-03

申请号：US15982806

申请日：2018-05-17

Applicant: Cisco Technology, Inc.

Inventor： Shashi Gandham ,  Navindra Yadav ,  Janardhanan Radhakrishnan ,  Hoang-Nam Nguyen ,  Umesh Paul Mahindra ,  Sunil Gupta ,  Praneeth Vallem ,  Supreeth Rao ,  Darshan Shrinath Purandare ,  Xuan Zou ,  Akshay Srirangam ,  Jothi Prakash Prabakaran

IPC: H04L12/26 ,  H04L29/06 ,  H04L12/24

Abstract: Aspects of the subject technology relate to a system configured to receive, from a stream processing service, a first network snapshot segment. The first network snapshot segment is associated with metadata that is used to determine that at least one additional network snapshot segment associated with the output stream has not been previously received. The system is configured to request, from the stream processing service, the at least one additional network snapshot segment and generate a first network snapshot by compiling the first network snapshot segment and the at least one additional network snapshot segment.

公开(公告)号：US10574575B2

公开(公告)日：2020-02-25

申请号：US15966561

申请日：2018-04-30

Applicant: Cisco Technology, Inc.

Inventor： Supreeth Rao ,  Navindra Yadav ,  Umamaheswaran Arumugam ,  Micheal Watts ,  Shashi Gandham ,  Prasannakumar Jobigenahally Malleshaiah ,  Duy Nguyen ,  Hai Vu ,  Tapan Shrikrishna Patwardhan ,  Aiyesha Ma ,  Xuan Zou ,  Jothi Prakash Prabakaran

IPC: H04L12/801 ,  H04L12/24 ,  H04L12/26 ,  H04L29/08 ,  H04L12/721 ,  H04L12/911

Abstract: Systems, methods, and computer-readable media for flow stitching network traffic flow segments at a middlebox in a network environment. In some embodiments, a method can include collecting flow records of traffic flow segments at a middlebox in a network environment including one or more transaction identifiers assigned to the traffic flow segments. The traffic flow segments can correspond to one or more traffic flows passing through the middlebox and flow directions of the traffic flow segments with respect to the middlebox can be identified using the flow records. The traffic flow segments can be stitched together based on the one or more transaction identifiers and the flow directions of the traffic flow segments to form a stitched traffic flow of the one or more traffic flows passing through the middlebox. The stitched traffic flow can be incorporated as part of network traffic data for the network environment.

公开(公告)号：US20190230011A1

公开(公告)日：2019-07-25

申请号：US15982806

申请日：2018-05-17

Applicant: Cisco Technology, Inc.

Inventor： Shashi Gandham ,  Navindra Yadav ,  Janardhanan Radhakrishnan ,  Hoang-Nam Nguyen ,  Umesh Paul Mahindra ,  Sunil Gupta ,  Praneeth Vallem ,  Supreeth Rao ,  Darshan Shrinath Purandare ,  Xuan Zou ,  Akshay Srirangam ,  Jothi Prakash Prabakaran

IPC: H04L12/26 ,  H04L29/06

Abstract: Aspects of the subject technology relate to a system configured to receive, from a stream processing service, a first network snapshot segment. The first network snapshot segment is associated with metadata that is used to determine that at least one additional network snapshot segment associated with the output stream has not been previously received. The system is configured to request, from the stream processing service, the at least one additional network snapshot segment and generate a first network snapshot by compiling the first network snapshot segment and the at least one additional network snapshot segment.

公开(公告)号：US20230370489A1

公开(公告)日：2023-11-16

申请号：US18352036

申请日：2023-07-13

Applicant: Cisco Technology, Inc.

Inventor： Supreeth Rao ,  Navindra Yadav ,  Prasannakumar Jobigenahally Malleshaiah ,  Hanlin He ,  Umamaheswaran Arumugam ,  Robert Bukofser ,  Aiyesha Ma ,  Kai Zhu ,  Ashok Kumar

IPC: H04L9/40 ,  G06F16/901 ,  H04L41/22 ,  G06F16/9035

CPC classification number: H04L63/1433 ,  G06F16/9024 ,  H04L41/22 ,  H04L63/1425 ,  G06F16/9035

Abstract: Systems, methods, and computer-readable media for determine a neighborhood graph can include the following processes. A neighborhood graph system generates a neighborhood graph for a plurality of nodes in an enterprise network, the neighborhood graph representing a multi-hop connections between any two nodes of the plurality of nodes. A security score service determines a security score for each of the plurality of nodes to yield a plurality of scores. The neighborhood graph system updates the neighborhood graph of the plurality of nodes using the plurality of scores to provide a visual representation of securities of the plurality of nodes relative to each other.

公开(公告)号：US11159386B2

公开(公告)日：2021-10-26

申请号：US16354008

申请日：2019-03-14

Applicant: Cisco Technology, Inc.

Inventor： Matthew Lawson Finn, II ,  Alok Lalit Wadhwa ,  Navindra Yadav ,  Jerry Xin Ye ,  Supreeth Rao ,  Prasannakumar Jobigenahally Malleshaiah ,  Tapan Shrikrishna Patwardhan ,  Umamaheswaran Arumugam ,  Aiyesha Ma ,  Darshan Shrinath Purandare

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems and methods provide for enriching flow data to analyze network security, availability, and compliance. A network analytics system can capture flow data and metadata from network elements. The network analytics system can enrich the flow data by in-line association of the flow data and metadata. The network analytics system can generate multiple planes with each plane representing a dimension of enriched flow data. The network analytics system can generate nodes for the planes with each node representing a unique value or set of values for the dimensions represented by planes. The network analytics system can generate edges for the nodes of the planes with each edge representing a flow between endpoints corresponding to the nodes. The network analytics system can update the planes in response to an interaction with the planes or in response to a query.

公开(公告)号：US10708152B2

公开(公告)日：2020-07-07

申请号：US15467788

申请日：2017-03-23

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Ashutosh Kulshreshtha ,  Navindra Yadav ,  Khawar Deen ,  Jackson Pang ,  Supreeth Rao

IPC: H04L12/26 ,  H04L29/08 ,  H04L12/24

Abstract: An application and network analytics platform can capture comprehensive telemetry from servers and network devices operating within a network. The platform can discover flows running through the network, applications generating the flows, servers hosting the applications, computing resources provisioned and consumed by the applications, and network topology, among other insights. The platform can generate various models relating one set of application and network performance metrics to another. For example, the platform can model application latency as a function of computing resources provisioned to and/or actually used by the application, its host's total resources, and/or the distance of its host relative to other elements of the network. The platform can change the model by moving, removing, or adding elements to predict how the change affects application and network performance. In some situations, the platform can automatically act on predictions to improve application and network performance.

公开(公告)号：US20180278496A1

公开(公告)日：2018-09-27

申请号：US15467788

申请日：2017-03-23

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Ashutosh Kulshreshtha ,  Navindra Yadav ,  Khawar Deen ,  Jackson Pang ,  Supreeth Rao

IPC: H04L12/26 ,  H04L12/24 ,  H04L29/08

Abstract: An application and network analytics platform can capture comprehensive telemetry from servers and network devices operating within a network. The platform can discover flows running through the network, applications generating the flows, servers hosting the applications, computing resources provisioned and consumed by the applications, and network topology, among other insights. The platform can generate various models relating one set of application and network performance metrics to another. For example, the platform can model application latency as a function of computing resources provisioned to and/or actually used by the application, its host's total resources, and/or the distance of its host relative to other elements of the network. The platform can change the model by moving, removing, or adding elements to predict how the change affects application and network performance. In some situations, the platform can automatically act on predictions to improve application and network performance.

公开(公告)号：US20210392135A1

公开(公告)日：2021-12-16

申请号：US16899317

申请日：2020-06-11

Applicant: Cisco Technology, Inc.

Inventor： Supreeth Rao ,  Navindra Yadav ,  Ashok Kumar ,  Tapan Shrikrishna Patwardhan ,  Hanlin He ,  Darshan Shrinath Purandare ,  Aiyesha Ma ,  Ning Shan

IPC: H04L29/06 ,  H04L12/26

Abstract: The present disclosure relates to methods, systems, and non-transitory computer readable media for receiving, at an authentication service of an enterprise network and from a user device, a request to access an application; determining a user status associated with the request based on information received from at least an identity service engine; determining, based on the user status, whether the user device meets a set of security parameters for accessing the application, to yield a determination; and determining, based on the determination, whether to grant or deny the request for accessing the application.

公开(公告)号：US11088929B2

公开(公告)日：2021-08-10

申请号：US16884449

申请日：2020-05-27

Applicant: Cisco Technology, Inc.

Inventor： Ashutosh Kulshreshtha ,  Navindra Yadav ,  Khawar Deen ,  Jackson Pang ,  Supreeth Rao

IPC: H04L12/26 ,  H04L12/24

Abstract: An application and network analytics platform can capture comprehensive telemetry from servers and network devices operating within a network. The platform can discover flows running through the network, applications generating the flows, servers hosting the applications, computing resources provisioned and consumed by the applications, and network topology, among other insights. The platform can generate various models relating one set of application and network performance metrics to another. For example, the platform can model application latency as a function of computing resources provisioned to and/or actually used by the application, its host's total resources, and/or the distance of its host relative to other elements of the network. The platform can change the model by moving, removing, or adding elements to predict how the change affects application and network performance. In some situations, the platform can automatically act on predictions to improve application and network performance.

公开(公告)号：US20200296007A1

公开(公告)日：2020-09-17

申请号：US16354008

申请日：2019-03-14

Applicant: Cisco Technology, Inc.

Inventor： Matthew Lawson Finn, II ,  Alok Lalit Wadhwa ,  Navindra Yadav ,  Jerry Xin Ye ,  Supreeth Rao ,  Prasannakumar Jobigenahally Malleshaiah ,  Tapan Shrikrishna Patwardhan ,  Umamaheswaran Arumugam ,  Aiyesha Ma ,  Darshan Shrinath Purandare

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems and methods provide for enriching flow data to analyze network security, availability, and compliance. A network analytics system can capture flow data and metadata from network elements. The network analytics system can enrich the flow data by in-line association of the flow data and metadata. The network analytics system can generate multiple planes with each plane representing a dimension of enriched flow data. The network analytics system can generate nodes for the planes with each node representing a unique value or set of values for the dimensions represented by planes. The network analytics system can generate edges for the nodes of the planes with each edge representing a flow between endpoints corresponding to the nodes. The network analytics system can update the planes in response to an interaction with the planes or in response to a query.