公开(公告)号：US12262450B2

公开(公告)日：2025-03-25

申请号：US18476737

申请日：2023-09-28

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Nancy Cam-Winget ,  Simone Arena ,  Darrin Joseph Miller ,  Sudhir Kumar Jain ,  Einar Nilsen-Nygaard

IPC: H04W8/24 ,  H04L61/5053 ,  H04L101/622 ,  H04W28/02 ,  H04W28/086

Abstract: Embodiments identify a station that rotates an over the air station address. As address rotation was not originally designed into wireless networks, the rotation can introduce communication challenges for the station. The embodiments derive that traffic referencing two different over the air station addresses are associated with a single common station. This is accomplished by determining a similarity between properties of two sets of traffic. A first set of traffic references the first over the air station address and a second set of traffic references the second over the air station address. If the properties common across the two sets of traffic indicate sufficient similarity, the embodiments determine that both sets of traffic are associated with a single device. Network configuration of the device is then adjusted based on the determination.

公开(公告)号：US12225562B2

公开(公告)日：2025-02-11

申请号：US18359511

申请日：2023-07-26

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Sudhir Kumar Jain ,  Aries Kuttiyan

IPC: H04W72/51 ,  H04L5/00 ,  H04W24/02 ,  H04W48/12 ,  H04W48/14 ,  H04W84/12 ,  H04W88/08 ,  H04W72/02

Abstract: Techniques to adaptively support/enable a wireless network feature for certain wireless client devices without hampering the performance or connectivity of wireless client devices which do not support that wireless network feature. An access point or wireless network controller adaptively enables a wireless network feature without advertising support for the wireless network feature in a wireless network-standard compliant manner to allow one or more wireless clients that support the wireless network feature to use the wireless network feature when associated to the access point while enabling association of one or more wireless clients that do not support the wireless network feature.

公开(公告)号：US12219583B2

公开(公告)日：2025-02-04

申请号：US17690612

申请日：2022-03-09

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Sudhir Kumar Jain ,  Aries Kuttiyan

IPC: H04W72/04 ,  H04L5/00 ,  H04W24/02 ,  H04W48/12 ,  H04W48/14 ,  H04W72/51 ,  H04W84/12 ,  H04W88/08 ,  H04W72/02

Abstract: Techniques to adaptively support/enable a wireless network feature for certain wireless client devices without hampering the performance or connectivity of wireless client devices which do not support that wireless network feature. An access point or wireless network controller adaptively enables a wireless network feature without advertising support for the wireless network feature in a wireless network-standard compliant manner to allow one or more wireless clients that support the wireless network feature to use the wireless network feature when associated to the access point while enabling association of one or more wireless clients that do not support the wireless network feature.

公开(公告)号：US11895085B2

公开(公告)日：2024-02-06

申请号：US17473218

申请日：2021-09-13

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Shree N. Murthy ,  Sudhir Kumar Jain

IPC: H04L61/5014 ,  H04W72/04 ,  H04L101/622

CPC classification number: H04L61/5014 ,  H04W72/04 ,  H04L2101/622

Abstract: A network management center includes a Dynamic Host Configuration Protocol (DHCP) server. The network management center obtains from an identity server, client information indicating authentication of a client device in a wireless network that is connected to a network fabric. The network management center obtains from an edge node in the network fabric an Internet Protocol (IP) address request for the client device. The IP address request including a fabric domain identifier associated with the edge node. The network management center allocates an IP address for the client device based on the client information obtained from the identity server and the fabric domain identifier contained in the IP address request obtained from the edge node. The network management center provides to the edge node an Identifier Locator Addressing (ILA) address based on the IP address.

公开(公告)号：US11849344B2

公开(公告)日：2023-12-19

申请号：US17236659

申请日：2021-04-21

Applicant: Cisco Technology, Inc.

Inventor： Jerome Henry ,  Nancy Cam-Winget ,  Simone Arena ,  Darrin Joseph Miller ,  Sudhir Kumar Jain ,  Einar Nilsen-Nygaard

IPC: H04W28/02 ,  H04W8/24 ,  H04W28/086

CPC classification number: H04W28/0205 ,  H04W8/245 ,  H04W28/0215 ,  H04W28/086

Abstract: Embodiments identify a station that rotates an over the air station address. As address rotation was not originally designed into wireless networks, the rotation can introduce communication challenges for the station. The embodiments derive that traffic referencing two different over the air station addresses are associated with a single common station. This is accomplished by determining a similarity between properties of two sets of traffic. A first set of traffic references the first over the air station address and a second set of traffic references the second over the air station address. If the properties common across the two sets of traffic indicate sufficient similarity, the embodiments determine that both sets of traffic are associated with a single device. Network configuration of the device is then adjusted based on the determination.

公开(公告)号：US11546339B2

公开(公告)日：2023-01-03

申请号：US16259914

申请日：2019-01-28

Applicant: Cisco Technology, Inc.

Inventor： Mark Grayson ,  Rajesh S. Pazhyannur ,  Sudhir Kumar Jain ,  Anand Oswal

IPC: H04L9/40 ,  H04W12/08 ,  H04W12/06 ,  H04L67/01

Abstract: Various implementations disclosed herein provide a method for authenticating users to an enterprise network using closed subscriber groups. The method includes determining whether the client device is associated with a subscriber group that corresponds to the enterprise network. The method further includes granting the client device access to the enterprise network in response to determining that the client device is associated with the subscriber group that corresponds to the enterprise network.

公开(公告)号：US20220385624A1

公开(公告)日：2022-12-01

申请号：US17329827

申请日：2021-05-25

Applicant: Cisco Technology, Inc.

Inventor： Roberto Muccifora ,  Domenico Ficara ,  Amine Choukir ,  Anirban Karmakar ,  Vincent Cuissard ,  Sudhir Kumar Jain

IPC: H04L29/12

Abstract: Techniques are provided that rotate a device address used to identify a wireless client device on a wireless network. The wireless client device and at least one network infrastructure component identify a plurality of device addresses associated with the wireless client device. In some embodiments, the plurality of device addresses are generated via a corresponding plurality of invocations of a stateful random number generator, such as a cryptographically secure pseudorandom number generator.

公开(公告)号：US11411942B1

公开(公告)日：2022-08-09

申请号：US16518144

申请日：2019-07-22

Applicant: Cisco Technology, Inc.

Inventor： Abhishek Dhammawat ,  Mansi Jain ,  Sudhir Kumar Jain

IPC: H04L29/06 ,  H04L9/40 ,  H04W8/24 ,  H04W12/06 ,  H04W12/041

Abstract: Systems, methods, and computer-readable media are provided for an efficient roaming management method using a single association identifier token for associating with different access points. In one aspect of the present disclosure, a network controller includes memory having computer-readable instructions stored therein and one or more processors. The one or more processors are configured to execute the computer-readable instructions to receive a request from an endpoint to connect to a first access point; generate association identification token (e.g., PMK and PMKID) for the endpoint to connect to the first access point; and distribute the association identification token to a second access point prior to the endpoint attempting to connect to the second access point, the association identification token being used by the second access point to validate a subsequent request by the endpoint to connect to the second access point.

公开(公告)号：US11159480B2

公开(公告)日：2021-10-26

申请号：US16364630

申请日：2019-03-26

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Shree N. Murthy ,  Sudhir Kumar Jain

IPC: H04L29/12 ,  H04W72/04

Abstract: A network management center includes a Dynamic Host Configuration Protocol (DHCP) server. The network management center obtains from an identity server, client information indicating authentication of a client device in a wireless network that is connected to a network fabric. The network management center obtains from an edge node in the network fabric an Internet Protocol (IP) address request for the client device. The IP address request including a fabric domain identifier associated with the edge node. The network management center allocates an IP address for the client device based on the client information obtained from the identity server and the fabric domain identifier contained in the IP address request obtained from the edge node. The network management center provides to the edge node an Identifier Locator Addressing (ILA) address based on the IP address.

公开(公告)号：US11051168B2

公开(公告)日：2021-06-29

申请号：US17028455

申请日：2020-09-22

Applicant: Cisco Technology, Inc.

Inventor： Suja Thangaveluchamy ,  Niranjan Mallapura Mallikarjunaiah ,  Aries Kuttiyan ,  Sudhir Kumar Jain ,  Vijay Kumar Kothamasu ,  Ramachandra Murthy S

IPC: H04M1/66 ,  H04M1/68 ,  H04M3/16 ,  H04W12/069 ,  H04L29/06 ,  H04W12/08 ,  H04W12/0431

Abstract: A default pre-shared key is provided from a first device to a second device. The first device is configured to control network access to a network. A first authentication request is obtained at the first device from a third device. The first authentication request includes data indicative of the second device. A first response to the first authentication request is provided from the first device to the third device. The first response includes the default pre-shared key. A second authentication request containing a private pre-shared key and the data indicative of the second device is obtained at the first device from the third device. Stored data at the first device is updated in response to the second authentication request with the private pre-shared key and the data indicative of the second device to provision the first device to provide network access to the network to the second device.