公开(公告)号：US20200382553A1

公开(公告)日：2020-12-03

申请号：US16424912

申请日：2019-05-29

Applicant: Cisco Technology, Inc.

Inventor： Pierre-Andre Savalle ,  Jean-Philippe Vasseur ,  Gregory Mermoud

IPC: H04L29/06 ,  G06N5/02 ,  G06N20/00 ,  H04L29/08

Abstract: In one embodiment, a device in a network obtains data indicative of a device classification rule, a device type label associated with the rule, and a set of positive and negative feature vectors used to create the rule. The device replaces similar feature vectors in the set of positive and negative feature vectors with a single feature vector, to form a reduced set of feature vectors. The device applies differential privacy to the reduced set of feature vectors. The device sends a digest to a cloud service. The digest comprises the device classification rule, the device type label, and the reduced set of feature vectors to which differential privacy was applied. The service uses the digest to train a machine learning-based device classifier.

公开(公告)号：US20200382414A1

公开(公告)日：2020-12-03

申请号：US16429159

申请日：2019-06-03

Applicant: Cisco Technology Inc.

Inventor： Jean-Philippe Vasseur ,  Grégory Mermoud ,  Vinay Kumar Kolar ,  Sharon Shoshana Wulff

IPC: H04L12/703 ,  H04L12/715 ,  H04L12/46 ,  H04L12/24

Abstract: In one embodiment, a device predicts a failure of a first tunnel in a software-defined wide area network (SD-WAN). The device makes a prediction as to whether a second tunnel in the SD-WAN will satisfy a service level agreement (SLA) associated with traffic on the first tunnel. The device proactively reroutes the traffic from the first tunnel onto the second tunnel, based on the prediction as to whether that the second tunnel will satisfy the SLA of the traffic. The device monitors one or more quality of service (QoS) metrics for the rerouted traffic, to ensure that the second tunnel satisfies the SLA of the traffic.

公开(公告)号：US20200382402A1

公开(公告)日：2020-12-03

申请号：US16426818

申请日：2019-05-30

Applicant: Cisco Technology, Inc.

Inventor： Vinay Kumar Kolar ,  Jean-Philippe Vasseur

IPC: H04L12/26 ,  H04L12/24 ,  H04L12/46 ,  H04L12/851

Abstract: In one embodiment, a device applies clustering to traffic characteristics of application traffic in a software-defined wide area network (SD-WAN) associated with a particular application, to form a cluster of traffic characteristics. The device selects a tunnel in the SD-WAN to probe. The device generates, based on the cluster, packets that mimic the application traffic. The device probes the selected tunnel by sending the generated packets via the tunnel.

公开(公告)号：US20200382373A1

公开(公告)日：2020-12-03

申请号：US16428202

申请日：2019-05-31

Applicant: Cisco Technology, Inc.

Inventor： Grégory Mermoud ,  Jean-Philippe Vasseur ,  Pierre-Andre Savalle ,  David Tedaldi

IPC: H04L12/24 ,  H04L29/06 ,  H04L12/723

Abstract: In one embodiment, a service receives a plurality of device type classification rules, each rule comprising a device type label and one or more device attributes used as criteria for application of the label to a device in a network. The service estimates, across a space of the device attributes, device densities of devices having device attributes at different points in that space. The service uses the estimated device densities to identify two or more of the device type classification rules as having overlapping device attributes. The service determines that the two or more device type classification rules are in conflict, based on the two or more rules having different device type labels. The service generates a rule conflict resolution that comprises one of the device type labels from the conflicting two or more device type classification rules.

公开(公告)号：US20200351172A1

公开(公告)日：2020-11-05

申请号：US16402308

申请日：2019-05-03

Applicant: Cisco Technology, Inc.

Inventor： Jean-Philippe Vasseur ,  Grégory Mermoud ,  Vinay Kumar Kolar

IPC: H04L12/24 ,  H04L12/26 ,  H04L12/707

Abstract: In one embodiment, a device identifies one or more telemetry data variables for use to predict failure of a tunnel in a software-defined wide area network (SD-WAN). The device sends a Bidirectional Forwarding Detection (BFD)-based telemetry request towards a tail-end router of the tunnel that requests the one or more telemetry data variables. The device receives the requested one or more telemetry data variables. The device uses the received one or more telemetry data variables as input to a machine learning-based model, to predict a failure of the tunnel.

公开(公告)号：US10826772B2

公开(公告)日：2020-11-03

申请号：US16188452

申请日：2018-11-13

Applicant: Cisco Technology, Inc.

Inventor： Pierre-André Savalle ,  Jean-Philippe Vasseur ,  Grégory Mermoud

IPC: H04L12/24 ,  H04L29/08 ,  G06N20/00

Abstract: In one embodiment, a device classification service assigns a set of endpoint devices to a context group. The device classification service forms a context summary feature vector for the context group that summarizes telemetry feature vectors for the endpoint devices assigned to the context group. Each telemetry feature vector is indicative of a plurality of traffic features observed for the endpoint devices. The device classification service normalizes a telemetry feature vector for a particular endpoint device using the context summary feature vector. The device classification service classifies, using the normalized telemetry feature vector for the particular endpoint device as input to a device type classifier, the particular endpoint device as being of a particular device type.

公开(公告)号：US20200342346A1

公开(公告)日：2020-10-29

申请号：US16392825

申请日：2019-04-24

Applicant: Cisco Technology, Inc.

Inventor： Sharon Shoshana Wulff ,  Grégory Mermoud ,  Jean-Philippe Vasseur

IPC: G06N20/00 ,  H04L12/46 ,  H04L12/24

Abstract: In one embodiment, a supervisory service for a software-defined wide area network (SD-WAN) uses a plurality of different decision thresholds for a machine learning-based classifier, to predict tunnel failures of a tunnel in the SD-WAN. The supervisory service captures performance data indicative of performance of the classifier when using the different decision thresholds. The supervisory service selects, based on the captured performance data, a particular decision threshold for the classifier, in an attempt to optimize the performance of the classifier. The supervisory service uses the selected decision threshold for the classifier, to predict a tunnel failure of the tunnel.

公开(公告)号：US10812388B2

公开(公告)日：2020-10-20

申请号：US16269723

申请日：2019-02-07

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Jean-Philippe Vasseur ,  Eric Levy-Abegnoli ,  Patrick Wetterwald

IPC: H04L12/803 ,  H04L12/24 ,  H04L12/715 ,  H04L12/851

Abstract: In one embodiment, a supervisory device for a software defined networking (SDN) fabric predicts a failure in the SDN fabric using a machine learning-based failure prediction model. The supervisory device identifies a plurality of traffic flows having associated leaves in the SDN fabric that would be affected by the predicted failure. The supervisory device selects a subset of the identified plurality of traffic flows and their associated leaves. The supervisory device disaggregates routes for the selected subset of traffic flows and their associated leaves, to avoid the predicted failure.

公开(公告)号：US10805185B2

公开(公告)日：2020-10-13

申请号：US15896183

申请日：2018-02-14

Applicant: Cisco Technology, Inc.

Inventor： Vinay Kumar Kolar ,  Jean-Philippe Vasseur

IPC: G06F11/00 ,  H04L12/26 ,  G06F11/36 ,  G06F8/71 ,  H04L12/24 ,  H04L29/08 ,  G06N20/00

Abstract: In one embodiment, a network assurance service that monitors a network receives telemetry data regarding monitored characteristics of the network. The service identifies, using a machine learning-based pattern analyzer, a pattern of the monitored characteristics that are associated with failures experienced by one or more networking devices in the network. The service groups networking devices by software version. The service determines probabilities of the pattern being observed concurrently with failures of the grouped network networking devices. A particular probability is associated with a particular group of the networking devices executing a particular software version. The service provides, based on the determined probabilities, data regarding the identified pattern and software versions for display.

公开(公告)号：US20200305049A1

公开(公告)日：2020-09-24

申请号：US16359011

申请日：2019-03-20

Applicant: Cisco Technology, Inc.

Inventor： Jean-Philippe Vasseur ,  Pascal Thubert ,  Jerome Henry

IPC: H04W36/22 ,  H04W36/08 ,  H04W36/38 ,  H04W36/32 ,  H04W52/40

Abstract: In one embodiment, a supervisory service for a wireless network receives telemetry data indicative of client movement of wireless clients of the network within a location. The service determines a measure of client movement stability for the location, based on the received telemetry data. The service selects one or more of the clients for wireless access point reassignment, when the determined measure of client movement stability exceeds a predefined threshold. The service causes the selected one or more clients to switch from a first wireless access point at the location to a second wireless access point at the location.