公开(公告)号：US20160344713A1

公开(公告)日：2016-11-24

申请号：US15230924

申请日：2016-08-08

Applicant: Cisco Technology, Inc.

Inventor： Lewis Chen ,  Scott Fluhrer ,  Warren Scott Wainner ,  Brian Weis

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L63/0272 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/104

Abstract: Techniques are presented for optimizing secure communications in a network. As disclosed herein, a key server is configured to provision a plurality of routers that are part of a virtual private network. The key server selects a counter value that is part of a security association and calculates a key value. The key server sends the key value, together with the security association, to the plurality of routers that are part of the virtual private network to enable them to exchange encrypted packets with each other in the virtual private network using the key value and the security association. The key server then increments the counter value to a value within a range of counter values capable of being predicted by the plurality of routers that received the key value.

Abstract translation: 呈现技术来优化网络中的安全通信。 如本文所公开的，密钥服务器被配置为提供作为虚拟专用网络的一部分的多个路由器。 密钥服务器选择作为安全关联的一部分的计数器值，并计算密钥值。 密钥服务器将密钥值与安全关联一起发送到作为虚拟专用网络的一部分的多个路由器，以使得它们能够使用密钥值和安全关联在虚拟专用网络中彼此交换加密的分组 。 然后，密钥服务器将计数器值递增到能够被接收到密钥值的多个路由器预测的计数器值的范围内的值。

公开(公告)号：US20150295899A1

公开(公告)日：2015-10-15

申请号：US14248399

申请日：2014-04-09

Applicant: Cisco Technology, Inc.

Inventor： Lewis Chen ,  Scott Fluhrer ,  Warren Scott Wainner ,  Brian Weis

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L63/0272 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/104

Abstract: Techniques are presented for optimizing secure communications in a network. A first router receives from a second router an encrypted packet with an unknown security association. The first router examines the packet to determine whether the counter value is in a range of predicted counter values. Additionally, a key server is configured to provision routers that are part of a virtual private network. The key server selects a counter value that is part of a security association and calculates a key value. The key server sends the key value together with the security association to enable routers to exchange encrypted packets with each other in the virtual private network using the key value and the security association. The key server increments the counter value to a value within a range of counter values capable of being predicted by the routers.

Abstract translation: 呈现技术来优化网络中的安全通信。 第一路由器从第二路由器接收具有未知安全关联的加密分组。 第一个路由器检查数据包，以确定计数器值是否在预测的计数器值的范围内。 另外，密钥服务器被配置为配置作为虚拟专用网络一部分的路由器。 密钥服务器选择作为安全关联的一部分的计数器值，并计算密钥值。 密钥服务器将密钥值与安全关联一起发送，以使路由器能够使用密钥值和安全关联在虚拟专用网络中彼此交换加密的数据包。 密钥服务器将计数器值递增到可由路由器预测的计数器值范围内的值。

公开(公告)号：US20150200987A1

公开(公告)日：2015-07-16

申请号：US14154144

申请日：2014-01-13

Applicant: Cisco Technology, Inc.

Inventor： Scott Christopher Labrozzi ,  Warren Scott Wainner

IPC: H04L29/06

CPC classification number: H04L65/4092 ,  H04L29/06 ,  H04L65/1023 ,  H04L65/4084 ,  H04L65/602 ,  H04N21/44029 ,  H04N21/4621 ,  H04N21/632 ,  H04N21/84

Abstract: A system and methods for providing dynamic transcoder rate adaption for an adaptive bit streaming function is described. In a first embodiment, a client may select from all available bit rates during the encoding session, wherein the bit rates are provided to the client via a manifest file from a media gateway. In a second embodiment, a subset of the bit rates are provided to the client, from which a client chooses a selected bit rate. The encoding session continues until a request for a new bit rate is received from the client, at which time a new subset of bit rates are generated. This new subset of bit rates is presented to the client, and this loop continues until the termination of the encoding session.

Abstract translation: 描述了一种用于为自适应比特流功能提供动态代码转换器速率适配的系统和方法。 在第一实施例中，客户端可以在编码会话期间从所有可用比特率中进行选择，其中通过来自媒体网关的清单文件向客户端提供比特率。 在第二实施例中，将比特率的子集提供给客户机，客户端从该客户机中选择所选择的比特率。 编码会话继续，直到从客户端接收到对新比特率的请求，此时生成新的比特率子集。 将这种新的比特率子集提供给客户端，并且该循环将持续到编码会话的终止。

公开(公告)号：US20150019750A1

公开(公告)日：2015-01-15

申请号：US14503020

申请日：2014-09-30

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner ,  Mahesh Vittal ,  Stinson Mathai

IPC: H04L29/06 ,  H04N21/266

CPC classification number: H04L65/4069 ,  H04L65/601 ,  H04N5/765 ,  H04N9/8205 ,  H04N21/23439 ,  H04N21/2385 ,  H04N21/2402 ,  H04N21/26258 ,  H04N21/266 ,  H04N21/2662 ,  H04N21/6131 ,  H04N21/6332 ,  H04N21/6581 ,  H04N21/812 ,  H04N21/8456 ,  H04N21/85406

Abstract: Consistent with embodiments of the present invention, a system may be provided to provide per-subscriber stream management comprising: a client capable of receiving a playlist containing a subset of segments associated with a video asset; a video application server to request subscriber state information and to build state representations in a subscriber database on a per-subscriber basis; a media segmenter capable of providing the video asset in multiple bit rates; a subscriber state manager capable of managing the current state of one or more subscribers in a subscriber database; and a stream manager capable of requesting the assignment of bandwidth from a wireless infrastructure on a per-subscriber basis.

Abstract translation: 与本发明的实施例一致，可以提供系统以提供每用户流管理，包括：能够接收包含与视频资产相关联的段的子集的播放列表的客户端; 视频应用服务器，用于以订户为单位请求用户状态信息并在用户数据库中构建状态表示; 能够以多个比特率提供视频资产的媒体分割器; 用户状态管理器，能够管理订户数据库中的一个或多个订户的当前状态; 以及能够以每个用户的身份请求从无线基础设施分配带宽的流管理器。

公开(公告)号：US10243928B2

公开(公告)日：2019-03-26

申请号：US15010679

申请日：2016-01-29

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner ,  Sheela D. Rowles ,  Brian E. Weis ,  David Arthur McGrew ,  Scott R. Fluhrer ,  Kavitha Kamarthy

IPC: H04L29/06 ,  H04L9/08 ,  H04L12/18

Abstract: Various techniques that allow group members to detect the use of stale encryption policy by other group members are disclosed. One method involves receiving a message from a first group member via a network. The message is received by a second group member. The method then detects that the first group member is not using a most recent policy update supplied by a key server, in response to information in the message. In response, a notification message can be sent from the second group member. The notification message indicates that at least one group member is not using the most recently policy update. The notification message can be sent to the key server or towards the first group member.

公开(公告)号：US10218757B2

公开(公告)日：2019-02-26

申请号：US15587681

申请日：2017-05-05

Applicant: Cisco Technology, Inc.

Inventor： Scott Christopher Labrozzi ,  Warren Scott Wainner

IPC: G06F15/16 ,  H04L29/06 ,  H04N21/4402 ,  H04N21/462 ,  H04N21/63 ,  H04N21/84

Abstract: A system and methods for providing dynamic transcoder rate adaption for an adaptive bit streaming function is described. In a first embodiment, a client may select from all available bit rates during the encoding session, wherein the bit rates are provided to the client via a manifest file from a media gateway. In a second embodiment, a subset of the bit rates are provided to the client, from which a client chooses a selected bit rate. The encoding session continues until a request for a new bit rate is received from the client, at which time a new subset of bit rates are generated. This new subset of bit rates is presented to the client, and this loop continues until the termination of the encoding session.

公开(公告)号：US10104050B2

公开(公告)日：2018-10-16

申请号：US15146695

申请日：2016-05-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Warren Scott Wainner ,  Brian E. Weis ,  Paul Quinn ,  Scott Roy Fluhrer

IPC: H04L29/06

Abstract: A method is provided in one example embodiment and includes receiving at a node of a transitive IP network a data packet including a Network Services Header (“NSH”); accessing by the transitive IP network node context contained in the NSH, wherein the context may be used by the transitive IP network node to perform an enhanced network service in connection with the received data packet; performing by the transitive IP network node the enhanced network service in connection with the received data packet using the accessed context; and, subsequent to the performing, forwarding the received packet to a next node.

公开(公告)号：US09979704B2

公开(公告)日：2018-05-22

申请号：US14573564

申请日：2014-12-17

Applicant: Cisco Technology, Inc.

Inventor： Kevin D. Shatzkamer ,  Hendrikus G. P. Bosch ,  Warren Scott Wainner ,  James N. Guichard ,  Surendra M. Kumar

IPC: H04L29/06 ,  G06F9/455 ,  G06F21/60

CPC classification number: H04L63/0428 ,  G06F9/45558 ,  G06F21/606 ,  G06F2009/45587 ,  G06F2009/45595

Abstract: A first virtual machine is established in a virtual private service chain to provide a first network service to virtual private service chain traffic. A second virtual machine is also established the virtual private service chain to provide a second network service to the virtual private service chain traffic. The virtual private service chain traffic is encrypted for transmission within the virtual private service chain from the first virtual machine to the second virtual machine, wherein the encryption uses a key shared by the first and second virtual machines.

公开(公告)号：US20170324714A1

公开(公告)日：2017-11-09

申请号：US15146695

申请日：2016-05-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Warren Scott Wainner ,  Brian E. Weis ,  Paul Quinn ,  Scott Roy Fluhrer

IPC: H04L29/06

CPC classification number: H04L63/0272 ,  H04L63/0892 ,  H04L63/104

Abstract: A method is provided in one example embodiment and includes receiving at a node of a transitive IP network a data packet including a Network Services Header (“NSH”); accessing by the transitive IP network node context contained in the NSH, wherein the context may be used by the transitive IP network node to perform an enhanced network service in connection with the received data packet; performing by the transitive IP network node the enhanced network service in connection with the received data packet using the accessed context; and, subsequent to the performing, forwarding the received packet to a next node.

公开(公告)号：US09419845B2

公开(公告)日：2016-08-16

申请号：US13929369

申请日：2013-06-27

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner ,  Aeneas Dodd-Noble ,  Mahesh Vittal Viveganandhan ,  Stefano Previdi

IPC: G06F15/173 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L29/06047 ,  H04L65/4084 ,  H04L67/02 ,  H04L67/1021 ,  H04L67/18 ,  H04L67/2814 ,  H04L67/2842 ,  H04L67/289 ,  H04L69/22

Abstract: In one embodiment, a client device queries a location server using a client-selected interface for content retrieval from a content distribution network (CDN), and receives a location attribute from the location server based on a location of the client device. The client device then presents the location attribute to a CDN selector within a first content retrieval request, and may receive a redirection from the CDN selector to a selected content source based on the location attribute. As such, the client device may then initiate a second content retrieval request to the selected content source. In another embodiment, a CDN selector receives a content retrieval request from a client device, and determines that the content retrieval request contains a location attribute indicating a location of the client device. Based on the location attribute, the CDN selector selects a content source, and redirects the client device to the selected content source.

Abstract translation: 在一个实施例中，客户端设备使用客户端选择的接口从内容分发网络（CDN）查询内容检索的位置服务器，并且基于客户端设备的位置从位置服务器接收位置属性。 然后，客户端设备将位置属性呈现给第一内容检索请求中的CDN选择器，并且可以基于位置属性从CDN选择器接收到所选内容源的重定向。 这样，客户端设备然后可以向所选择的内容源发起第二内容检索请求。 在另一个实施例中，CDN选择器从客户端设备接收内容检索请求，并确定内容检索请求包含指示客户端设备的位置的位置属性。 基于location属性，CDN选择器选择内容源，并将客户端设备重定向到所选择的内容源。