公开(公告)号：US12149410B2

公开(公告)日：2024-11-19

申请号：US17850209

申请日：2022-06-27

Applicant: Cisco Technology, Inc.

Inventor： Derek William Engi ,  Gonzalo Salgueiro ,  M. David Hanes ,  Bradley Wise ,  Md Atiqur Rahman

IPC: H04L41/08 ,  G06N20/00 ,  H04L41/0893 ,  H04L41/14 ,  H04L41/16 ,  H04L43/16

Abstract: Techniques described herein relate to automatically generating standard network device configurations. In one example, one or more groups of network device configuration blocks may be obtained. An analysis of the one or more groups of network device configuration blocks may be performed, including identifying respective frequencies associated with respective network device configuration blocks of the one or more groups of network device configuration blocks. Based on the respective frequencies, one or more network device configuration blocks of the one or more groups of network device configuration blocks may be automatically aggregated into a standard network device configuration.

公开(公告)号：US20230216860A1

公开(公告)日：2023-07-06

申请号：US18121413

申请日：2023-03-14

Applicant: Cisco Technology, Inc.

Inventor： Nikhil Sainath Kale ,  M. David Hanes ,  Ana Peric ,  Gonzalo Salgueiro

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/083 ,  H04L63/20

Abstract: In one embodiment, a device including a processor, and a memory to store data used by the processor, wherein the processor is operative to run a manufacturer usage description (MUD) controller operative to obtain a MUD profile of an Internet of Things (IoT) device from a MUD server, the MUD profile of the IoT device including: access rights of the IoT device, and any one or more of the following a default device username and/or a default device password of the IoT device, a recommended/required device password complexity of the IoT device, at least one service that should be enabled/disabled on the IoT device, and/or allowed security protocols and/or ciphers for communication to and/or from the IoT device, enforce security of the IoT device according to the MUD profile of the IoT device. Related apparatus and methods are also described.

公开(公告)号：US11658977B2

公开(公告)日：2023-05-23

申请号：US17034714

申请日：2020-09-28

Applicant: Cisco Technology, Inc.

Inventor： Nikhil Sainath Kale ,  M. David Hanes ,  Ana Peric ,  Gonzalo Salgueiro

IPC: H04L9/40 ,  G06F21/60 ,  G06F21/46 ,  G06F21/44

CPC classification number: H04L63/102 ,  G06F21/46 ,  G06F21/604 ,  H04L63/083 ,  H04L63/0876 ,  H04L63/101 ,  G06F21/44 ,  H04L63/20

Abstract: In one embodiment, a device including a processor, and a memory to store data used by the processor, wherein the processor is operative to run a manufacturer usage description (MUD) controller operative to obtain a MUD profile of an Internet of Things (IoT) device from a MUD server, the MUD profile of the IoT device including: access rights of the IoT device, and any one or more of the following a default device username and/or a default device password of the IoT device, a recommended/required device password complexity of the IoT device, at least one service that should be enabled/disabled on the IoT device, and/or allowed security protocols and/or ciphers for communication to and/or from the IoT device, enforce security of the IoT device according to the MUD profile of the IoT device. Related apparatus and methods are also described.

公开(公告)号：US11418397B1

公开(公告)日：2022-08-16

申请号：US17164339

申请日：2021-02-01

Applicant: Cisco Technology, Inc.

Inventor： Derek William Engi ,  Gonzalo Salgueiro ,  M. David Hanes ,  Bradley Wise ,  Md Atiqur Rahman

IPC: H04L41/08 ,  H04L41/0893 ,  G06N20/00 ,  H04L41/16 ,  H04L43/16 ,  H04L41/14

Abstract: Techniques described herein relate to automatically generating standard network device configurations. In one example, one or more groups of network device configuration blocks may be obtained. An analysis of the one or more groups of network device configuration blocks may be performed, including identifying respective frequencies associated with respective network device configuration blocks of the one or more groups of network device configuration blocks. Based on the respective frequencies, one or more network device configuration blocks of the one or more groups of network device configuration blocks may be automatically aggregated into a standard network device configuration.

公开(公告)号：US11100040B2

公开(公告)日：2021-08-24

申请号：US16162827

申请日：2018-10-17

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Charles Calvin Byers ,  M. David Hanes ,  Joseph Michael Clarke ,  Gonzalo Salgueiro

IPC: G06F15/16 ,  G06F15/173 ,  G06F15/78 ,  G06F3/06 ,  H04L29/08

Abstract: In one embodiment, an apparatus includes a multi-socket motherboard, a processor connected to a first socket on the multi-socket motherboard, and an RDMA (Remote Direct Memory Access) interface module connected to a second socket on the multi-socket motherboard and in communication with the processor over a coherency interface. The RDMA interface module provides an inter-server interface between servers in an RDMA domain. A method for transferring data between servers with RDMA interface modules is also disclosed herein.

公开(公告)号：US20210067450A1

公开(公告)日：2021-03-04

申请号：US16560386

申请日：2019-09-04

Applicant: Cisco Technology, Inc.

Inventor： M. David Hanes ,  Santosh Ramrao Patil ,  Gonzalo Salgueiro ,  Akramsheriff Ismailsheriff

IPC: H04L12/803 ,  H04L12/801 ,  H04L12/841 ,  H04L12/813 ,  H04L29/06 ,  H04L12/807

Abstract: Systems and methods provide for Selective Tracking of Acknowledgments (STACKing) to improve buffer utilization and traffic shaping for one or more network devices. A network device can identify a first flow that corresponds to a predetermined traffic class and a predetermined congestion state. The device can determine a current window size and congestion threshold of the first flow. In response to a determination to selectively track a portion of acknowledgments of the first flow, the device can track, in main memory, information of a first portion of acknowledgments of the first flow. The device can exclude, from one or more buffers, a second portion of acknowledgments of the first flow. The device can re-generate and transmit segments corresponding to the second portion of acknowledgments at a target transmission rate based on traffic shaping policies for the predetermined traffic class and congestion state.

公开(公告)号：US10893108B2

公开(公告)日：2021-01-12

申请号：US16352474

申请日：2019-03-13

Applicant: Cisco Technology, Inc.

Inventor： Sebastian Jeuk ,  Gonzalo Salgueiro ,  M. David Hanes

IPC: G06F15/16 ,  H04L29/08 ,  H04W88/08

Abstract: In one embodiment, a method comprises detecting, by an apparatus, establishment of a stateful application session between a mobile endpoint device and a stateful virtualized application executed by a first virtualization host in a data network, the mobile endpoint device establishing a network connection with the stateful virtualized application via a first wireless connection with a first network access point; generating, by the apparatus, a connection container comprising a connection identifier uniquely identifying the network connection, connection metadata describing the network connection, and application state metadata describing execution of the stateful virtualized application for the mobile endpoint device; and outputting, by the apparatus, the application state metadata for continuous execution of the stateful virtualized application by a second virtualization host associated with a second network access point, based on determining the mobile endpoint device connecting with the second network access point and disconnecting from the first network access point.

公开(公告)号：US20200296856A1

公开(公告)日：2020-09-17

申请号：US16354082

申请日：2019-03-14

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Charles Calvin Byers ,  Gonzalo Salgueiro ,  M. David Hanes ,  Joel Richard Goergen ,  Joseph Michael Clarke

IPC: H05K7/14 ,  G02B6/44 ,  H05K7/20

Abstract: In one embodiment, a system includes a central hub comprising a power source, a data switch, a coolant system, and a management module, a plurality of network devices located within an interconnect domain of the central hub, and at least one combined cable connecting the central hub to the network devices and comprising a power conductor, a data link, a coolant tube, and a management communications link contained within an outer cable jacket.

公开(公告)号：US20190312846A1

公开(公告)日：2019-10-10

申请号：US15946907

申请日：2018-04-06

Applicant: Cisco Technology, Inc.

Inventor： Robert Thomas Taylor ,  M. David Hanes ,  Nikhil Sainath Kale ,  Ana Peric

IPC: H04L29/06 ,  G06F15/18

Abstract: In one example embodiment, a proxy for a network obtains a traffic flow. The proxy determines whether a security policy in a whitelist for the traffic flow is active. If it is determined that the security policy for the traffic flow is active, the proxy selectively decrypts the traffic flow to produce one or more traffic flow attributes and, based on the one or more traffic flow attributes, determines whether the traffic flow is potentially malicious.

公开(公告)号：US10432687B1

公开(公告)日：2019-10-01

申请号：US15983724

申请日：2018-05-18

Applicant: Cisco Technology, Inc.

Inventor： M. David Hanes ,  Joseph Michael Clarke ,  Gonzalo Salgueiro ,  Charles Calvin Byers

IPC: H04L29/06 ,  H04N7/15 ,  G06K9/00 ,  G06T13/40 ,  G06T5/40 ,  G06T5/00

Abstract: Biometric masking includes testing video data and/or audio data from the video conference for biometric markers indicative of emotion or stress levels. If at least one of the biometric markers is detected with the testing, the video data and/or the audio data is edited to obfuscate the at least one of the biometric markers so that the video data and the audio data is transmitted to participants of the video conference with the at least one of the biometric markers obfuscated.