公开(公告)号：US11036876B2

公开(公告)日：2021-06-15

申请号：US16105898

申请日：2018-08-20

Applicant: Cisco Technology, Inc.

Inventor： Maik Guenter Seewald ,  Robert Edgar Barton ,  Jerome Henry

IPC: G06F21/62 ,  H04L9/08 ,  G06F9/445 ,  H04L29/06

Abstract: The disclosed technology provides solutions that enable scalable and secure data retrieval between microservices by using microservice attributes to encrypt container based data stores. A process of the technology can include steps for: instantiating a first microservice and a second microservice in a cloud environment, wherein the first microservice is associated with a first attribute label and the second microservice is associated with a second attribute label, generating a first key based on the first attribute label and a second key based on the second attribute label, associating a first data store with the first microservice, wherein the first data store is encrypted using the first key, and associating a second data store with the second microservice, wherein the second data store is encrypted using the second key. Systems and machine readable media are also provided.

公开(公告)号：US10389173B2

公开(公告)日：2019-08-20

申请号：US15475499

申请日：2017-03-31

Applicant: Cisco Technology, Inc.

Inventor： Maik Guenter Seewald ,  Patrick Wetterwald

IPC: H02J13/00 ,  H04L12/24 ,  H04L12/707 ,  G05B17/02 ,  G06Q50/06 ,  H02J3/00

Abstract: In one embodiment, a method comprises a topology processor generating a power grid topology model of a power grid topology controlled via a communications network having a corresponding communications architecture overlying the power grid topology. The topology processor generates a communications architecture model of the communications architecture. In response to receiving a request for executing a change in at least a portion of the power grid topology, the topology processor identifies power grid topology model data associated with the portion of the power grid topology, and identifies communications architecture model data identifying a corresponding portion of the communications architecture associated with the portion of the power grid topology. The topology processor selectively executes the request based on sending, to a network controller, a query to determine whether the communications architecture can implement the change, the query identifying the power grid topology model data and the corresponding communications architecture model data.

公开(公告)号：US09871653B2

公开(公告)日：2018-01-16

申请号：US13945369

申请日：2013-07-18

Applicant: Cisco Technology, Inc.

Inventor： Brian Eliot Weis ,  Maik Guenter Seewald ,  Ruben Gerald Lobo

IPC: H04L29/06 ,  H04L9/08

CPC classification number: H04L9/08 ,  H04L9/083 ,  H04L63/06 ,  H04L63/062 ,  H04L67/12 ,  H04L67/16

Abstract: A technique for key sharing among multiple key servers connected to one another over a communication network is provided herein. Each key sever of the multiple key servers stores respective cryptographic keys, and provides the keys to a local device group connected with the key server, to enable the device group to encrypt messages with the keys. Each key server acts as a proxy for the other key servers in order to receive other keys from the other key servers over the network, and provide the other keys to the device group for use to decrypt messages received from other local device groups respectively connected with the other key servers that were encrypted with the other keys and to check message integrity. The multiple key servers may share keys with each other directly, or alternatively, indirectly through a central key server, as needed to support secure communications between their respective device groups.