-
公开(公告)号:US20200162329A1
公开(公告)日:2020-05-21
申请号:US16194466
申请日:2018-11-19
Applicant: Cisco Technology, Inc.
Inventor: Grégory Mermoud , Pierre-André Savalle , Jean-Philippe Vasseur
Abstract: In one embodiment, a device classification service receives data indicative of network traffic policies assigned to a plurality of device types. The device classification service associates measures of policy restrictiveness with the device types, based on the received data indicative of the network traffic policies assigned to the plurality of device types. The device classification service determines misclassification costs associated with a machine learning-based device type classifier of the service misclassifying an endpoint device of one of the plurality device types with another of the plurality of device types, based on their associated measures of policy restrictiveness. The device classification service adjusts the machine learning-based device type classifier to account for the determined misclassification costs.
-
72.
公开(公告)号:US20200145288A1
公开(公告)日:2020-05-07
申请号:US16182761
申请日:2018-11-07
Applicant: Cisco Technology, Inc.
Inventor: Grégory Mermoud , Pierre-André Savalle , Jean-Philippe Vasseur , Kevin Gagnon
Abstract: In one embodiment, a device receives traffic telemetry data captured by a plurality of networks and used by device classification services in the networks to classify endpoints in the networks with device types. The device compares the telemetry data from a particular one of the networks to the telemetry data from the other networks to identify one or more traffic characteristics that are missing from the telemetry data for one or more endpoints of the particular network. The device identifies a networking entity in the particular network that is common to the one or more endpoints for which the one or more characteristics are missing. The device determines a configuration change for the networking entity by comparing a current configuration of the entity to those of one or more entities in the other networks. The device initiates implementation of the determined configuration change for the entity in the particular network.
-
公开(公告)号:US10574512B1
公开(公告)日:2020-02-25
申请号:US16120529
申请日:2018-09-04
Applicant: Cisco Technology, Inc.
Inventor: Grégory Mermoud , David Tedaldi , Jean-Philippe Vasseur
Abstract: In one embodiment, a network assurance service that monitors a network detects a behavioral anomaly in the network using an anomaly detector that compares an anomaly detection threshold to a target value calculated based on a first set of one or more measurements from the network. The service uses an explanation model to predict when the anomaly detector will detect anomalies. The explanation model takes as input a second set of one or more measurements from the network that differs from the first set. The service determines that the detected anomaly is explainable, based on the explanation model correctly predicting the detection of the anomaly by the anomaly detector. The service provides an anomaly detection alert for the detected anomaly to a user interface, based on the detected anomaly being explainable. The anomaly detection alert indicates at least one measurement from the second set as an explanation for the anomaly.
-
公开(公告)号:US20200052981A1
公开(公告)日:2020-02-13
申请号:US16100451
申请日:2018-08-10
Applicant: Cisco Technology, Inc.
Inventor: Santosh Ghanshyam Pandey , Jean-Philippe Vasseur , Sukrit Dasgupta
IPC: H04L12/24 , H04L12/26 , H04B17/318 , H04W24/06
Abstract: In one embodiment, a network assurance service that monitors a network detects a network anomaly in the network using a machine learning-based anomaly detector. The network assurance service identifies a set of network conditions associated with the detected network anomaly. The network assurance service initiates a network test on one or more clients in the network that exhibit the identified network conditions. The network assurance service retrains the machine learning-based anomaly detector based on a result of the network test.
-
公开(公告)号:US10552763B2
公开(公告)日:2020-02-04
申请号:US15210974
申请日:2016-07-15
Applicant: Cisco Technology, Inc.
Inventor: Yannick Weibel , Jean-Philippe Vasseur , Grégory Mermoud
IPC: G06N20/00
Abstract: In one embodiment, a device in a network receives data indicative of a target state for one or more distributed learning agents in the network. The device determines a difference between the target state and state information maintained by the device regarding the one or more distributed learning agents. The device calculates a synchronization penalty score for each of the one or more distributed learning agents. The device selects a particular one of the one or more distributed learning agents with which to synchronize, based on the synchronization penalty score for the selected distributed learning agent and on the determined difference between the target state and the state information regarding the selected distributed learning agent. The device initiates synchronization of the state information maintained by the device regarding the selected distributed learning agent with state information from the selected distributed learning agent.
-
公开(公告)号:US10547518B2
公开(公告)日:2020-01-28
申请号:US15880600
申请日:2018-01-26
Applicant: Cisco Technology, Inc.
Inventor: Vinay Kumar Kolar , Jean-Philippe Vasseur , Vikram Kumaran , Santosh Ghanshyam Pandey
IPC: G06F15/173 , H04L12/24 , H04L12/26 , G06N20/00
Abstract: In one embodiment, a network assurance service that monitors a network detects a pattern of network measurements from the network that are associated with a particular network problem. The network assurance service tracks characteristics of the detected pattern over time. The network assurance service uses the tracked characteristics of the detected pattern over time as input to a machine learning-based pattern analyzer. The pattern analyzer is configured to determine whether the detected pattern is a perpetual or transient pattern in the network, and the pattern analyzer is further configured to detect anomalies in the characteristics of the pattern. The network assurance service initiates a change to the network based on an output of the machine learning-based pattern analyzer.
-
公开(公告)号:US20200028888A1
公开(公告)日:2020-01-23
申请号:US16585761
申请日:2019-09-27
Applicant: Cisco Technology, Inc.
Inventor: Eric Levy-Abegnoli , Pascal Thubert , Patrick Wetterwald , Jean-Philippe Vasseur
IPC: H04L29/08 , H04L12/727 , H04L12/24 , H04L12/721 , H04L12/771 , H04L12/729 , H04L12/26
Abstract: In one embodiment, a device in a network receives a path computation agent configured to determine a path in the network that satisfies an objective function. The device executes the path computation agent to update state information regarding the network maintained by the path computation agent. The device selects a neighbor of the device in the network to execute the path computation agent based on the updated state information regarding the network. The device instructs the selected neighbor to execute the path computation agent with the updated state information regarding the network. The device unloads the path computation agent from the device after selecting the neighbor of the device to execute the path computation agent.
-
公开(公告)号:US10530665B2
公开(公告)日:2020-01-07
申请号:US15485695
申请日:2017-04-12
Applicant: Cisco Technology, Inc.
Inventor: Pascal Thubert , Jean-Philippe Vasseur , Patrick Wetterwald , Eric Levy-Abegnoli
Abstract: In one embodiment, a server instructs one or more networking devices in a local area network (LAN) to form a virtual network overlay in the LAN that redirects traffic associated with a particular node in the LAN to the server. The server identifies a configuration for the particular node based on a node profile for the particular node. The server accesses a configuration interface of the particular node and instructs the particular node to use the identified configuration via the accessed configuration interface.
-
公开(公告)号:US10524194B2
公开(公告)日:2019-12-31
申请号:US16248108
申请日:2019-01-15
Applicant: Cisco Technology, Inc.
Inventor: Pascal Thubert , Jean-Philippe Vasseur , Patrick Wetterwald , Eric Levy-Abegnoli
Abstract: In one embodiment, a supervisory device in a network receives from a plurality of access points (APs) in the network data regarding a network availability request broadcast by a node seeking to access the network and received by the APs in the plurality. The supervisory device uniquely associates the node with a virtual access point (VAP) for the node and forms a VAP mapping between the VAP for the node and a set of the APs in the plurality selected based on the received data regarding the network availability request. One of the APs in the mapping is designated as a primary access point for the node. The supervisory device instructs the primary AP to send a network availability response to the node that includes information for the VAP. The node uses the information for the VAP to access the network via the set of APs in the VAP mapping.
-
80.
公开(公告)号:US20190342321A1
公开(公告)日:2019-11-07
申请号:US16517748
申请日:2019-07-22
Applicant: Cisco Technology, Inc.
Inventor: Laurent Sartran , Sébastien Gay , Pierre-André Savalle , Grégory Mermoud , Jean-Philippe Vasseur
Abstract: In one embodiment, a device in a network receives traffic records indicative of network traffic between different sets of host address pairs. The device identifies one or more address grouping constraints for the sets of host address pairs. The device determines address groups for the host addresses in the sets of host address pairs based on the one or more address grouping constraints. The device provides an indication of the address groups to an anomaly detector.
-
-
-
-
-
-
-
-
-