公开(公告)号：US12034707B2

公开(公告)日：2024-07-09

申请号：US18104603

申请日：2023-02-01

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Srinath Gundavelli ,  Pascal Thubert ,  Pradeep Kumar Kathail ,  Eric Levy-Abegnoli ,  Eric Voit ,  Ali Sajassi

IPC: H04L9/40 ,  H04L61/2521 ,  H04L61/2539 ,  H04L61/4511

CPC classification number: H04L63/0421 ,  H04L61/2525 ,  H04L61/2539 ,  H04L61/4511

Abstract: Techniques for using Network Address Translation (NAT), Mobile Internet Protocol (MIP), and/or other techniques in conjunction with Domain Name System (DNS) to anonymize server-side addresses in data communications. Rather than having DNS provide a client device with an IP address of an endpoint device, such as a server, the DNS instead returns a random IP address that is mapped to the client device and the endpoint device. In this way, IP addresses of servers are obfuscated by a random IP address that cannot be used to identify the endpoint device or service. The client device may then communicate data packets to the server using the random IP address as the destination address, and a gateway that works in conjunction with DNS can convert the random IP address to the actual IP address of the server using NAT and forward the data packet onto the server.

公开(公告)号：US20230388150A1

公开(公告)日：2023-11-30

申请号：US18202680

申请日：2023-05-26

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Shesha Bhushan Sreenivasamurthy

IPC: H04L12/40 ,  G06N3/08 ,  G06F18/2415

CPC classification number: H04L12/40136 ,  G06N3/08 ,  H04L12/40 ,  G06F18/24155 ,  H04L2012/40273 ,  H04L2012/40215

Abstract: In one embodiment, a processor of a vehicle detects a difference between a physical characteristic of the vehicle predicted by a first machine learning-based model and a physical characteristic of the vehicle indicated by telemetry data generated by a sub-system of the vehicle. The processor forms a packet payload of an update packet indicative of the detected difference, based in part on a relevancy of the physical characteristic to the first machine learning-based model. The processor applies a synchronization strategy to the update packet, to synchronize the update packet with a second machine learning-based model executed by a receiver. The processor sends the update packet to the receiver via a network, to update the second machine learning-based model.

公开(公告)号：US20230155978A1

公开(公告)日：2023-05-18

申请号：US17530244

申请日：2021-11-18

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Pradeep Kumar Kathail ,  Eric Levy-Abegnoli ,  David A. Maluf

IPC: H04L29/12

CPC classification number: H04L61/2507 ,  H04L61/1511

Abstract: Techniques for using Network Address Translation (NAT), Mobile Internet Protocol (MIP), and/or other techniques in conjunction with Domain Name System (DNS) to anonymize server-side addresses in data communications. Rather than having DNS provide a client device with an IP address of an endpoint device, such as a server, the DNS instead returns a virtual IP (VIP) address that is mapped to the client device and the endpoint device. In this way, IP addresses of servers are obfuscated by a virtual network of VIP addresses. The client device may then communicate data packets to the server using the VIP address as the destination address, and a virtual network service that works in conjunction with DNS can convert the VIP address to the actual IP address of the server using NAT and forward the data packet onto the server.

公开(公告)号：US11463557B2

公开(公告)日：2022-10-04

申请号：US17128374

申请日：2020-12-21

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  John George Apostolopoulos

IPC: H04L69/04 ,  H03M7/30 ,  H04L12/40 ,  H04L67/12

Abstract: In one embodiment, a device in a serial network de-multiplexes a stream of traffic in the serial network into a plurality of data streams. The device determines that data from a particular data stream should be reported to an entity external to the serial network based on an event indicated by the data from the particular data stream. The device quantizes the data from the particular data stream. The device applies compression to the quantized data to form a compressed representation of the particular data stream. The applied compression is selected based on a data type associated with the data. The device sends a compressed representation of the particular data stream to the external entity as Internet Protocol (IP) traffic.

公开(公告)号：US10666671B2

公开(公告)日：2020-05-26

申请号：US15497806

申请日：2017-04-26

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Raghuram S. Sudhaakar ,  Sanjiv Doshi

IPC: H04L29/06 ,  H04L12/66 ,  H04L12/40 ,  G06N5/04 ,  G06N20/00

Abstract: In one embodiment, a device in a serial network determines that a suspicious event has occurred in the network. The suspicious event is identified based on timing information for one or more frames in the serial network. The device assesses whether the suspicious event is malicious by evaluating a sequence of events in the network that precede the suspicious event. The device causes a mitigation action to be performed in the network when the suspicious event is deemed malicious.

公开(公告)号：US09600494B2

公开(公告)日：2017-03-21

申请号：US14163169

申请日：2014-01-24

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Raghuram S. Sudhaakar ,  James D. Stanley, III ,  Sateesh K. Addepalli

IPC: H04L12/26 ,  G06F17/30 ,  G06T7/00 ,  H04N21/231 ,  H04N21/234 ,  H04N21/235 ,  H04N21/4728

CPC classification number: G06F17/30247 ,  G06F17/30 ,  G06F17/30321 ,  G06F17/30858 ,  G06T7/30 ,  G06T2210/12 ,  H04N21/23109 ,  H04N21/23418 ,  H04N21/235 ,  H04N21/4728

Abstract: In one embodiment, a stream of data packets originated by a visual data source is received at an edge device in a network. The data packets include at least one of video data, image data, and geo spatial data. Next, a visual data attribute is extracted at the edge device from the stream of data packets according to an edge-based extraction algorithm. The extracted visual data attribute is vectorized at the edge device via quantization vectors. The vectorized visual data attribute is then indexed at the edge device in a schema-less database that stores indexed visual data attributes.

公开(公告)号：US20150312311A1

公开(公告)日：2015-10-29

申请号：US14325776

申请日：2014-07-08

Applicant: Cisco Technology, Inc.

Inventor： Vijaynarayanan Subramanian ,  Raghuram S. Sudhaakar ,  David A. Maluf

IPC: H04L29/06 ,  G06F17/30 ,  H04L12/24

CPC classification number: H04L65/605 ,  G06F17/3051 ,  H04L41/0246 ,  H04L67/12 ,  H04L69/22

Abstract: Information describing a rule to be applied to a traffic stream is received at an edge network device. The traffic stream is received at the edge network device. A schema is applied to the traffic stream at the edge network device. It is determined that a rule triggering condition has been met. The rule is applied to the traffic stream, at the edge network device, in response to the rule triggering condition having been met. At least one of determining that the rule triggering event has taken place or applying the rule is performed based on the applied schema.

Abstract translation: 在边缘网络设备处接收描述应用于业务流的规则的信息。 在边缘网络设备处接收业务流。 模式应用于边缘网络设备的流量流。 确定已经满足规则触发条件。 响应于已经满足规则触发条件，该规则被应用于边缘网络设备处的业务流。 基于所应用的模式来执行确定规则触发事件已经发生或应用规则中的至少一个。

公开(公告)号：US20250080216A1

公开(公告)日：2025-03-06

申请号：US18242849

申请日：2023-09-06

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Pradeep K. Kathail ,  Ashok Krishnaji Moghe

IPC: H04B7/22 ,  H04L5/00 ,  H04W72/0453

Abstract: In one embodiment, a gateway device communicates on a first digital computer network. The gateway device also communicates on a near vertical incident skywave area network using digital data encapsulated in analog ionospheric refracted signals. The gateway device further modulates signals between the first digital computer network and the near vertical incident skywave area network based on dynamic channel selection and multi-domain multiplexing.

公开(公告)号：US12232074B2

公开(公告)日：2025-02-18

申请号：US17735694

申请日：2022-05-03

Applicant: Cisco Technology, Inc.

Inventor： David A. Maluf ,  Huy Phuong Tran ,  Avinash Kalyanaraman ,  Paul Anthony Polakos

IPC: H04W64/00 ,  G01S13/76

Abstract: Correcting for antennae spatial distortions in Radio Frequency (RF) localization may be provided. A plurality of actual locations associated with a plurality of Access Point (APs) may be received. Then a plurality of signal strengths associated with the plurality of APs may be received. Based on the plurality of signal strengths, a model may be created that models a plurality of inference errors respectively corresponding to the plurality of APs between a plurality of inferred locations respectively corresponding to the plurality of APs and the plurality of actual locations. The model may then be used in determining a location of a device.

公开(公告)号：US11979366B2

公开(公告)日：2024-05-07

申请号：US18195136

申请日：2023-05-09

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Pradeep Kumar Kathail ,  Eric Levy-Abegnoli ,  David A. Maluf

IPC: G06F15/16 ,  H04L61/2503 ,  H04L61/4511

CPC classification number: H04L61/2503 ,  H04L61/4511

Abstract: Techniques for using Network Address Translation (NAT), Mobile Internet Protocol (MIP), and/or other techniques in conjunction with Domain Name System (DNS) to anonymize server-side addresses in data communications. Rather than having DNS provide a client device with an IP address of an endpoint device, such as a server, the DNS instead returns a virtual IP (VIP) address that is mapped to the client device and the endpoint device. In this way, IP addresses of servers are obfuscated by a virtual network of VIP addresses. The client device may then communicate data packets to the server using the VIP address as the destination address, and a virtual network service that works in conjunction with DNS can convert the VIP address to the actual IP address of the server using NAT and forward the data packet onto the server.