公开(公告)号：US20170262523A1

公开(公告)日：2017-09-14

申请号：US15068754

申请日：2016-03-14

Applicant: Cisco Technology, Inc.

Inventor： Steve EPSTEIN ,  Ezra DARSHAN ,  Harel CAIN ,  Shali MOR

IPC: G06F17/30 ,  H04L29/08

CPC classification number: G06F16/285 ,  G06F16/23 ,  H04L63/0876 ,  H04L63/1483 ,  H04L67/1095 ,  H04L67/12

Abstract: In one embodiment, a device discovery system includes a data storage medium to store a clustered data structure including device signatures grouped according to clusters. Each device signature includes device information. Each cluster from a sub-set of the clusters has a different device name. The system also includes an input/output sub-system to receive, from a remote device, a first device signature describing information about a first device, and a processor to perform a decision process based on the clustered data structure with the first device signature as input yielding an output including a first device name or an indication that a name associated with the first device signature is unknown. The processor is operative to prepare a response message including data about the output. The input/output sub-system is operative to send the response message to the remote device.

公开(公告)号：US20180091540A1

公开(公告)日：2018-03-29

申请号：US15276808

申请日：2016-09-27

Applicant: Cisco Technology, Inc.

Inventor： Hillel SOLOW ,  Ezra DARSHAN ,  Harel CAIN ,  Steve EPSTEIN ,  Arnold ZUCKER

IPC: H04L29/06

CPC classification number: H04L63/1433 ,  H04L63/0227 ,  H04L63/1425 ,  H04L63/1441

Abstract: In one embodiment, a method for assessing security posture for entities in a computing, network is implemented On a computing device and includes: receiving behavior data from one or more of the entities, where the behavior data is associated with at least activity on the computing network by the one or more entities, calculating a risk score for at least one of the entities by comparing the behavior data with a classification model, where the classification model represents at least a baseline for normative network behavior by the entities in a computing network, assessing a security posture for the at least one the entities based on the risk score, and allocating network security resources to the at least one of the entities at least in accordance with the security posture.

公开(公告)号：US20210294820A1

公开(公告)日：2021-09-23

申请号：US17343379

申请日：2021-06-09

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Steve EPSTEIN ,  Ezra DARSHAN ,  Harel CAIN ,  Shali MOR

IPC: G06F16/28 ,  H04L29/08 ,  G06F16/23 ,  H04L29/06

Abstract: In one embodiment, a device discovery system includes a data storage medium to store a clustered data structure including device signatures grouped according to clusters. Each device signature includes device information. Each cluster from a sub-set of the clusters has a different device name. The system also includes an input/output sub-system to receive, from a remote device, a first device signature describing information about a first device, and a processor to perform a decision process based on the clustered data structure with the first device signature as input yielding an output including a first device name or an indication that a name associated with the first device signature is unknown. The processor is operative to prepare a response message including data about the output. The input/output sub-system is operative to send the response message to the remote device.

公开(公告)号：US20170339190A1

公开(公告)日：2017-11-23

申请号：US15161313

申请日：2016-05-23

Applicant: Cisco Technology, Inc.

Inventor： Steve EPSTEIN ,  Hillel SOLOW ,  Ezra DARSHAN

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0263 ,  H04L63/1416 ,  H04L63/1433

Abstract: In one embodiment, a system includes a hardware processor and a memory to store data used by the hardware processor, wherein the hardware processor is operative to calculate, for each one device of a plurality of devices, a device-specific packet inspection plan based on (a) a security vulnerability score for the one device; and (b) a damage score for the one device, wherein for each one device of the plurality of devices, the device-specific packet inspection plan includes at least one of the following (a) a percentage of a plurality of packets, destined for the one device, to be inspected for compliance with at least one intrusion detection/protection system rule and (b) instructions on which intrusion detection/protection system rules to use to inspect a multiplicity of the plurality of packets destined for the one device. Related apparatus and methods are also described.

公开(公告)号：US20170374082A1

公开(公告)日：2017-12-28

申请号：US15189023

申请日：2016-06-22

Applicant: Cisco Technology, Inc.

Inventor： Hillel SOLOW ,  Steve EPSTEIN ,  Ezra DARSHAN ,  Arnold ZUCKER ,  Shali MOR ,  Asaf COHEN

IPC: H04L29/06

Abstract: In one embodiment, a method includes for each one time period of a plurality of time periods performing a weighted random selection of a first set of intrusion detection/protection system rules from a plurality of rules, each rule of the plurality of rules having an associated probability of selection, preparing a packet inspection plan including the first set of intrusion detection/protection system rules, and sending the packet inspection plan to a network distribution device to inspect packets according to the packet inspection plan. Related apparatus and methods are also described.

公开(公告)号：US20140270720A1

公开(公告)日：2014-09-18

申请号：US14275424

申请日：2014-05-12

Applicant: Cisco Technology Inc.

Inventor： Stephanie Wald ,  Ezra DARSHAN ,  David FINK ,  Kevin MURRAY

IPC: G11B27/031 ,  H04N5/85 ,  H04N9/82 ,  H04N9/804 ,  H04N5/76 ,  H04N5/783

CPC classification number: G11B27/031 ,  H04N5/76 ,  H04N5/783 ,  H04N5/85 ,  H04N9/8042 ,  H04N9/8205

Abstract: A method for producing an auxiliary video stream arranged for reverse trick mode playback from a video stream including a plurality of uni-directional predicted frames, the method including producing the auxiliary video stream by performing the following steps copying each uni-directional predicted frame included in the video stream into a memory, thereby producing a plurality of copied frames in the memory, replacing each one of the plurality of copied frames with one corresponding supplemental frame, thereby producing a plurality of corresponding supplemental frames, and producing a copy of the video stream arranged in reverse processing order, the producing a copy including replacing each frame which corresponds to one of the plurality of copied frames with the one corresponding supplemental frame from among the plurality of corresponding supplemental frames. Related methods and systems are also described.

Abstract translation: 一种用于从包括多个单向预测帧的视频流生成布置用于反向特技模式重放的辅助视频流的方法，所述方法包括通过执行以下步骤来产生辅助视频流：复制包括在每个单向预测帧中的每个单向预测帧 视频流进入存储器，从而在存储器中产生多个复制的帧，用一个对应的补充帧替换多个复制帧中的每一个，从而产生多个对应的补充帧，并产生视频流的副本 以反向处理顺序排列，产生一个副本，包括从多个对应的补充帧中用一个对应的补充帧替换对应于多个复制帧之一的每个帧。 还描述了相关方法和系统。