公开(公告)号：US09439075B2

公开(公告)日：2016-09-06

申请号：US14722925

申请日：2015-05-27

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Parviz Yegani ,  Jayaraman Iyer ,  Venkateshwara Sastry

IPC: G06F15/173 ,  H04W12/08 ,  G06Q20/10 ,  H04L12/14 ,  H04L12/54 ,  H04L12/24 ,  H04L12/723 ,  H04L12/801 ,  H04L12/913 ,  H04L12/927 ,  H04L12/911 ,  H04L29/12 ,  H04L29/06 ,  H04W36/00 ,  H04W36/12 ,  H04L29/08 ,  H04W12/06 ,  H04W8/26 ,  H04W28/18 ,  H04W36/14 ,  H04W48/14 ,  H04W60/00 ,  H04W80/04 ,  H04W80/10 ,  H04W92/02

CPC classification number: H04W12/08 ,  G06Q20/102 ,  H04L12/14 ,  H04L12/1403 ,  H04L41/0893 ,  H04L41/5029 ,  H04L41/5061 ,  H04L45/50 ,  H04L47/10 ,  H04L47/14 ,  H04L47/15 ,  H04L47/70 ,  H04L47/724 ,  H04L47/805 ,  H04L47/824 ,  H04L61/2015 ,  H04L63/08 ,  H04L63/0892 ,  H04L63/102 ,  H04L63/162 ,  H04L65/1006 ,  H04L65/1016 ,  H04L67/141 ,  H04L69/14 ,  H04L69/24 ,  H04W8/26 ,  H04W12/06 ,  H04W28/18 ,  H04W36/0033 ,  H04W36/12 ,  H04W36/14 ,  H04W48/14 ,  H04W60/00 ,  H04W80/04 ,  H04W80/10 ,  H04W92/02

Abstract: In one embodiment, during an authentication process between a network device and an access terminal, an authentication message for access to the network is received. The network device is configured to allow access to an IP network. The network device determines one or more capabilities of the access terminal from the authentication message. An action is then performed based on the one or more capabilities of the access terminal. The action may include using the capabilities to set up a session with the access terminal. Also, the network device may send its own capabilities to the access terminal in an authentication response. Accordingly, a capability negotiation between the access terminal and network device may be provided during an authentication process. This may facilitate a faster session setup as capabilities are exchanged during authentication can be used in the configuration of the session.

公开(公告)号：US20150264575A1

公开(公告)日：2015-09-17

申请号：US14722925

申请日：2015-05-27

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Parviz Yegani ,  Jayaraman Iyer ,  Venkateshwara Sastry

IPC: H04W12/08 ,  H04L29/06 ,  H04L29/08 ,  H04W12/06

CPC classification number: H04W12/08 ,  G06Q20/102 ,  H04L12/14 ,  H04L12/1403 ,  H04L41/0893 ,  H04L41/5029 ,  H04L41/5061 ,  H04L45/50 ,  H04L47/10 ,  H04L47/14 ,  H04L47/15 ,  H04L47/70 ,  H04L47/724 ,  H04L47/805 ,  H04L47/824 ,  H04L61/2015 ,  H04L63/08 ,  H04L63/0892 ,  H04L63/102 ,  H04L63/162 ,  H04L65/1006 ,  H04L65/1016 ,  H04L67/141 ,  H04L69/14 ,  H04L69/24 ,  H04W8/26 ,  H04W12/06 ,  H04W28/18 ,  H04W36/0033 ,  H04W36/12 ,  H04W36/14 ,  H04W48/14 ,  H04W60/00 ,  H04W80/04 ,  H04W80/10 ,  H04W92/02

Abstract: In one embodiment, during an authentication process between a network device and an access terminal, an authentication message for access to the network is received. The network device is configured to allow access to an IP network. The network device determines one or more capabilities of the access terminal from the authentication message. An action is then performed based on the one or more capabilities of the access terminal. The action may include using the capabilities to set up a session with the access terminal. Also, the network device may send its own capabilities to the access terminal in an authentication response. Accordingly, a capability negotiation between the access terminal and network device may be provided during an authentication process. This may facilitate a faster session setup as capabilities are exchanged during authentication can be used in the configuration of the session.

Abstract translation: 在一个实施例中，在网络设备和接入终端之间的认证处理期间，接收到用于接入网络的认证消息。 网络设备被配置为允许访问IP网络。 网络设备从认证消息确定接入终端的一个或多个能力。 然后基于接入终端的一个或多个能力来执行动作。 该动作可以包括使用与接入终端建立会话的能力。 此外，网络设备可以在认证响应中向接入终端发送其自己的能力。 因此，可以在认证处理期间提供接入终端和网络设备之间的能力协商。 这可以促进更快的会话建立，因为在认证期间交换能力可以在会话的配置中使用。

公开(公告)号：US20150067832A1

公开(公告)日：2015-03-05

申请号：US14015320

申请日：2013-08-30

Applicant: Cisco Technology, Inc.

Inventor： Venkateshwara Sastry

IPC: G06F21/55

CPC classification number: G06F21/552 ,  G06F21/564 ,  H04L61/306 ,  H04L63/101 ,  H04L63/1425 ,  H04L63/1483

Abstract: In one implementation, a phishing scam involves a communication sent to a user by an impersonator. Rather than detect the communication and verify the identity of the sender, the data entry of the user is monitored. For example, an example embodiment scans data entry from a user for a security word and queries a list of authorized terms for the security word. In response to the security word being included in the list of authorized terms, a destination address associated with the security word is identified. A list of authorized destination addresses is queried with the destination address associated with the security word.

Abstract translation: 在一个实现中，网络钓鱼欺诈涉及由模拟者发送给用户的通信。 不是检测通信并验证发送者的身份，而是监视用户的数据输入。 例如，示例实施例从用户扫描用于安全词的数据输入，并查询安全词的授权术语列表。 响应于安全词被包括在授权术语的列表中，识别与安全词相关联的目的地地址。 使用与安全字相关联的目标地址来查询授权的目的地地址列表。