公开(公告)号：US20230061141A1

公开(公告)日：2023-03-02

申请号：US17462248

申请日：2021-08-31

Applicant: Cisco Technology, Inc.

Inventor： Frank Michaud ,  Peshan Sampath Kalu Marakkala

IPC: H04L29/06

Abstract: Disclosed are methods, systems, and non-transitory computer-readable storage media for evaluating software posture as a condition of zero trust access. The present technology provides a client-side validation agent and a validation service which in tandem can capture and evaluate data representative of parameters associated with an application executing on a user device. The validation service can validate the application to a networked service, and in turn the networked service can permit communication to the application running on the user device.

公开(公告)号：US20200322329A1

公开(公告)日：2020-10-08

申请号：US16748965

申请日：2020-01-22

Applicant: Cisco Technology, Inc.

Inventor： Alan Robert Lynn ,  Frank Michaud ,  Carlos M. Pignataro ,  Rajiv Asati

IPC: H04L29/06 ,  G06F7/58

Abstract: The present technology pertains to a system that authenticates the identity of a user trying to access a service. The system comprises an authentication provider configured to communicate authentication requirements to a continuous multifactor authentication device and the continuous multifactor authentication device configured to receive authentication requirements, to fuse multiple identification factors into an identification credential for a user according to the authentication requirements, and to send the authentication credential to the authentication provider. After receiving the identification credential meeting the authentication requirements, the authentication provider is configured to instruct a service provider to initiate a session.

公开(公告)号：US12212575B2

公开(公告)日：2025-01-28

申请号：US17725898

申请日：2022-04-21

Applicant: Cisco Technology, Inc.

Inventor： Frank Michaud ,  Peshan Sampath Kalu Marakkala

IPC: H04L9/40 ,  G06F21/62

Abstract: In one embodiment, a device of a data mesh generates a first metadata layer for the data mesh that comprises metadata regarding a dataset having a plurality of data sources. The device identifies user role-specific metadata associated with a particular user role and based at least in part on the metadata regarding the dataset. The device generates a second metadata layer for the data mesh that comprises the user role-specific metadata associated with the particular user role. The device provides the user role-specific metadata for presentation to a user associated with the particular user role.

公开(公告)号：US20220255924A1

公开(公告)日：2022-08-11

申请号：US17168322

申请日：2021-02-05

Applicant: Cisco Technology, Inc.

Inventor： Frank Michaud ,  Christopher James Pedder ,  David John Zacks ,  Thomas Szigeti

IPC: H04L29/06 ,  G06N7/00

Abstract: Disclosed are methods, systems, and non-transitory computer-readable media for detecting a presentation attack in a biometric factor domain, such as a multi-factor authentication environment. The methods, systems, and non-transitory computer-readable media comprise analyzing data relevant to a plurality of factors for evaluating whether an authentication attempt by a user is subject to the presentation attack and determining that the authentication attempt is subject to the presentation attack based on analysis of the data from the plurality of factors. The methods, systems, and non-transitory computer-readable media can detect a presentation attack even when the authentication attempt is successful.

公开(公告)号：US20220255923A1

公开(公告)日：2022-08-11

申请号：US17168301

申请日：2021-02-05

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  Stefano Giorcelli ,  Frank Michaud ,  David John Zacks

IPC: H04L29/06 ,  G10L17/22 ,  G06K9/00

Abstract: Disclosed are methods, systems, and non-transitory computer-readable media for utilizes a collaboration application to provide data beneficial to the authentication of the user. The present application discloses receiving at least one item of personal identifying information for a user from a primary multi-factor authentication device. The present application further discloses receiving at least one item of personal identifying information for a user from a conferencing service in which the user is engaged in a conference. The present application also discloses determining whether to authenticate the user based on the items of personal identifying information from the primary multi-factor authentication device and from the conferencing service.

公开(公告)号：US12218931B2

公开(公告)日：2025-02-04

申请号：US17168301

申请日：2021-02-05

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  Stefano Giorcelli ,  Frank Michaud ,  David John Zacks

IPC: H04L9/40 ,  G06V40/16 ,  G06V40/70 ,  G10L17/22

Abstract: Disclosed are methods, systems, and non-transitory computer-readable media for utilizes a collaboration application to provide data beneficial to the authentication of the user. The present application discloses receiving at least one item of personal identifying information for a user from a primary multi-factor authentication device. The present application further discloses receiving at least one item of personal identifying information for a user from a conferencing service in which the user is engaged in a conference. The present application also discloses determining whether to authenticate the user based on the items of personal identifying information from the primary multi-factor authentication device and from the conferencing service.

公开(公告)号：US12170612B2

公开(公告)日：2024-12-17

申请号：US17736440

申请日：2022-05-04

Applicant: Cisco Technology, Inc.

Inventor： Frank Michaud ,  Peshan Sampath Kalu Marakkala

IPC: H04L45/44 ,  G06F16/2455 ,  H04L45/42

Abstract: In one embodiment, a device of a data mesh divides a data query into a first subquery and a second subquery for different data sources in the data mesh, based on query routing data associated with the device. The device performs the first subquery in the data mesh, to obtain a first subquery response. The device also performs the second subquery in the data mesh, to obtain a second subquery response. The device provides a query response that aggregates the first subquery response and the second subquery response.

公开(公告)号：US11444941B2

公开(公告)日：2022-09-13

申请号：US16748965

申请日：2020-01-22

Applicant: Cisco Technology, Inc.

Inventor： Alan Robert Lynn ,  Frank Michaud ,  Carlos M. Pignataro ,  Rajiv Asati

IPC: H04L29/06 ,  H04L9/40 ,  G06F7/58

Abstract: The present technology pertains to a system that authenticates the identity of a user trying to access a service. The system comprises an authentication provider configured to communicate authentication requirements to a continuous multifactor authentication device and the continuous multifactor authentication device configured to receive authentication requirements, to fuse multiple identification factors into an identification credential for a user according to the authentication requirements, and to send the authentication credential to the authentication provider. After receiving the identification credential meeting the authentication requirements, the authentication provider is configured to instruct a service provider to initiate a session.

公开(公告)号：US11388011B2

公开(公告)日：2022-07-12

申请号：US16749106

申请日：2020-01-22

Applicant: Cisco Technology, Inc.

Inventor： Frank Michaud ,  Ram Abhinav Somaraju ,  Marcelo Yannuzzi Sanchez ,  Alan Robert Lynn

IPC: H04L9/32 ,  H04L9/40

Abstract: The present technology pertains to a system that authenticates the identity of a user trying to access a service. The system comprises an authentication provider configured to communicate authentication requirements to a continuous multifactor authentication device and the continuous multifactor authentication device configured to receive authentication requirements, to fuse multiple identification factors into an identification credential for a user according to the authentication requirements, and to send the authentication credential to the authentication provider. After receiving the identification credential meeting the authentication requirements, the authentication provider is configured to instruct a service provider to initiate a session.

公开(公告)号：US20250047667A1

公开(公告)日：2025-02-06

申请号：US18926800

申请日：2024-10-25

Applicant: Cisco Technology, Inc.

Inventor： Thomas Szigeti ,  Stefano Giorcelli ,  Frank Michaud ,  David John Zacks

IPC: H04L9/40 ,  G06V40/16 ,  G06V40/70 ,  G10L17/22

Abstract: Disclosed are methods, systems, and non-transitory computer-readable media for utilizes a collaboration application to provide data beneficial to the authentication of the user. The present application discloses receiving at least one item of personal identifying information for a user from a primary multi-factor authentication device. The present application further discloses receiving at least one item of personal identifying information for a user from a conferencing service in which the user is engaged in a conference. The present application also discloses determining whether to authenticate the user based on the items of personal identifying information from the primary multi-factor authentication device and from the conferencing service.